Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/2ya9t8E0BNSBoGlzldJH_hS7tm8.roa
File: 2ya9t8E0BNSBoGlzldJH_hS7tm8.roa (raw, json)
Hash identifier: Wj98USLftwjzWKkiXgzspoovaCZZ3iirQcEO2nEuGRo=
Subject key identifier: DB:26:BD:B7:C1:34:04:D4:81:A0:69:73:95:D2:47:FE:14:BB:B6:6F
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B3B
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/2ya9t8E0BNSBoGlzldJH_hS7tm8.roa
Signing time: Fri 01 Sep 2023 09:34:45 +0000
ROA not before: Fri 01 Sep 2023 09:34:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4781
IP address blocks: 210.63.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2875 (0xb3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DB26BDB7C13404D481A0697395D247FE14BBB66F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4f:c9:a7:53:cc:50:56:60:09:51:0c:2d:2b:
20:8f:8b:50:2d:e6:16:41:da:34:dd:44:73:24:60:
1a:64:c5:9b:06:c9:12:12:6b:bb:9a:80:a3:a1:eb:
08:0c:0f:ac:8f:b0:43:27:3a:b4:ae:0a:12:8a:c7:
6f:7c:46:86:90:da:7a:52:91:48:2d:52:78:6f:1f:
fa:fe:30:ac:6a:96:74:73:af:63:cf:6c:c1:72:61:
09:d3:55:a9:c8:5e:2a:e0:28:f6:79:5a:f0:57:cb:
d1:a8:3d:b2:ce:84:d8:dc:8b:1b:15:13:e5:b7:7d:
ba:5b:37:71:17:a6:a5:f1:e4:31:4b:57:92:a4:6c:
16:84:0f:53:48:cd:86:74:a3:66:b0:b3:cc:fd:48:
1d:60:6d:18:0a:ff:62:1c:b8:55:0f:d2:97:85:b0:
b5:88:94:b7:de:c7:df:79:c1:a3:a2:b7:76:cf:76:
f6:fe:02:d4:40:06:ad:aa:a8:e5:24:8f:d7:81:64:
27:dc:a3:0f:ca:3f:1e:6e:91:1f:f4:c0:5b:b5:15:
30:be:2c:00:dc:21:16:28:dc:4e:38:a3:f8:f6:13:
d7:dd:dc:33:94:63:fc:51:45:11:6b:d2:3f:35:a3:
1c:45:78:e5:87:e5:df:2f:73:fa:d2:f0:de:c6:01:
63:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:26:BD:B7:C1:34:04:D4:81:A0:69:73:95:D2:47:FE:14:BB:B6:6F
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/2ya9t8E0BNSBoGlzldJH_hS7tm8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.97.0/24
Signature Algorithm: sha256WithRSAEncryption
18:58:89:ca:89:b1:a9:22:71:e3:4b:de:46:6f:e5:2a:14:b3:
bb:bd:03:a6:b3:ec:22:04:ef:e0:e3:5e:c8:a1:68:62:d8:9e:
06:8e:43:fb:32:6e:aa:d3:c2:fd:8b:fd:13:fd:ab:48:95:ce:
c4:90:0e:1f:cd:27:ab:5c:b7:3c:95:c1:4d:d3:4a:7a:ce:4a:
b3:53:31:a4:29:6a:59:8f:ee:cd:e8:2c:76:44:1a:b0:0a:b6:
38:b2:6b:b3:f1:08:3b:a7:95:c0:e0:39:5d:26:cd:fb:3f:9b:
ec:c7:2a:01:87:44:b1:03:98:6d:f5:26:8e:7a:3d:50:c8:c8:
5e:0a:59:f2:a0:f6:4d:35:1c:d2:da:70:d4:e6:7e:5a:ed:7a:
db:ef:53:88:6c:c9:04:7f:f2:63:f1:76:11:ea:2c:5c:24:cd:
8f:95:65:ae:e2:42:dc:88:91:ac:93:7d:1a:5c:b4:1b:3e:42:
22:50:d6:2d:9e:01:e9:bb:ca:23:88:c9:5f:fe:c2:9e:a9:92:
64:dd:a8:bd:4f:c8:2b:36:f7:47:58:c3:0d:63:9c:84:2e:e5:
69:7e:7c:ce:7e:16:33:9e:22:6f:eb:41:b3:ad:e3:71:c0:ed:
0c:07:af:a9:81:12:b5:2f:42:2b:aa:10:03:01:38:c7:3c:52:
e8:2b:ca:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org