Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/AklsSXe8nxHbMM1858A5FEYMLTA.roa
File: AklsSXe8nxHbMM1858A5FEYMLTA.roa (raw, json)
Hash identifier: uNztjUwDHnhrvtT636Dn8GFAj9IWR/Wy0u3sNw31vJ8=
Subject key identifier: 02:49:6C:49:77:BC:9F:11:DB:30:CD:7C:E7:C0:39:14:46:0C:2D:30
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 0215
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/AklsSXe8nxHbMM1858A5FEYMLTA.roa
Signing time: Fri 01 Sep 2023 09:19:32 +0000
ROA not before: Fri 01 Sep 2023 09:19:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18428
IP address blocks: 2407:d240::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 533 (0x215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Sep 1 09:19:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=02496C4977BC9F11DB30CD7CE7C03914460C2D30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8c:e5:5c:62:e5:3a:17:8d:4d:99:7f:5d:c3:
ad:e6:9d:eb:16:29:49:4d:89:37:d2:6f:92:0e:c2:
5d:48:48:e8:4d:87:d2:a7:53:6a:78:90:c0:57:8b:
d0:90:33:85:65:0f:a7:ae:6a:fc:1b:00:13:63:60:
14:a7:46:63:90:89:0c:ee:89:ec:bb:37:5c:94:c0:
66:11:2c:a1:5f:cf:a3:98:6c:de:9e:c3:df:d4:c3:
3e:75:64:95:a5:08:4e:ce:7d:f4:66:f3:11:17:59:
a7:fe:43:42:3e:92:96:9d:2d:3e:31:c6:ed:9a:98:
5c:d3:6e:06:6d:a9:b0:84:31:22:7a:fb:11:83:c3:
c9:45:30:f7:c8:2b:89:d8:24:a5:47:55:c3:0c:c6:
12:7b:e1:73:cf:e9:3c:29:30:87:99:9a:94:de:12:
1e:94:da:21:d1:11:d5:82:07:9e:15:04:a5:fa:f3:
0a:ad:52:54:2a:b2:74:8f:0d:1a:58:46:f9:b4:ba:
bc:ba:f5:6e:78:c8:d1:f1:52:6d:36:dd:95:05:2e:
c1:23:d3:cb:88:2b:f6:75:96:68:91:b9:13:2f:b5:
b7:49:33:6e:d3:a8:b5:1d:91:b4:15:3e:49:ac:79:
72:b0:59:06:45:b2:85:23:72:88:92:dc:a9:5a:4a:
74:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:49:6C:49:77:BC:9F:11:DB:30:CD:7C:E7:C0:39:14:46:0C:2D:30
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/AklsSXe8nxHbMM1858A5FEYMLTA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d240::/32
Signature Algorithm: sha256WithRSAEncryption
7d:1f:6e:d1:26:7c:e3:93:86:ba:b3:b5:27:38:fd:1e:3d:85:
d6:22:8b:1c:bb:17:f0:7f:3b:16:2c:53:50:94:f4:1f:cc:79:
1c:29:6d:82:fd:be:b7:7b:67:cd:ad:ed:50:50:d5:0a:f5:03:
ac:d5:1d:fb:7c:c8:16:bb:88:63:49:97:6d:44:23:f7:7a:33:
78:e6:0f:a2:47:16:75:1d:ff:f5:72:8b:4c:7a:f2:2c:88:2d:
b2:35:02:64:cd:1f:bb:f0:f3:47:57:de:0d:73:d9:e9:a0:34:
97:6d:a0:40:df:9f:ea:ca:cd:37:c1:eb:ee:b8:97:11:ab:37:
7c:2e:e5:bd:e9:92:94:fd:0f:85:40:ed:ac:b9:be:46:4e:e9:
31:45:ae:66:9d:58:4f:22:ba:c6:21:39:ee:57:79:45:d7:2d:
e9:5f:96:cf:1a:18:82:eb:be:60:e0:a2:f5:2b:3d:e6:dc:90:
c8:88:6e:d6:a4:9c:d0:b1:2d:81:5f:49:37:55:2e:1c:86:b5:
33:20:18:59:b7:ec:de:a5:7d:e5:29:13:c0:17:69:94:33:c5:
43:70:25:ed:87:d6:8a:33:c3:6d:51:7e:56:8b:ce:fb:bb:5d:
d1:a5:ad:86:d2:78:bd:86:7c:de:14:c3:db:6f:6c:7a:75:96:
8e:00:29:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org