Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/9n17SLvMm2FNZs44cLvOdqEUVGw.roa
File: 9n17SLvMm2FNZs44cLvOdqEUVGw.roa (raw, json)
Hash identifier: XFLwOdL2bU9Obyz6X/jkcSbp0yhuU8HBMi+bA0VKJT8=
Subject key identifier: F6:7D:7B:48:BB:CC:9B:61:4D:66:CE:38:70:BB:CE:76:A1:14:54:6C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C10
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/9n17SLvMm2FNZs44cLvOdqEUVGw.roa
Signing time: Fri 01 Sep 2023 09:13:56 +0000
ROA not before: Fri 01 Sep 2023 09:13:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9918
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3088 (0xc10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:13:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F67D7B48BBCC9B614D66CE3870BBCE76A114546C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4a:86:dc:11:7d:cc:0b:ad:44:8b:bb:e2:96:
bf:3f:c2:21:b1:66:c7:ff:b8:b9:02:a6:bc:a6:af:
9b:09:f9:d2:e1:9c:e0:d9:a6:33:bb:0e:c9:82:1a:
01:b7:8c:27:c2:22:33:50:4a:ee:79:46:47:fa:98:
9d:f1:09:92:d6:d0:20:6e:4f:d0:d0:0c:d4:12:b6:
84:2b:e1:86:d3:62:2e:7e:ee:7a:82:f9:f5:9c:a4:
cb:6f:a5:72:c2:9e:a8:5e:6e:d2:98:ca:c1:db:bd:
47:16:30:98:de:28:fd:41:36:8f:e7:92:ac:ae:53:
a8:9f:73:c2:f7:0c:3b:3d:3b:2c:f5:03:94:6b:1a:
ba:50:25:d3:09:83:b5:51:fc:52:b5:a7:3c:8f:cb:
81:d4:b0:41:76:07:f3:e9:f8:37:ff:e1:2f:40:cf:
81:a3:c1:95:0c:30:ef:62:87:19:28:e9:6b:58:be:
b4:05:cf:22:74:11:14:d9:6f:d5:3c:25:aa:ea:52:
25:a6:b3:b3:0d:9f:1b:0d:b8:fb:ce:40:9f:f4:1f:
47:f4:96:2c:a4:a7:29:06:08:42:ef:47:67:8c:18:
a4:43:fb:d5:d4:fc:4a:1b:78:98:b7:0d:67:32:22:
3c:46:8b:c8:91:fe:e9:4b:ba:f9:8e:a5:ec:4b:57:
2d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:7D:7B:48:BB:CC:9B:61:4D:66:CE:38:70:BB:CE:76:A1:14:54:6C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/9n17SLvMm2FNZs44cLvOdqEUVGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
40:3c:2c:a6:16:ed:50:7e:5b:a4:23:5e:db:2c:27:ba:58:78:
fa:dd:5d:2c:ad:aa:6a:2c:6c:dd:e8:7c:e6:e3:aa:3a:e4:56:
d4:ea:37:89:8f:fd:87:db:94:9f:43:22:9a:56:f1:8a:df:22:
c0:f9:ac:ac:db:f0:de:31:6c:45:60:da:d6:b2:96:96:aa:01:
5b:49:a0:e6:b4:01:ba:df:f5:5e:37:d7:a8:ab:c7:ac:05:41:
a0:50:cb:23:a0:c7:48:c5:a0:2f:a5:85:2e:9f:ec:24:25:81:
a3:79:7b:02:01:5c:e5:23:6e:f3:f1:d0:00:53:73:f3:52:5a:
61:8a:0c:20:8a:f2:f4:17:6a:95:a3:1b:dd:6b:51:50:c8:59:
07:b5:db:7d:6d:4d:8f:a4:5a:aa:08:6f:b3:e5:27:7e:06:4b:
9d:43:1c:f4:f0:ae:50:c2:d2:70:d4:62:48:68:08:d7:64:df:
64:b0:66:52:94:7f:9c:21:56:1f:81:34:f3:11:5d:d5:f4:60:
c9:77:d1:9e:c0:7f:fc:38:81:74:d0:be:3a:8a:e0:1a:f1:84:
24:e4:49:de:5e:6b:2c:02:45:cf:f3:da:d5:bc:e1:13:58:28:
e9:0f:30:2f:2b:c4:ff:ea:1d:bb:e1:48:5a:88:c1:d0:0d:5e:
9c:c1:cb:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org