Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/op645alXeRxZ97jMjE01jddTYMs.roa
File: op645alXeRxZ97jMjE01jddTYMs.roa (raw, json)
Hash identifier: lUmZy1PnQoCzRKvwwKwsEHJGh8kCbLKVKMyUJS35/IQ=
Subject key identifier: A2:9E:B8:E5:A9:57:79:1C:59:F7:B8:CC:8C:4D:35:8D:D7:53:60:CB
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: 01E5
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/op645alXeRxZ97jMjE01jddTYMs.roa
Signing time: Fri 01 Sep 2023 09:26:05 +0000
ROA not before: Fri 01 Sep 2023 09:26:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18041
IP address blocks: 2406:bfc0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485 (0x1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Sep 1 09:26:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A29EB8E5A957791C59F7B8CC8C4D358DD75360CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:75:5a:cd:20:1c:89:91:bf:27:44:d0:46:29:
41:a2:d0:d3:54:45:89:bc:35:d1:f1:3f:de:71:82:
dc:83:2b:ae:33:d0:85:36:d6:65:14:70:d2:54:cf:
c2:e5:ce:b4:39:33:3c:f1:4c:a6:f1:06:7b:ae:1f:
97:70:e5:78:06:b7:c7:2c:12:ec:89:09:7c:48:c7:
bb:d8:e1:9a:51:bc:6b:cb:12:3f:cc:f1:2d:46:db:
7d:ed:9a:22:c4:18:80:c1:66:f4:de:2f:7f:93:5e:
de:ed:aa:d8:10:9b:fb:a0:49:c9:c8:d4:87:1c:aa:
1a:2b:72:e6:ef:e8:cf:fb:1d:0a:9b:a8:ff:fe:db:
1d:63:be:d7:be:01:ef:05:0b:8c:4b:21:91:ee:4f:
39:8e:47:e6:8f:23:d1:ea:a9:48:5e:8e:8c:8a:ea:
e6:66:b8:6e:17:3d:61:8b:76:d4:af:fb:34:5a:01:
4c:0d:99:85:b2:5d:cf:d1:49:f7:36:63:a5:62:8e:
2d:a5:50:d0:07:79:8f:3d:81:1a:7a:a5:76:f5:39:
17:c4:92:8c:3f:a3:d9:c8:55:8a:a9:e9:bf:69:8b:
5d:87:3e:2a:0d:34:7e:81:8b:38:52:a5:35:9e:14:
82:ee:61:1c:52:6a:06:00:ed:4a:ee:f3:ba:36:ae:
7d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:9E:B8:E5:A9:57:79:1C:59:F7:B8:CC:8C:4D:35:8D:D7:53:60:CB
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/op645alXeRxZ97jMjE01jddTYMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:bfc0::/32
Signature Algorithm: sha256WithRSAEncryption
09:22:4d:29:5e:ee:a1:57:ae:68:10:2e:68:26:f3:c0:49:6d:
91:1c:29:1f:c5:1d:80:65:1c:9f:47:9b:b9:f2:0e:4a:45:6a:
a0:c3:7e:95:e0:05:1f:07:17:ce:af:c4:33:84:dc:c3:48:8d:
8d:c5:ce:d7:55:01:71:3a:4d:18:00:f8:60:cd:51:4c:89:b4:
b6:a3:5e:7b:c8:0d:81:cb:b0:b8:52:5d:7b:24:cc:cb:f3:e0:
40:9a:47:db:62:9e:bd:72:93:a3:af:85:89:5b:1e:f5:1a:f8:
48:ba:f6:f7:2b:98:14:9a:9c:78:24:f6:f6:59:61:75:64:df:
a2:4e:f8:cd:1e:64:8c:b5:45:5a:21:0b:ff:89:98:32:2b:52:
4b:8c:0a:89:7c:cc:2f:81:ec:b0:43:2b:6e:8c:94:28:99:ed:
be:13:dd:2d:56:91:8c:d6:3c:6d:d2:b4:be:69:b4:9e:54:b8:
73:1b:61:36:02:f4:38:8a:64:64:93:a2:7e:26:06:26:1c:f2:
db:ed:4f:b5:c4:5f:c8:bc:90:e8:ad:d2:3a:2c:f4:2e:e9:24:
7a:ca:51:48:6f:d3:d5:39:26:88:a7:38:41:52:78:66:a8:a4:
fe:99:d5:79:48:79:4c:b8:2b:d5:0d:95:f5:2e:46:71:37:a1:
f0:3e:47:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org