Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/TSY6t1JalxKuf1JnqZkD9Lk7X3c.roa
File: TSY6t1JalxKuf1JnqZkD9Lk7X3c.roa (raw, json)
Hash identifier: g5JLKq3R1Fc7tCBHsK4bAYWDr/gSmzqGHyy56B/MXiY=
Subject key identifier: 4D:26:3A:B7:52:5A:97:12:AE:7F:52:67:A9:99:03:F4:B9:3B:5F:77
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BCA
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/TSY6t1JalxKuf1JnqZkD9Lk7X3c.roa
Signing time: Fri 01 Sep 2023 09:40:40 +0000
ROA not before: Fri 01 Sep 2023 09:40:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 150.107.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3018 (0xbca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4D263AB7525A9712AE7F5267A99903F4B93B5F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ef:28:8f:0e:51:0e:d6:0a:e5:7c:b0:86:2d:
26:91:e3:8c:3a:ad:f5:dc:f9:9b:16:d0:df:05:95:
03:fa:8f:54:1f:92:db:90:e1:ef:39:a7:aa:bc:54:
8d:d5:80:60:3e:52:d7:bb:72:e4:0c:9c:8a:02:42:
7d:d8:61:0e:76:bf:31:36:e9:c7:dc:44:30:06:02:
8d:85:f2:fd:fc:99:fa:94:2b:12:f4:48:d5:d7:cd:
6b:db:2c:78:f7:05:9a:8d:5e:2f:97:6a:f5:79:55:
28:e9:85:e1:bb:51:7e:95:3c:e9:aa:67:3f:58:cc:
c4:9a:d6:df:39:d3:fd:2f:cc:bf:db:3f:34:b5:16:
f6:94:e5:e9:31:0e:7b:c7:97:87:8a:48:a9:7a:2c:
4c:b0:d1:c4:37:e0:97:fa:32:4e:9d:ad:08:be:26:
a8:46:99:ba:7d:f5:71:2f:a5:4d:3b:f7:66:fc:83:
f3:66:58:b7:ea:9a:63:bb:e2:a7:16:ba:6c:59:ad:
66:8e:00:41:b7:2d:f3:4e:3d:2c:00:9a:4f:d2:8a:
bb:53:26:9f:95:a9:a6:c8:40:11:7b:eb:5e:11:da:
a7:09:4c:5f:b0:5d:62:58:20:e1:0e:20:04:d8:5d:
03:91:26:5e:b9:a6:aa:c3:ad:1a:a8:c2:29:7f:bf:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:26:3A:B7:52:5A:97:12:AE:7F:52:67:A9:99:03:F4:B9:3B:5F:77
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/TSY6t1JalxKuf1JnqZkD9Lk7X3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.60.0/22
Signature Algorithm: sha256WithRSAEncryption
15:0b:d8:9f:c1:d6:28:55:c9:ed:04:32:f2:82:74:fc:53:bb:
5c:fa:8a:37:af:3a:89:10:b2:d8:8a:cd:9b:45:ad:67:92:cf:
62:c6:67:e1:fc:65:89:e6:7f:ca:ef:62:5d:22:e1:3c:c2:d4:
37:4b:d8:f0:5f:b5:e2:b4:ee:7a:41:cf:a5:f4:6f:97:4b:92:
59:06:e8:7a:0d:d0:2b:36:80:2b:a2:13:0b:30:41:38:c7:e3:
a4:5a:56:ba:66:25:97:58:aa:07:9c:09:32:8e:27:31:05:ac:
5a:25:74:b2:fb:eb:21:01:94:02:b9:c9:5f:b7:ff:8d:fb:16:
2b:82:ca:91:da:e3:84:48:b5:a8:84:ca:79:f9:b1:cd:c8:0f:
87:76:0c:16:8a:5a:e2:2f:63:0c:4f:72:86:8c:6b:df:4a:0b:
e2:6e:2d:16:40:f7:10:21:2d:b6:59:75:30:69:c4:e4:53:ee:
b2:57:c6:60:f6:4b:af:30:42:b9:73:35:88:9f:66:79:b9:c3:
36:a0:16:bd:59:58:dd:74:2e:8f:3d:fc:be:58:4b:1e:b0:ee:
bd:b1:e8:1e:09:02:f4:35:b8:ab:ee:53:96:ac:f4:7a:14:d6:
6d:48:51:ee:46:90:5b:05:0e:99:49:b4:39:4f:21:7f:98:3d:
ff:f0:a5:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org