Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/SKpLzMgtPgbRTb8ZMi3hQhRN9DA.roa
File: SKpLzMgtPgbRTb8ZMi3hQhRN9DA.roa (raw, json)
Hash identifier: ZtuDukz5U68HpOxVzpcz7Rnnj17m3iXpo9sUuQ6e3/c=
Subject key identifier: 48:AA:4B:CC:C8:2D:3E:06:D1:4D:BF:19:32:2D:E1:42:14:4D:F4:30
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B38
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/SKpLzMgtPgbRTb8ZMi3hQhRN9DA.roa
Signing time: Fri 01 Sep 2023 09:34:45 +0000
ROA not before: Fri 01 Sep 2023 09:34:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17420
IP address blocks: 203.65.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2872 (0xb38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=48AA4BCCC82D3E06D14DBF19322DE142144DF430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d7:5b:78:c9:c0:85:74:0c:33:35:4d:89:0d:
53:18:0d:c4:09:92:6c:91:35:bd:41:03:53:1b:fe:
67:3b:6a:a0:e0:af:ce:8b:7c:67:00:e9:aa:40:18:
7d:30:3a:8c:d7:9f:f4:57:6f:2b:cc:09:d2:f0:ca:
3f:8f:3d:6e:38:bd:88:d8:b6:e9:7a:a4:28:ce:75:
78:33:8a:b1:ca:c0:30:d6:e2:32:20:ec:ea:db:5b:
44:4f:5f:ce:a4:27:2a:03:54:55:af:3b:53:a3:3d:
d6:78:bc:eb:03:5c:19:61:ce:f6:be:b7:2a:6b:ee:
c3:b2:ed:12:cc:38:c7:72:96:48:e1:7a:6d:b6:be:
f8:7c:de:49:78:7e:2e:ef:6a:eb:9e:9d:30:0b:d0:
64:bd:6e:1c:5c:d2:71:1a:3e:b3:71:e0:f8:07:60:
d2:0a:26:5f:6a:95:11:e8:8d:81:ab:4b:6c:7a:7d:
c8:cd:50:ea:46:57:7b:3b:bf:63:3a:ad:c9:af:2f:
3b:a3:b6:8c:6e:d1:db:d7:21:fe:e2:82:ca:b1:23:
83:fb:1f:c9:03:07:e7:27:02:34:d4:27:98:31:a5:
c5:c4:a6:a7:86:64:ef:aa:78:f0:f9:83:08:c1:cd:
4c:2f:8a:09:80:da:d7:e8:97:fa:10:a8:18:94:69:
54:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AA:4B:CC:C8:2D:3E:06:D1:4D:BF:19:32:2D:E1:42:14:4D:F4:30
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/SKpLzMgtPgbRTb8ZMi3hQhRN9DA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.192.0/19
Signature Algorithm: sha256WithRSAEncryption
11:c3:9c:dd:8a:02:9e:23:43:36:e4:e5:1b:bc:82:2c:cb:df:
ad:a0:d4:0a:e5:fc:a0:ac:97:74:58:76:6c:e4:7d:65:42:99:
54:5a:da:64:c4:e7:61:eb:32:ff:9d:89:f9:0f:ae:d9:95:81:
bb:fd:8f:65:79:ce:fe:f4:7a:be:c8:3c:c2:66:1f:6d:5e:9c:
39:2f:97:da:8f:98:16:91:d0:88:bd:10:6c:67:04:d2:93:2a:
8e:42:e0:30:99:18:76:c2:3d:77:62:b4:46:8d:05:7c:3c:4c:
34:5b:61:84:e0:85:53:f9:80:7f:96:a7:4b:23:cd:7e:42:a1:
bd:f1:e8:83:52:f6:e3:d5:62:ca:a4:b0:99:15:f3:bc:76:ec:
c8:ed:8a:41:83:37:5e:30:5c:53:38:54:e1:cd:cb:1b:f4:d8:
95:07:ae:b9:8f:a8:96:85:85:ad:d2:9c:15:f0:de:4e:00:cf:
82:d6:5a:b9:1e:90:fb:ce:e3:49:b3:9b:74:6e:d6:48:6b:fd:
50:65:26:4a:24:82:73:3c:02:79:28:64:97:5b:6f:99:a6:c5:
5d:cc:dd:38:a8:e0:5a:f6:90:c9:59:1e:a4:81:fa:4e:cf:bb:
24:9b:2c:49:21:16:84:6c:27:7c:fd:44:f7:d8:ce:92:e8:f8:
c9:fd:45:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org