Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/FNz_5S0vXBdc5PAthCcua6JNXH0.roa
File: FNz_5S0vXBdc5PAthCcua6JNXH0.roa (raw, json)
Hash identifier: fxsR5pIzjoIsJvx0UcIEPetnE8JmXfqiizKrcO3kx/Y=
Subject key identifier: 14:DC:FF:E5:2D:2F:5C:17:5C:E4:F0:2D:84:27:2E:6B:A2:4D:5C:7D
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BB9
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/FNz_5S0vXBdc5PAthCcua6JNXH0.roa
Signing time: Fri 01 Sep 2023 09:40:36 +0000
ROA not before: Fri 01 Sep 2023 09:40:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 122.201.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3001 (0xbb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=14DCFFE52D2F5C175CE4F02D84272E6BA24D5C7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c4:aa:09:c2:9d:07:f4:c3:e8:68:12:b7:38:
6e:72:6a:20:f4:35:75:97:92:8b:6e:14:5b:f7:14:
25:93:1c:1a:a0:ef:cf:b2:88:8c:a3:36:57:ec:58:
31:74:d5:f0:00:b8:45:bb:ca:10:5d:65:e0:42:82:
c6:76:5a:05:4c:7d:6f:31:20:9f:c5:3e:6c:f3:cd:
f0:b5:a0:ee:e2:df:28:89:1e:bb:94:fa:32:af:b7:
8b:ff:6d:ca:c4:ff:4f:3c:95:02:4d:31:36:79:23:
43:ee:ff:73:51:3d:ce:ee:b9:17:39:4d:31:6f:a1:
4e:02:df:9b:03:00:f9:d6:97:f5:0e:20:b5:9e:52:
3e:86:de:19:cd:53:f6:ca:96:68:b7:61:5a:f9:3a:
0a:7b:72:26:26:9e:91:ee:f3:dd:64:3e:0e:29:23:
cc:d9:49:5a:4a:ec:41:36:f8:24:5e:0b:ad:7e:46:
5d:93:3e:2c:14:92:90:2f:e6:94:ef:e5:fd:4d:5c:
f1:73:fd:de:af:47:af:dd:d9:91:95:7b:60:ae:c6:
a5:04:57:7d:40:56:7e:1b:fb:87:68:99:3b:38:65:
6b:b7:60:3a:fa:e6:40:8f:33:86:12:01:74:2d:15:
0a:56:2e:50:bb:72:51:03:6c:f5:07:91:2f:bf:6d:
0a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DC:FF:E5:2D:2F:5C:17:5C:E4:F0:2D:84:27:2E:6B:A2:4D:5C:7D
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/FNz_5S0vXBdc5PAthCcua6JNXH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
86:d8:ac:95:a6:27:ed:85:f3:0d:20:f3:81:f5:24:75:7e:18:
d3:69:45:5b:00:61:ae:eb:e0:b6:bf:3e:25:2f:57:79:31:db:
d6:5a:1b:d9:e9:ab:60:97:25:ee:21:2e:dd:24:5c:66:5e:e0:
11:4b:22:ec:97:e8:a6:14:a1:c5:e2:4c:1f:ae:57:d8:29:a0:
50:8f:c3:bb:de:6c:c0:19:8f:20:52:b0:c4:04:5b:24:0b:ad:
b5:df:20:de:6a:a8:78:1a:62:20:ef:c1:90:42:5c:ba:80:30:
59:11:35:7c:60:1c:8c:5e:ed:2d:65:95:75:ec:e3:e3:28:00:
f2:53:21:3d:fb:2d:a3:9b:a3:cf:d5:1d:3d:8d:63:18:b3:cc:
1c:3e:9a:31:8c:2a:4b:95:55:e6:3f:34:9d:d9:69:14:cc:6c:
9c:71:50:6b:70:c3:d3:ba:70:52:52:1f:ea:1f:9e:4d:0d:e2:
96:5c:c4:8c:88:1b:c6:6b:1f:d5:b6:4b:2b:7d:a2:98:af:00:
9b:9d:fc:48:11:9a:f3:3b:ba:b3:96:ec:f4:f9:6f:ac:fc:12:
de:29:2e:45:51:4b:0d:d5:51:17:c1:f6:db:df:c8:47:4c:b8:
64:6f:55:ed:ff:1b:82:b1:fa:c2:06:bc:46:e2:eb:fa:0c:70:
90:bb:4f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org