Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa
File: ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa (raw, json)
Hash identifier: iEeAo6LGVXvn67Wb7TVwnszAC1lyT4kXqi2pY+1tRxQ=
Subject key identifier: 8E:EE:57:B9:54:F2:EE:90:E1:60:EB:47:5E:DD:11:A8:8F:95:A5:3F
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B3D
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa
Signing time: Fri 01 Sep 2023 09:34:46 +0000
ROA not before: Fri 01 Sep 2023 09:34:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17420
IP address blocks: 210.67.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2877 (0xb3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8EEE57B954F2EE90E160EB475EDD11A88F95A53F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:4b:65:a1:d7:b2:a3:e9:9e:59:62:fe:2e:1c:
57:ee:e2:61:65:0c:8e:4c:27:a6:e5:3b:ad:51:cb:
54:e4:2f:68:69:31:94:59:f4:93:17:b4:e5:e9:ba:
e2:4e:60:88:04:86:2f:5e:9b:2f:5f:fb:07:84:ea:
bd:fb:d5:01:fd:75:b3:e0:c3:b0:13:67:db:c7:f2:
49:9b:d8:c1:a8:0e:c9:cc:56:c5:d0:54:56:a0:6d:
93:c7:7e:d2:7a:4d:cc:43:07:88:df:bc:ae:f8:c2:
d7:e3:d6:8e:f4:4d:1a:f8:16:ea:b4:50:a4:f7:b6:
c5:3a:ec:d3:a4:51:9a:d5:78:d5:45:0d:1e:ca:07:
7c:0a:81:b5:29:d3:96:a3:0a:9e:d7:f3:29:2c:4f:
2f:12:3a:de:88:8a:e0:e8:cf:3f:78:46:46:d1:6c:
a7:f5:f5:47:a8:2b:0d:d0:67:50:42:f0:68:cf:ba:
3f:3f:9c:02:70:40:2d:31:a1:f0:3e:81:90:74:3a:
ae:2c:0e:3f:2b:1a:b5:1d:16:97:4f:46:8a:e3:c6:
a0:de:98:6f:54:37:c2:93:5d:ec:b2:e5:7e:f8:75:
32:87:11:ba:55:c3:e8:dd:a5:14:25:ea:ec:31:b8:
2a:42:ff:03:30:5f:1b:ab:9b:f5:07:87:21:ac:01:
49:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EE:57:B9:54:F2:EE:90:E1:60:EB:47:5E:DD:11:A8:8F:95:A5:3F
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
4a:12:82:7a:a1:8d:24:d0:a2:e8:bc:be:8f:7d:f8:5d:43:90:
9b:60:f0:16:8b:70:9f:7d:77:b3:45:20:c6:19:16:92:99:3d:
5f:5b:0f:e8:c7:3c:b8:7f:12:b9:4b:e9:90:b7:40:23:28:ad:
06:28:a1:b0:36:f5:ba:6c:c3:ed:6f:d8:9b:e9:9d:99:7a:8f:
ca:8a:7e:b4:9b:d9:58:bb:0b:1f:99:a2:29:5d:a7:97:60:da:
2e:e0:7b:15:11:a3:b0:f0:d1:f6:38:4f:01:70:13:2e:01:85:
24:00:8a:35:80:bd:9e:e1:42:61:78:e6:b6:b4:86:9c:97:49:
cc:83:4a:fb:30:f6:fa:87:07:00:7f:c3:bb:ea:ff:eb:86:7e:
7d:f7:d8:1b:e1:1f:20:32:eb:1c:06:79:e1:2f:54:d8:bf:0a:
99:fc:43:12:ba:5f:ba:b8:ea:e9:ca:e3:d7:df:d7:af:16:09:
b4:cc:f5:88:66:5a:bc:e1:ca:4f:4d:7f:e6:67:f0:4c:78:e6:
17:e7:69:ef:eb:40:f9:2d:03:e1:0b:c6:19:21:ad:34:d9:b2:
0c:24:37:64:cc:e0:f9:18:d2:de:6c:b1:d7:f0:7a:29:f2:83:
35:ae:d3:4d:f2:77:44:18:38:cb:4c:43:79:f0:29:ae:d4:11:
a0:8c:e5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org