Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/SeNQbXVyYNNLT2aXm8BDg0Bcxkk.roa
File: SeNQbXVyYNNLT2aXm8BDg0Bcxkk.roa (raw, json)
Hash identifier: pTkfeZfNhkGjkbE6BG+BTR5yKnrvH3T2jJOV45ehnFA=
Subject key identifier: 49:E3:50:6D:75:72:60:D3:4B:4F:66:97:9B:C0:43:83:40:5C:C6:49
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B35
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/SeNQbXVyYNNLT2aXm8BDg0Bcxkk.roa
Signing time: Fri 01 Sep 2023 09:34:44 +0000
ROA not before: Fri 01 Sep 2023 09:34:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4781
IP address blocks: 210.63.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2869 (0xb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:44 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=49E3506D757260D34B4F66979BC04383405CC649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:7f:68:e1:a4:b6:b3:9f:23:06:86:f6:86:
45:2b:b0:23:b9:b0:81:26:4c:8a:ed:c1:ef:4e:a8:
15:d9:57:de:26:f4:98:f8:28:65:28:9b:52:99:fa:
87:61:0a:ca:cd:8e:91:1a:29:6e:05:8e:fc:c5:7e:
a2:1d:f9:5b:29:e9:c2:da:d7:50:0e:94:54:3b:f2:
59:11:5f:a5:9f:b1:15:fc:47:78:eb:49:08:c0:4b:
bb:1c:aa:a0:fa:f3:d8:84:fd:7a:35:40:df:00:b9:
b4:35:34:be:63:a5:fe:4b:98:e7:55:9b:7b:88:c8:
1a:94:34:6b:b0:26:34:ad:98:81:33:e1:04:5d:61:
53:b9:99:6f:33:06:e7:f4:7c:09:24:d0:db:45:88:
b1:b2:ec:73:2b:2b:53:de:ef:a7:62:9c:36:f3:b1:
4e:14:20:4e:42:c5:d7:a4:20:04:4d:a3:79:88:16:
04:cf:96:9c:54:26:41:3c:6a:e2:a7:59:12:18:48:
09:39:39:ee:ae:42:98:22:63:82:93:a8:3d:36:df:
d9:43:68:09:45:26:bd:18:a4:48:dc:1f:d5:64:f1:
0b:48:57:85:53:c5:2f:50:26:df:59:e6:06:9a:16:
b5:4a:0e:01:04:07:e6:ec:c1:84:e9:80:bc:e0:a6:
98:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E3:50:6D:75:72:60:D3:4B:4F:66:97:9B:C0:43:83:40:5C:C6:49
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/SeNQbXVyYNNLT2aXm8BDg0Bcxkk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.98.0/24
Signature Algorithm: sha256WithRSAEncryption
89:10:40:64:98:ee:0e:f0:68:e9:0d:eb:8c:44:30:70:90:b5:
24:1e:d6:64:c8:02:c4:4e:b7:25:be:ea:c6:6a:1b:22:fc:9c:
70:e8:9d:2a:e7:b1:65:aa:c6:a6:e3:0e:71:c1:37:06:c5:91:
90:c9:ef:2a:e0:ea:7e:1a:f3:f4:b6:34:f3:07:63:42:7f:ca:
07:7b:3a:fc:d4:58:78:ec:4d:f7:e6:66:dd:33:a6:f9:d9:60:
12:44:2c:e0:6f:b6:85:af:9f:1f:31:1b:21:d2:d3:4d:18:90:
2e:8e:07:fc:7b:91:59:2b:8e:a0:75:39:26:4f:3a:e3:75:16:
04:8f:0a:d8:56:1e:43:0f:1b:17:11:bc:47:11:f8:13:42:57:
9b:f9:2b:90:35:30:1a:24:1a:cb:15:b3:b2:48:62:18:49:e9:
27:eb:cf:cc:ee:64:ec:a4:fe:3c:36:42:c3:1f:13:c2:0a:01:
59:17:13:4f:31:69:98:73:f7:4f:08:c3:d6:39:1d:c2:87:6d:
2e:b0:d1:83:67:c4:fd:45:bd:0e:be:e8:16:b3:68:2b:d1:33:
b0:36:57:5d:2d:e1:a7:5b:68:9b:84:4b:02:55:34:54:98:bd:
43:92:ef:64:b4:5b:21:ec:c1:3d:a2:22:c2:9b:00:aa:42:ba:
19:fa:48:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org