Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/BI09JkZ75E3cDtA9-EOCudpygeE.roa
File: BI09JkZ75E3cDtA9-EOCudpygeE.roa (raw, json)
Hash identifier: tHuqMovx7JiRAexz+pKrPaXvTKY+BRXX6RszLT5TPhU=
Subject key identifier: 04:8D:3D:26:46:7B:E4:4D:DC:0E:D0:3D:F8:43:82:B9:DA:72:81:E1
Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Certificate serial: 0735
Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/BI09JkZ75E3cDtA9-EOCudpygeE.roa
Signing time: Fri 01 Sep 2023 09:34:16 +0000
ROA not before: Fri 01 Sep 2023 09:34:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131674
IP address blocks: 2405:e4c0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1845 (0x735)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Validity
Not Before: Sep 1 09:34:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=048D3D26467BE44DDC0ED03DF84382B9DA7281E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:70:e4:62:2b:4c:09:db:50:21:2a:70:d0:c4:
9d:5b:53:59:de:b4:58:b9:fb:8b:38:3c:6e:e5:3e:
34:4f:e3:cc:b2:9c:f8:1a:e4:74:7b:2b:0f:31:16:
3b:d6:4c:d3:4e:18:61:6b:db:af:46:85:12:27:8f:
a3:77:41:49:90:49:bb:d7:ea:b0:3f:71:58:f5:1b:
07:60:de:90:9c:5d:47:69:d1:88:a7:96:7b:00:61:
ec:e2:f2:b9:38:d5:a5:95:52:4e:bb:2e:d4:9f:a7:
b9:b8:e0:7b:66:97:7e:5f:a9:2f:d4:5d:b6:79:21:
2a:cf:00:dd:a0:b5:ce:13:e6:9c:31:4e:2c:59:ef:
7f:05:0e:fa:e6:91:9f:dc:bc:d5:39:d5:8d:40:58:
5f:c2:57:16:1a:f7:54:23:b1:cc:66:04:09:21:70:
2a:74:69:15:92:fa:30:03:91:f9:9b:90:c6:76:f6:
8c:72:e2:ae:07:98:3b:84:ec:20:44:db:f0:c4:75:
75:a1:c0:fc:8a:81:e7:35:e2:c0:e3:65:3a:6d:ad:
6c:cb:db:07:6d:d7:1e:e5:8d:ab:6c:ed:39:fe:51:
32:82:80:a4:95:ab:e2:7e:8a:eb:19:e4:33:c0:08:
1c:09:fd:e5:cf:fa:61:c1:9c:d2:1f:6d:91:1d:83:
7e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8D:3D:26:46:7B:E4:4D:DC:0E:D0:3D:F8:43:82:B9:DA:72:81:E1
X509v3 Authority Key Identifier:
keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/BI09JkZ75E3cDtA9-EOCudpygeE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:e4c0::/32
Signature Algorithm: sha256WithRSAEncryption
81:ea:8d:67:40:6b:70:43:5e:23:88:79:c8:0f:19:79:85:3b:
88:af:86:6c:5b:85:4f:02:35:2d:41:72:48:4d:75:54:b4:ed:
a2:70:80:be:d0:51:f1:db:c5:12:fe:57:71:91:45:9b:07:07:
ef:00:02:d2:ea:40:a9:61:c6:cb:e8:9a:6c:4e:f1:37:62:18:
67:9a:79:89:fc:12:7b:c3:b0:72:b5:75:88:d1:7c:72:06:62:
7c:e6:6e:bd:17:7b:4b:33:5e:12:cc:03:72:14:f1:d2:bd:79:
4d:36:72:0e:9c:4b:87:9e:72:0b:42:8b:04:f2:1b:f6:59:52:
55:40:ff:59:71:1e:e5:54:fc:a1:e1:a8:b9:70:8f:c0:c0:0a:
31:73:f7:98:e2:83:59:29:77:1f:3d:76:09:1a:af:bd:62:0d:
b5:58:13:d7:74:0e:57:8e:49:a7:d4:ce:04:b1:5a:0a:5d:92:
45:8f:5f:27:72:59:84:54:4d:f4:68:90:db:10:17:47:5d:83:
89:73:98:9c:31:68:73:53:cf:48:f7:44:b3:56:b3:6a:a9:15:
fd:34:b5:cf:80:ee:5d:f1:72:d1:02:a4:61:54:b7:25:b1:f9:
6a:ce:f2:14:39:38:52:5b:5d:d4:b1:f8:54:53:5a:7a:ed:fe:
d1:a3:0b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org