Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/63p0_1Xj6MRoktTOf4o52okD4uE.roa
File: 63p0_1Xj6MRoktTOf4o52okD4uE.roa (raw, json)
Hash identifier: f4is9Riv0HFcP/lo+c7r56zqtJk5DhyDQFQnf9xI9dw=
Subject key identifier: EB:7A:74:FF:55:E3:E8:C4:68:92:D4:CE:7F:8A:39:DA:89:03:E2:E1
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BC4
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/63p0_1Xj6MRoktTOf4o52okD4uE.roa
Signing time: Fri 01 Sep 2023 09:40:39 +0000
ROA not before: Fri 01 Sep 2023 09:40:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 210.62.176.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3012 (0xbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EB7A74FF55E3E8C46892D4CE7F8A39DA8903E2E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c5:24:82:e1:79:70:a0:bc:39:b5:ba:ca:20:
d7:47:c2:c1:41:89:07:2d:ae:9a:4d:63:38:6c:02:
ba:16:bc:90:75:04:2e:c4:ed:44:82:58:f2:eb:89:
c7:71:91:e2:54:22:4a:50:ae:cb:bb:48:90:50:a6:
b8:8a:d7:c3:33:96:02:2f:5e:b3:8d:c2:22:68:09:
cf:c9:7a:45:90:5c:3f:fd:62:59:2e:7b:42:3c:09:
36:2b:1b:02:38:ff:91:d2:13:f9:3f:a8:ba:9b:2b:
fc:51:20:78:56:d3:42:37:b4:d6:93:53:54:1f:7a:
08:7d:95:5e:1a:3a:84:23:f5:ff:93:9f:ee:b5:46:
b8:4e:8d:6a:99:99:39:60:89:f2:30:a0:e7:5e:77:
57:c0:83:a5:cb:39:50:54:fc:33:1e:f2:cf:ff:85:
e8:b0:5e:fd:6f:3b:27:37:a6:c3:dd:93:69:bd:49:
07:7d:3a:28:16:4a:73:6c:b0:eb:be:34:df:36:d0:
e6:81:06:0b:12:ff:0e:6d:2f:c0:6b:b1:9a:e3:00:
67:82:f9:b1:b8:c6:e8:d1:7c:85:01:d2:3c:cf:8f:
06:93:1b:97:be:f9:9f:31:59:04:8d:4b:2a:ac:aa:
82:78:43:e7:9f:8b:99:e2:63:4b:02:f6:b7:bb:23:
f9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7A:74:FF:55:E3:E8:C4:68:92:D4:CE:7F:8A:39:DA:89:03:E2:E1
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/63p0_1Xj6MRoktTOf4o52okD4uE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.176.0/20
Signature Algorithm: sha256WithRSAEncryption
32:76:ae:fc:ab:f8:93:4d:ff:c6:b4:38:2b:5a:f8:90:7c:f8:
0d:86:cb:ed:5d:0d:75:07:08:e5:55:6a:66:f8:f9:73:60:f5:
e3:7e:d8:bd:f6:37:1c:92:e5:a7:0c:80:8a:14:93:89:15:7f:
48:ff:36:af:43:ec:3a:26:78:9e:37:e4:67:e0:6f:e4:1e:62:
f5:37:60:7d:a3:e7:99:bf:f5:8a:77:f9:1e:00:c6:46:09:52:
75:e6:e6:68:05:49:17:c8:d8:e0:13:69:f5:ef:1c:d6:31:12:
27:21:99:e5:08:fb:67:1f:8f:41:91:53:db:1b:e6:fc:70:53:
9f:68:64:b6:ff:6d:92:51:19:7c:0a:b8:fc:a2:1a:c6:74:d2:
8a:3b:06:ba:f4:74:e4:92:38:ea:bb:61:bb:53:7b:2d:5b:89:
ed:9f:4a:1f:c0:76:ae:08:18:79:11:fe:34:db:ae:7b:c9:28:
85:2f:63:4c:d6:45:5a:d6:bb:ca:03:0d:12:29:8e:cf:a5:50:
10:98:2c:4e:f4:43:70:c3:8d:98:6e:4e:c7:0d:41:4e:c0:1b:
60:7b:29:7a:a1:2f:73:f1:82:88:7a:8d:44:f0:e9:61:14:13:
55:f2:10:2c:3c:40:13:5f:e5:72:1c:dc:92:00:1c:6e:d4:ab:
69:8b:da:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org