Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/erKTtabu1kZzRU4zpfRAbOv93yg.roa
File: erKTtabu1kZzRU4zpfRAbOv93yg.roa (raw, json)
Hash identifier: 5D1ZxJmNsL+Ap+XLBhQlrcrc4a4zFaOpEZ2ewnA2VpM=
Subject key identifier: 7A:B2:93:B5:A6:EE:D6:46:73:45:4E:33:A5:F4:40:6C:EB:FD:DF:28
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BC5
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/erKTtabu1kZzRU4zpfRAbOv93yg.roa
Signing time: Fri 01 Sep 2023 09:40:39 +0000
ROA not before: Fri 01 Sep 2023 09:40:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 61.65.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3013 (0xbc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7AB293B5A6EED64673454E33A5F4406CEBFDDF28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c5:ca:c9:14:d0:5a:53:c5:6b:9c:af:06:f6:
ed:bd:68:db:b0:e1:fb:80:8c:49:23:fe:f0:4a:de:
76:a4:01:04:53:cf:cc:c8:d4:a3:2b:c5:e4:12:d4:
aa:59:18:fe:12:81:f8:91:9a:15:35:1d:9e:81:9c:
b5:66:e5:3d:ee:5a:5a:ea:86:3a:32:fc:89:33:79:
07:1e:6a:d7:bf:7d:ee:33:46:ef:10:6a:18:0e:df:
10:b9:f8:64:c1:74:5c:fc:6b:0f:81:33:97:27:3a:
27:e0:65:dc:cd:c5:a6:cc:ac:2f:37:3a:38:16:bc:
7b:68:56:75:58:85:fa:e9:75:8d:cd:52:08:73:d2:
8f:4a:65:74:02:49:09:ea:8f:70:bc:48:0e:cf:89:
53:95:73:fd:4c:10:fd:22:a7:7b:86:c3:21:5b:14:
40:81:3e:9d:58:1f:9a:0c:33:c6:2b:82:00:f5:2f:
7f:91:1e:3c:11:d2:f9:a6:7f:c4:fd:89:08:85:e5:
0c:3a:60:7b:fb:55:ff:1a:f8:ea:4a:bd:7a:0d:a8:
38:df:c1:b5:ae:3c:2e:1d:50:41:37:01:05:5f:25:
b9:e2:e1:b7:b9:84:31:86:e9:ed:10:d5:1a:32:2d:
a8:8a:51:d1:a3:48:88:05:5f:97:a6:84:3e:e8:13:
71:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B2:93:B5:A6:EE:D6:46:73:45:4E:33:A5:F4:40:6C:EB:FD:DF:28
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/erKTtabu1kZzRU4zpfRAbOv93yg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.0.0/17
Signature Algorithm: sha256WithRSAEncryption
53:a8:82:e9:d4:5f:9f:ae:85:f1:f1:78:7c:76:87:59:68:c0:
12:0e:2e:3b:55:3c:3c:14:5d:98:1c:31:58:da:2d:29:28:f5:
63:1e:61:69:2d:c6:2f:8f:5e:a3:9e:1d:3a:ca:70:58:c7:ca:
29:81:93:0e:44:df:29:11:ef:fa:b4:47:10:dd:c2:10:d2:57:
2d:3c:2c:75:a9:fd:a4:29:80:29:0d:a7:17:e6:e2:3f:88:2b:
e9:da:fe:0b:9b:e2:d4:a9:b3:37:db:77:74:47:e3:82:5e:3f:
8d:48:fb:3a:2e:a2:04:31:c9:9b:fd:5d:9d:5e:6a:a8:4b:ff:
e4:71:fd:ec:0c:71:aa:ae:97:6c:50:9d:0a:78:34:d5:e1:44:
bf:34:4c:fd:76:68:25:23:cc:08:80:d4:25:af:78:1c:6c:79:
10:c8:45:4b:9f:b6:ac:53:c7:36:13:c2:1a:31:9b:fa:4d:3f:
bb:46:66:01:b8:88:f6:9c:5a:ed:03:f4:fc:28:77:d7:fd:f0:
6c:7b:e8:58:62:f5:7a:69:86:8f:26:96:23:7e:4b:b3:25:6c:
15:6f:62:6c:eb:1f:46:a0:d5:11:78:b2:80:e4:b8:c1:6b:a8:
83:7e:4d:d1:57:87:07:2e:04:17:f2:a8:a7:f8:02:d4:10:6c:
da:8a:11:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org