Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/JcJsG8vCBb3tVF2Nhu5Yfw6diAI.roa
File: JcJsG8vCBb3tVF2Nhu5Yfw6diAI.roa (raw, json)
Hash identifier: 3NZybM4EAwVXiWRRehMHfA3Zh16v63IUfG5heuKJftg=
Subject key identifier: 25:C2:6C:1B:CB:C2:05:BD:ED:54:5D:8D:86:EE:58:7F:0E:9D:88:02
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C25
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JcJsG8vCBb3tVF2Nhu5Yfw6diAI.roa
Signing time: Fri 01 Sep 2023 09:14:02 +0000
ROA not before: Fri 01 Sep 2023 09:14:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 211.78.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3109 (0xc25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:14:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=25C26C1BCBC205BDED545D8D86EE587F0E9D8802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4c:7a:04:0b:7c:62:69:48:c2:43:d7:b4:ad:
90:05:4a:d4:f1:22:63:ac:66:26:c0:93:e0:0f:77:
07:8c:d3:12:7f:15:e8:41:6a:9c:1a:96:83:ee:8c:
d2:7f:1b:3c:c9:7b:75:99:ac:82:57:d1:92:07:85:
88:68:33:e6:0d:c9:92:64:54:33:0c:99:f0:a0:e0:
a2:4e:b1:7a:31:24:b1:4b:5b:a1:84:a8:00:43:b1:
18:b9:cd:0a:85:a9:70:5d:8d:4a:f3:00:90:1a:05:
79:20:0a:4f:b3:8e:29:db:42:ab:92:37:b2:8d:7a:
3b:ba:67:c0:ac:f6:49:33:c9:15:12:52:65:0d:63:
dc:1e:b6:c9:05:7d:60:6b:84:7e:94:3c:eb:e5:bc:
17:3a:02:bb:17:46:a1:0c:da:d5:6b:1a:c3:82:f8:
c8:3d:57:64:9d:ac:bb:f7:91:58:8f:18:b9:6b:fb:
73:5e:c9:4a:d1:c6:80:00:ab:89:8e:9f:0d:c2:bb:
8e:66:5b:56:39:67:60:f3:f7:c2:8a:5a:a3:59:05:
fb:b7:aa:19:62:19:25:20:40:cc:0c:e2:fc:44:ea:
16:26:76:80:8a:f8:76:98:02:fb:c9:5b:61:e6:82:
d3:3c:3d:ca:ed:11:5f:00:85:60:5a:c6:e5:ab:30:
ae:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C2:6C:1B:CB:C2:05:BD:ED:54:5D:8D:86:EE:58:7F:0E:9D:88:02
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JcJsG8vCBb3tVF2Nhu5Yfw6diAI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.32.0/19
Signature Algorithm: sha256WithRSAEncryption
36:16:1d:48:e9:05:9c:17:56:9c:a9:ab:e8:c3:f5:21:79:f0:
3d:08:0f:30:0f:34:79:ef:3e:62:f4:a0:a5:53:4d:fd:76:cf:
67:c4:40:26:00:03:19:b5:00:09:3c:5f:73:fe:ae:80:2b:59:
01:e2:5f:a0:52:f1:6f:1c:ed:e3:2c:6d:bc:78:a6:b9:c0:bb:
a8:ce:66:cf:f7:e6:66:12:b9:de:e5:2e:dd:a9:7e:f9:eb:8b:
05:72:eb:ef:ce:8b:db:0f:c6:37:f2:97:02:bc:fb:61:77:4d:
7a:68:f5:c2:98:9c:08:02:8d:8c:96:82:21:ab:56:d7:7b:28:
02:c1:bf:bf:79:5e:03:cb:18:22:00:e5:6a:c4:3a:90:26:35:
bc:64:d9:22:85:f3:8b:fb:3c:ed:77:74:7d:86:23:c8:3d:5e:
d9:13:8c:85:95:74:bb:f2:af:81:33:0e:29:3c:5f:8f:4d:38:
5c:5e:d9:43:1c:3f:e2:b5:03:8a:d4:51:a6:c8:2b:51:bb:f7:
45:e8:d3:2d:53:61:d8:ab:99:1f:68:8e:e2:92:22:11:3c:d8:
25:98:fc:90:38:d5:28:1d:44:d8:20:65:82:25:de:f0:8a:fd:
f5:a5:25:3a:c4:cf:fa:67:6b:69:ea:aa:c5:05:55:60:b3:16:
88:77:10:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org