Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/lThRP8DMUqMOr1gDGF9UBY_vf4I.roa
File: lThRP8DMUqMOr1gDGF9UBY_vf4I.roa (raw, json)
Hash identifier: lvCIBSFWONmXOxD1Xl5Cu6eA3JbOhzH9T5hyo86v7JU=
Subject key identifier: 95:38:51:3F:C0:CC:52:A3:0E:AF:58:03:18:5F:54:05:8F:EF:7F:82
Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Certificate serial: 0EB5
Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/lThRP8DMUqMOr1gDGF9UBY_vf4I.roa
Signing time: Fri 01 Sep 2023 09:14:17 +0000
ROA not before: Fri 01 Sep 2023 09:14:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131645
IP address blocks: 2404:63c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3765 (0xeb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Validity
Not Before: Sep 1 09:14:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9538513FC0CC52A30EAF5803185F54058FEF7F82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:98:ec:9e:fa:6b:c8:1e:9a:34:7d:e2:2e:d0:
bc:c7:80:27:7b:3d:20:34:75:d1:25:9d:85:76:65:
5a:39:04:f9:01:15:f5:98:84:5a:e7:8e:15:50:14:
d6:23:ce:43:76:4f:10:69:30:26:d2:e7:8d:53:e4:
9c:ad:0f:42:c9:08:aa:ad:01:7d:43:52:54:38:7b:
af:a5:a1:f3:47:82:52:f2:47:e9:61:2b:54:db:08:
15:ca:62:d4:b3:61:b2:98:12:59:9e:16:80:ee:da:
2b:f1:59:ac:d7:5c:80:0f:8d:32:2b:e2:2f:a3:91:
fa:8a:71:62:31:1f:37:f3:8d:d8:cc:b0:e2:f8:2c:
2b:e1:6d:8d:00:c2:fd:2a:92:f2:6a:e6:32:9b:c6:
34:f7:62:77:db:14:58:fe:05:78:9b:a1:c4:66:05:
fc:9d:d3:7d:ac:08:1e:c7:62:66:de:15:f1:4c:55:
c7:cd:0d:c0:c6:04:3e:ba:55:93:ed:b1:e8:9d:10:
5b:cb:75:9b:36:0e:55:2c:bf:6b:ad:27:36:c5:3a:
fc:7d:0c:49:b1:0c:64:41:da:7d:67:1b:96:42:19:
d0:2d:d3:15:be:87:87:93:82:6d:d4:03:12:4d:2b:
f2:03:08:77:fa:2b:bf:5f:19:2b:a6:c9:26:91:6c:
6e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:38:51:3F:C0:CC:52:A3:0E:AF:58:03:18:5F:54:05:8F:EF:7F:82
X509v3 Authority Key Identifier:
keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/lThRP8DMUqMOr1gDGF9UBY_vf4I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:63c0::/32
Signature Algorithm: sha256WithRSAEncryption
ae:d6:e1:cf:92:7a:94:f3:54:85:c6:78:b7:83:34:c9:83:e7:
2e:b9:b5:49:41:cf:89:8c:c2:e2:cc:36:75:65:6d:ee:c4:14:
f0:43:56:bd:96:09:ef:43:97:46:d5:01:7e:03:40:b6:46:7a:
92:db:e9:dc:73:ed:9e:81:22:59:fa:6f:58:0e:ca:23:13:e8:
cf:f5:04:57:50:5c:6f:32:c1:f9:6c:1a:4a:c2:88:6a:ae:cd:
ae:c6:9c:29:fc:1e:47:0d:9b:ad:81:27:ef:15:e3:1f:7b:74:
fe:4c:c3:ea:67:97:fe:e0:36:6a:3e:f5:c0:c0:03:6a:93:1c:
fc:32:0e:30:0b:47:42:8d:ef:36:d9:b5:e8:e7:14:bd:1a:f0:
1a:3c:be:5c:04:10:96:50:54:54:3c:8a:7e:3f:76:9f:2e:4c:
83:a7:54:95:12:42:7d:60:fa:f5:18:02:1a:6d:8d:06:86:ef:
9f:2c:85:d0:04:87:54:8f:7b:7a:48:38:de:92:4f:3e:3f:75:
8c:59:6e:7f:6a:38:06:c4:50:d9:f6:3a:f8:9e:5c:69:f2:16:
39:23:a8:3e:b4:17:b9:f4:d1:2e:d2:54:aa:85:36:8d:1c:4c:
44:9d:9e:9c:cc:8e:49:ca:8c:17:3a:27:b6:34:63:13:7b:08:
90:7e:e7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org