Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0GdrFC7zhOv1D19TCts-exSAFww.roa
File: 0GdrFC7zhOv1D19TCts-exSAFww.roa (raw, json)
Hash identifier: EnYBQd3fra1suShIhRzlcvGnDbouoJQ1DiIEmlqUi08=
Subject key identifier: D0:67:6B:14:2E:F3:84:EB:F5:0F:5F:53:0A:DB:3E:7B:14:80:17:0C
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BB8
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0GdrFC7zhOv1D19TCts-exSAFww.roa
Signing time: Fri 01 Sep 2023 09:45:01 +0000
ROA not before: Fri 01 Sep 2023 09:45:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3000 (0xbb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D0676B142EF384EBF50F5F530ADB3E7B1480170C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:32:55:7e:3b:02:01:5b:c8:7c:a5:22:54:64:
eb:83:7e:b5:f8:d9:d4:97:9c:2c:76:a1:4b:c6:8a:
63:1e:20:ae:2e:79:09:18:28:bd:33:d4:68:20:e5:
70:aa:30:88:53:a6:0b:5d:c7:e4:3c:f5:5d:4d:0d:
c9:49:1c:08:66:2d:93:c2:7b:65:82:b4:14:04:d1:
a1:49:27:43:df:f1:0e:72:ca:5b:c6:2a:e5:75:8c:
62:35:06:87:82:85:b4:54:df:df:bc:f8:6d:f8:79:
66:ca:6e:d9:a7:42:b6:3a:2b:ac:77:44:06:39:f7:
54:ec:f6:63:b0:a7:bf:c9:16:5d:36:aa:98:28:eb:
8d:5c:d1:34:6b:75:4e:96:ef:7e:8f:9b:a2:7b:e6:
13:7e:83:b5:2b:21:67:28:b8:dd:c6:82:66:4d:20:
97:ff:6a:82:26:fe:b4:24:6c:e2:f4:32:b3:08:23:
b0:21:c2:af:80:af:ef:0c:df:54:72:19:f4:ad:2f:
0b:7f:5f:c1:c6:dc:c7:0e:68:5b:dc:73:fa:f2:8c:
17:67:64:93:40:73:d3:ba:43:0d:b5:da:b1:98:a2:
8d:1d:3a:d4:ad:d0:12:d4:47:a5:20:1b:1e:82:dd:
9c:ce:2a:cd:04:93:a2:49:e6:d1:a6:a6:35:56:13:
04:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:67:6B:14:2E:F3:84:EB:F5:0F:5F:53:0A:DB:3E:7B:14:80:17:0C
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/0GdrFC7zhOv1D19TCts-exSAFww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
9d:55:99:b5:57:0f:a3:b1:24:8b:57:18:ae:c7:00:6b:fc:b9:
fe:1d:2c:e1:56:80:c1:77:c4:a2:2c:fd:bc:64:15:b5:f9:6b:
5b:b9:ce:f7:62:50:bb:0a:d8:0b:84:2d:4d:e0:c6:a3:10:6e:
a1:9e:59:89:ab:d7:d6:1e:60:1c:8a:bb:9c:f1:1c:ce:a1:9a:
9f:0a:dc:06:63:3a:9e:c2:3d:d4:23:ff:89:d7:ab:a9:cd:b7:
4b:be:ed:2a:c5:0b:0e:97:b4:1e:b1:0c:e9:cc:a3:f7:14:9e:
f7:fc:6a:6b:48:a4:6a:e3:f9:2a:c1:28:69:55:66:75:e6:11:
1a:6a:30:1a:10:5c:61:68:fd:4a:9c:d2:97:40:6c:13:8a:b1:
f9:03:df:b8:98:2d:88:48:b2:76:3d:c7:62:0b:93:4e:63:71:
7e:d9:6e:bc:37:30:0b:19:28:6b:2f:8d:5c:c7:28:85:8c:de:
c8:81:06:6b:48:70:c7:d0:75:94:f6:e2:27:66:f3:19:e8:64:
4f:82:c8:b8:af:4b:97:cd:e7:28:51:47:7c:79:f5:a3:aa:f7:
e0:28:f3:85:60:c8:6d:76:71:9e:9b:e7:82:b9:29:ad:28:ad:
59:bb:c7:90:e3:9b:b8:63:1b:0b:96:af:24:42:92:0b:ca:71:
b3:22:e1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org