Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/5gKdaKeVNmlna8UiAbxNI1DvZFo.roa
File: 5gKdaKeVNmlna8UiAbxNI1DvZFo.roa (raw, json)
Hash identifier: cTTgcLkQ+40uKODgQdttksIuOWaEYwoc9f44zpK9TzM=
Subject key identifier: E6:02:9D:68:A7:95:36:69:67:6B:C5:22:01:BC:4D:23:50:EF:64:5A
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0B3E
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/5gKdaKeVNmlna8UiAbxNI1DvZFo.roa
Signing time: Fri 01 Sep 2023 09:21:35 +0000
ROA not before: Fri 01 Sep 2023 09:21:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7539
IP address blocks: 2001:4500:1000::/40 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2878 (0xb3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 1 09:21:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E6029D68A7953669676BC52201BC4D2350EF645A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5e:ee:ca:51:27:5c:e0:9b:91:8d:5a:da:34:
a7:7d:be:a3:8b:95:70:25:35:d1:e8:95:b9:ac:81:
a2:8d:d8:6b:fd:e4:a1:4d:dc:65:e2:e3:07:0d:c7:
ed:92:77:66:e3:fb:16:aa:ef:3c:1f:24:04:74:f4:
9c:cc:3e:09:3b:3d:2a:ac:58:b2:fe:83:13:42:b1:
0b:b0:e9:de:1d:d7:e2:86:ec:db:fb:be:ae:78:74:
b3:e4:e9:fe:ea:27:65:4c:9f:2f:14:f7:1f:ec:d1:
91:6d:af:62:a6:65:57:b5:8f:4b:4b:8a:63:38:69:
f0:0b:a3:9c:1a:d8:7b:7f:5f:e9:31:ee:24:72:b7:
10:e7:2d:11:d5:9c:40:48:f9:68:b5:37:1c:8d:a2:
9f:a1:e0:df:df:db:fc:2c:b5:03:3e:38:7c:b2:8b:
90:23:7c:01:93:0c:e4:e5:00:62:15:b9:8c:c8:16:
b7:ac:ea:30:13:59:71:a9:af:f6:02:02:a3:ae:5e:
1d:c6:4f:57:d1:3f:7b:83:23:fb:14:2d:67:fa:b9:
5b:45:be:4e:5d:fd:68:fd:1e:96:12:a8:4c:56:b6:
c1:1e:fb:db:d8:21:d3:14:1f:ed:41:8f:2c:31:87:
5f:7e:44:66:6d:ec:bf:6e:dd:32:b9:db:ea:ec:e3:
5c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:02:9D:68:A7:95:36:69:67:6B:C5:22:01:BC:4D:23:50:EF:64:5A
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/5gKdaKeVNmlna8UiAbxNI1DvZFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4500:1000::/40
Signature Algorithm: sha256WithRSAEncryption
14:b6:81:50:89:37:ad:2a:5e:5b:5e:a8:a7:0a:85:bc:2f:cd:
f8:3e:bb:f2:7e:00:ee:f7:8d:80:13:87:ee:6a:78:3d:f8:5f:
81:c8:8d:d2:ed:15:3e:25:3b:27:b2:7f:77:aa:d3:24:06:c4:
0d:c7:3c:37:b0:92:b0:4f:8b:59:5f:13:fb:a9:15:34:9a:6e:
c6:7a:e4:d2:b9:3d:39:57:2b:ad:a1:17:aa:fb:59:9b:6a:68:
68:90:0c:a0:63:72:73:8a:12:73:4b:0a:86:4a:67:c7:6b:88:
fc:d9:a5:82:32:f0:31:94:56:06:55:c0:a7:84:b9:88:28:68:
b4:ec:42:cf:43:a3:d7:13:5e:f2:92:cc:e7:1c:26:c3:bf:48:
d8:a0:0d:3e:ac:ae:7c:7c:29:a5:ca:69:d5:c6:ec:9e:27:41:
44:20:8c:f3:37:b1:64:59:19:7b:e6:52:75:ed:a5:4e:f8:e5:
df:ab:52:5a:86:26:51:f6:71:c7:1a:fb:60:37:bd:43:9b:1e:
d5:4e:90:dd:4e:f5:1f:38:3f:82:8e:95:79:10:f8:24:8e:c1:
46:87:e9:7a:a5:9b:69:24:e7:98:40:c6:1f:b2:53:14:d1:48:
22:01:50:2e:b4:45:94:c4:59:a2:82:cd:7e:d1:7e:50:64:46:
85:4c:42:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org