Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/uirkltB809j5ks7HV7LRQvpTrag.roa
File: uirkltB809j5ks7HV7LRQvpTrag.roa (raw, json)
Hash identifier: V8t981LjDHyu4DOLucwaJh4WfjRF/SMSJyZ89TyA3tw=
Subject key identifier: BA:2A:E4:96:D0:7C:D3:D8:F9:92:CE:C7:57:B2:D1:42:FA:53:AD:A8
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C19
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/uirkltB809j5ks7HV7LRQvpTrag.roa
Signing time: Fri 01 Sep 2023 09:13:58 +0000
ROA not before: Fri 01 Sep 2023 09:13:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131602
IP address blocks: 211.78.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:13:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BA2AE496D07CD3D8F992CEC757B2D142FA53ADA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:5d:dd:c2:60:18:57:06:6f:8a:91:e0:66:00:
96:09:71:11:67:42:cc:43:07:6d:06:16:e0:3d:e5:
1f:22:fe:8b:35:ea:d3:50:53:2d:ef:43:7e:eb:e4:
7f:a3:ca:eb:59:65:72:47:1e:49:68:a3:32:c4:3f:
0d:dd:13:bb:bb:58:7b:b1:b3:71:35:8b:2a:e9:f3:
f0:9f:60:ae:ca:02:03:40:b8:c2:76:6e:5e:63:c9:
fd:67:ab:48:82:65:1d:fe:68:22:ec:a7:b1:8f:96:
d9:39:4b:07:d5:86:a3:0b:67:9d:7d:2d:bc:00:ba:
dc:78:31:67:9a:5a:24:87:a9:5f:bf:43:50:82:2d:
fc:67:35:2e:82:87:1f:fd:60:c2:3c:41:0a:f5:0c:
a3:f9:23:92:4f:32:9e:78:9f:51:a0:db:db:ac:f8:
da:e0:86:61:9f:ee:7c:47:17:86:2d:bd:ce:3b:38:
45:91:39:40:f2:a6:b8:f3:d7:72:ba:ae:14:2e:6c:
83:2e:d2:91:3e:bc:08:d4:1b:f8:30:2d:9a:a7:d4:
d7:7a:6c:29:17:c1:24:30:c3:1f:be:46:fb:7f:1e:
a1:34:ce:a1:14:9b:f4:09:4e:15:7a:55:bf:b9:52:
6f:da:12:6f:d9:bd:04:e7:68:c1:f7:ab:1b:46:44:
a7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2A:E4:96:D0:7C:D3:D8:F9:92:CE:C7:57:B2:D1:42:FA:53:AD:A8
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/uirkltB809j5ks7HV7LRQvpTrag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.24.0/21
Signature Algorithm: sha256WithRSAEncryption
84:1e:32:4b:9b:27:2f:21:fd:6d:49:b4:88:73:d4:52:73:96:
d2:f5:e5:ab:4f:5d:9e:02:7d:8f:c4:15:c6:1f:fc:84:de:6a:
15:f6:b7:10:67:57:e9:bb:6b:cd:ca:55:42:6d:c1:88:d0:4e:
a7:a1:07:2e:ba:2e:56:23:b9:42:61:ed:4e:d7:93:c4:c6:33:
38:14:f1:8b:a8:b2:5a:21:b8:8e:eb:c1:7d:e8:95:4e:ff:cb:
01:94:26:80:8f:18:de:b4:c2:57:c8:c8:9c:6e:2c:da:dc:78:
1f:70:b2:ae:e3:43:61:4d:08:e6:1f:54:05:b3:af:c4:1b:80:
95:5f:3b:74:d9:fb:f9:0d:ab:dd:7d:0c:b7:da:d0:26:f9:1c:
68:44:b0:ae:71:70:d1:cf:7b:5d:55:c1:4d:b8:fe:76:15:6c:
71:b4:9c:20:3a:a2:97:1b:5c:bf:c7:2f:9f:ea:6b:6a:66:38:
5e:5c:23:6a:c2:ef:3c:89:08:09:37:5d:1b:8c:d7:46:80:4d:
ef:aa:e9:46:91:d8:ab:d8:1d:a2:ff:c7:6f:5f:35:38:f3:c3:
bb:2c:48:e0:66:fa:92:c9:88:8b:f6:70:a7:ed:68:2a:dd:fa:
8a:f4:de:4f:d4:fa:cc:ef:83:9a:aa:81:cb:1a:49:f6:27:5d:
1e:9d:37:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org