Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/2qcqNlcmG79Z3227QPioGGxlFpI.roa
File: 2qcqNlcmG79Z3227QPioGGxlFpI.roa (raw, json)
Hash identifier: qbUTCRlcqKPzKq90gra4FK63vHStZBENjOo32dX5Hlk=
Subject key identifier: DA:A7:2A:36:57:26:1B:BF:59:DF:6D:BB:40:F8:A8:18:6C:65:16:92
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0C80
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/2qcqNlcmG79Z3227QPioGGxlFpI.roa
Signing time: Mon 26 Aug 2024 05:26:35 +0000
ROA not before: Mon 26 Aug 2024 05:26:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 32787
IP address blocks: 27.105.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3200 (0xc80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Aug 26 05:26:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DAA72A3657261BBF59DF6DBB40F8A8186C651692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:23:9e:2e:58:54:a1:50:70:f7:25:c7:59:
79:72:b6:cd:37:ab:00:73:ef:87:9e:67:db:0a:90:
a4:18:a8:0b:b1:23:1c:37:62:28:0e:b9:b6:21:0c:
6d:d1:41:d2:77:16:bb:5a:cc:b3:1a:a0:90:81:80:
5b:c9:9f:fb:6e:e6:c2:d3:fe:ef:b4:7b:2c:ff:45:
ee:0b:8c:51:1a:32:40:df:a2:74:51:a2:78:c3:89:
9b:e6:86:e6:e2:f7:1d:dc:7a:88:8e:a6:cf:47:67:
86:4c:79:6c:c2:56:b0:75:ed:7b:7d:21:2c:0d:b4:
99:b2:40:34:95:2a:41:84:b1:af:72:0c:3b:be:48:
b9:c9:b3:a4:24:d1:b1:0f:f1:1e:ad:8d:02:56:63:
27:3e:b0:55:58:19:4b:c2:e9:7a:99:70:38:09:73:
9c:1d:b6:ea:e9:10:85:a9:6d:0b:6c:42:09:a9:5a:
76:16:d4:24:49:fd:c8:34:d0:d8:85:81:5e:55:e8:
21:fd:b5:ed:64:09:ad:7d:d4:55:f2:92:1b:cf:9a:
fa:e1:a2:27:a9:46:f3:1b:62:7f:55:e8:65:b5:99:
63:59:d7:6c:a0:ab:3e:6b:86:7e:4d:4a:33:5b:6f:
c8:1e:21:51:ef:1e:cf:0b:c0:a3:9c:be:ba:d5:5c:
1e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A7:2A:36:57:26:1B:BF:59:DF:6D:BB:40:F8:A8:18:6C:65:16:92
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/2qcqNlcmG79Z3227QPioGGxlFpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.105.82.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:43:35:f6:93:97:1a:dc:8e:07:f3:50:d3:f8:d8:21:3e:35:
de:8b:a3:81:73:1c:5c:aa:85:fb:10:58:de:9a:37:80:0a:a2:
77:b7:ab:32:ea:fe:63:b8:2b:84:22:a4:05:17:58:2a:89:fb:
c8:06:c4:40:d5:bb:d8:70:89:d6:f8:cf:47:d6:cb:6a:07:f0:
60:5d:7c:2e:46:02:47:ac:85:25:4b:84:c1:cd:b6:84:46:fc:
47:83:9d:97:4b:2c:eb:36:d5:19:b5:e7:6c:cf:d1:8c:92:0a:
fa:99:69:e3:f2:fc:44:6c:fc:99:cf:18:16:f6:55:50:7d:bb:
78:a1:40:2f:b9:f1:c7:6c:a6:f4:7b:03:02:d1:f9:78:2a:8c:
87:a8:82:e8:7f:b6:3c:6c:b0:6b:49:78:6e:d1:25:3e:da:6c:
69:a5:8b:a6:10:8d:de:d9:15:0d:14:d9:87:e1:f0:78:83:f1:
b8:ee:3e:a1:20:0d:06:e7:aa:81:ce:27:19:95:38:fc:51:44:
e6:37:f2:b3:29:ef:01:ac:c8:70:3d:7c:ba:3d:d5:cf:2e:0e:
4a:f2:ac:97:44:4f:92:04:95:51:7c:bf:b5:7c:fc:06:fc:e9:
8e:2b:9a:96:09:79:73:56:72:28:11:48:f9:78:c1:91:c5:80:
81:7f:4b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:39:56 2024 by rpki-client on console-ams.rpki-client.org