Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HpRH_joi8uCvY9vZ5yeNBUr1-hk.roa
File: HpRH_joi8uCvY9vZ5yeNBUr1-hk.roa (raw, json)
Hash identifier: GM8aG2Aniy7zKD1Ti5SYMvgo4HPtvlM7z/8hsSAUCnY=
Subject key identifier: 1E:94:47:FE:3A:22:F2:E0:AF:63:DB:D9:E7:27:8D:05:4A:F5:FA:19
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BC2
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HpRH_joi8uCvY9vZ5yeNBUr1-hk.roa
Signing time: Fri 01 Sep 2023 09:40:38 +0000
ROA not before: Fri 01 Sep 2023 09:40:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 61.63.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3010 (0xbc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1E9447FE3A22F2E0AF63DBD9E7278D054AF5FA19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4c:f4:54:7b:fb:74:6e:d5:ad:d7:db:50:5a:
d3:bb:00:c9:fe:e1:21:ba:a6:3f:f2:33:55:4e:16:
c4:83:e0:de:ff:0a:f7:4e:f4:d6:33:16:ac:c3:c9:
fe:1f:89:a1:1f:25:29:63:8a:a4:2f:30:da:70:cd:
7f:33:4e:21:21:37:3a:ac:80:8e:e2:03:5e:b8:f4:
18:75:5f:9b:15:40:d1:d5:9c:6d:c2:9e:1d:9d:0d:
74:b0:21:e3:d7:a1:11:c7:d1:bf:0f:6f:ff:63:de:
91:80:83:d1:80:96:51:eb:3f:f2:5d:b6:b7:38:13:
9b:6d:c3:c3:81:e1:ba:eb:6c:71:99:6d:d8:ed:96:
a5:1a:c4:9d:ab:a4:e9:98:50:a6:9b:f0:c7:73:64:
c8:04:b0:4e:23:23:ce:d8:fa:54:d2:54:da:4f:08:
b4:03:b4:a8:23:72:5c:ea:e4:0e:32:75:33:33:28:
c1:49:99:2d:ad:e3:3f:2e:35:bc:a5:85:a1:f3:8b:
34:1d:cb:a3:f9:e2:6f:70:75:d4:c3:8b:50:c1:d6:
b5:df:76:0a:ea:70:06:3c:08:a8:e2:4c:0b:bc:c7:
7d:a6:d2:52:c7:34:69:f4:60:5b:27:25:3e:dd:97:
09:0f:ed:af:46:88:c7:13:d1:89:36:18:bf:82:d2:
c4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:94:47:FE:3A:22:F2:E0:AF:63:DB:D9:E7:27:8D:05:4A:F5:FA:19
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/HpRH_joi8uCvY9vZ5yeNBUr1-hk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.160.0/19
Signature Algorithm: sha256WithRSAEncryption
57:8c:8c:70:86:da:8f:b1:aa:7e:95:0a:ba:dc:bb:6b:d2:b5:
03:27:29:bd:c0:4d:1e:59:bd:12:70:df:9e:b7:47:58:bf:41:
56:48:9e:3f:b1:75:62:fd:09:43:92:cc:4c:ee:22:81:e4:59:
cb:29:c2:68:86:4c:a0:8e:ab:f7:91:43:5f:78:b5:2d:e4:bc:
a0:2a:00:2c:a3:6d:c3:20:ef:29:3f:c4:b1:11:3e:a7:18:a8:
c1:ed:e6:44:26:3d:8b:a4:f7:04:67:df:7a:74:72:df:ac:8d:
a7:ab:cb:2a:61:a3:69:97:0c:ed:aa:a5:d0:72:95:d7:1e:30:
9a:29:31:49:45:3e:ae:89:50:ca:2a:77:24:7d:a7:5d:34:18:
0c:8e:7d:36:d9:5e:62:a8:de:4a:09:4d:85:9d:7e:e1:87:4a:
a0:0f:aa:6a:28:4d:99:dc:f8:a8:ff:89:2b:e1:37:d7:8d:68:
4d:02:f5:3b:c9:1b:5e:e7:0a:d0:a9:c3:a6:4c:c2:3d:55:e1:
e1:58:c6:58:7d:86:85:86:7c:ce:2f:3f:1a:ae:ee:5f:80:a5:
d2:cc:d5:79:56:15:97:62:10:4b:1e:8d:2b:4f:51:36:40:06:
d7:17:25:1d:39:52:f9:4a:2c:05:6f:01:b1:db:3a:ee:f9:74:
8c:72:76:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org