Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/4kvtCHtumgjct5feBU7qsSj102g.roa
File: 4kvtCHtumgjct5feBU7qsSj102g.roa (raw, json)
Hash identifier: ri7nPEYz1dFFk2z2dGFovmps84AzjMfOi4kQnSRXgFg=
Subject key identifier: E2:4B:ED:08:7B:6E:9A:08:DC:B7:97:DE:05:4E:EA:B1:28:F5:D3:68
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 08A3
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/4kvtCHtumgjct5feBU7qsSj102g.roa
Signing time: Fri 01 Sep 2023 09:34:30 +0000
ROA not before: Fri 01 Sep 2023 09:34:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131674
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2211 (0x8a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 1 09:34:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E24BED087B6E9A08DCB797DE054EEAB128F5D368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:18:db:65:39:e0:5a:31:36:7b:77:2d:11:8f:
fe:7a:e9:26:7e:ca:40:6f:94:80:7d:27:08:a9:b4:
11:2b:a1:a9:a7:db:67:75:9a:8c:78:49:bd:b8:f6:
38:4c:31:1b:62:7b:86:f0:7a:22:2f:17:e7:90:8e:
00:4b:6d:a7:59:b0:ad:c3:15:54:c1:03:ba:7c:35:
69:b3:26:a3:e3:93:49:93:a0:af:f8:75:bf:2e:67:
16:2b:fe:d1:14:df:c3:f0:6a:ef:df:e1:a1:8b:77:
3d:6a:aa:4f:2a:22:c6:aa:5c:be:93:03:96:60:79:
26:d8:3a:2f:5b:ca:93:e0:0b:a9:62:f0:2c:8e:3b:
8d:ff:d5:65:9c:1d:c0:89:32:92:3e:65:da:fb:12:
7d:e3:32:4d:70:4e:00:c8:d7:89:59:29:48:38:0a:
7e:1c:ae:a4:0b:70:b5:c7:36:f9:ca:4a:f3:c1:be:
c8:64:ad:12:06:68:6c:30:90:6d:9d:a9:c1:27:91:
4b:46:5e:9c:52:13:b3:6b:ac:0a:32:10:ad:c5:d4:
ba:1c:20:0d:0b:db:42:cd:3f:14:34:a5:cf:14:99:
40:ca:fc:f2:8a:50:eb:91:26:3e:f7:31:0e:0e:83:
bc:4c:59:9d:33:54:0d:f8:e6:8b:bd:ac:fa:43:3e:
01:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:4B:ED:08:7B:6E:9A:08:DC:B7:97:DE:05:4E:EA:B1:28:F5:D3:68
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/4kvtCHtumgjct5feBU7qsSj102g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
37:db:2d:7e:fe:10:7f:66:48:1d:5c:ea:5d:7a:0f:1d:7a:39:
e4:a6:ca:dc:82:7e:16:b6:7d:b8:a9:9c:36:d8:08:84:63:ef:
03:e9:8c:0d:b7:9b:8d:08:e2:d2:60:72:fa:c7:de:41:af:ba:
fa:db:e9:a3:0a:8e:39:ed:0b:ce:c0:49:54:7e:9c:c4:3d:8e:
c8:45:05:22:3c:5c:df:74:9e:a2:d8:56:7c:aa:ab:7d:7a:43:
a6:3b:38:eb:4d:9e:2a:15:59:6f:60:b2:5f:f8:fb:b2:0b:91:
f5:bf:09:51:3a:53:b5:19:99:c2:4f:d9:cb:12:92:e7:bb:38:
ed:43:ae:d6:a0:8e:69:f2:35:03:27:12:7e:f7:68:75:4c:65:
18:79:f3:81:a3:c9:d7:c0:92:9a:23:30:be:a6:8d:ac:ef:0d:
d5:df:f9:f3:00:c6:db:d6:83:be:b3:72:7c:09:cf:d1:6c:fe:
e1:68:f2:2b:8f:62:62:61:a2:e9:34:4c:32:0e:20:f7:63:3b:
03:56:cf:4a:2b:6a:43:21:a4:a6:f2:56:4b:a1:41:b2:c9:27:
cc:fd:14:1a:53:ff:43:7b:d8:11:af:63:b2:1a:cb:7e:da:f1:
8b:ca:4a:65:42:a3:d9:19:c4:2d:8f:a4:d0:f3:65:99:bb:13:
8a:a6:08:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org