Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa
File: NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa (raw, json)
Hash identifier: T96zX9Ymv8xwQxZ5uznqUchiocWynhA815PWZlEmXb8=
Subject key identifier: 35:6D:81:6B:A3:31:8E:E4:3C:FF:7C:BF:75:DC:FB:99:A3:15:3F:AC
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BBF
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa
Signing time: Fri 01 Sep 2023 09:40:37 +0000
ROA not before: Fri 01 Sep 2023 09:40:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 61.63.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3007 (0xbbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=356D816BA3318EE43CFF7CBF75DCFB99A3153FAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:37:50:30:e3:54:b4:7f:51:4d:b6:4b:d4:64:
51:bb:9b:7e:aa:f5:73:e7:5e:55:3e:2e:04:73:5d:
45:3a:b7:6b:2d:15:b0:8c:22:de:0d:7f:b8:7c:76:
e2:36:23:bd:cd:64:d7:c5:1c:61:fa:22:12:0b:38:
71:a3:2b:22:9a:02:dd:a7:46:61:ae:6d:0e:f9:ce:
62:86:7a:17:fd:06:14:e4:cb:d4:f3:5a:81:6d:ac:
18:e4:cd:21:05:88:11:8e:b1:88:5a:89:a4:99:24:
f6:15:45:5f:3f:91:a5:12:67:c5:47:9c:92:89:c9:
15:26:0e:bb:1c:7b:35:41:2c:ee:7b:54:e4:7d:d7:
79:42:4b:78:3d:10:cc:4e:93:fd:c5:88:4e:fd:4e:
26:72:68:59:90:e8:bc:ab:f7:2d:23:c6:08:0a:e1:
78:cc:a7:38:1e:71:de:5e:85:68:92:da:84:88:3f:
76:89:3e:cc:d8:44:36:f5:f8:63:a5:61:61:c6:43:
ed:df:8d:8b:42:12:7a:9d:11:8b:d6:70:d7:cd:1a:
e8:03:e4:91:92:78:8b:0e:0b:82:8d:83:e2:3e:ea:
21:84:f6:fd:c2:ee:7d:af:75:dd:0d:db:61:12:80:
2c:e4:17:fc:f3:a1:81:8f:f3:31:67:fc:59:11:fd:
b5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6D:81:6B:A3:31:8E:E4:3C:FF:7C:BF:75:DC:FB:99:A3:15:3F:AC
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
b1:48:29:70:87:69:d3:42:60:4a:74:94:54:10:9c:4c:5a:c8:
97:2f:4a:e0:60:b0:9c:79:54:f9:5c:7b:9e:0b:7e:d1:4f:c5:
66:43:24:d2:64:60:d6:26:fb:41:52:2f:30:88:27:58:28:d3:
84:ed:cb:02:b4:b3:01:4d:47:fd:3a:b3:3f:8a:88:38:2e:e1:
7b:87:68:44:60:e5:40:b4:17:f8:5d:57:b9:11:a6:f8:08:9a:
d5:06:e9:d4:31:be:c7:00:8a:2a:f2:74:63:d1:43:b5:29:e4:
0e:0d:3d:c7:61:09:b4:8b:90:e8:f7:f2:5d:b1:84:59:b1:b1:
e7:61:cd:dd:5e:ea:e0:84:74:83:75:4a:30:94:de:26:a7:35:
86:16:df:bc:21:f8:2c:ce:3e:29:bb:8d:12:ba:f5:fe:49:69:
d0:6f:59:37:e5:80:ec:e2:1f:5f:d3:e6:cc:17:d5:64:73:63:
5c:05:20:6e:60:06:71:3a:c6:71:66:b7:23:15:b9:12:e5:63:
84:70:5c:3d:87:87:d9:01:0d:ec:9b:ab:0a:7c:6a:32:18:83:
26:37:d1:24:f6:bd:57:38:23:9f:10:87:1c:6f:01:19:92:dc:
8b:c6:bc:90:fa:84:13:be:c2:c8:1f:0b:39:0b:a9:fb:2e:f1:
0e:d9:60:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org