Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa
File: 5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa (raw, json)
Hash identifier: 4kWEExZ39X7TizROSJ57pG2Ay2bQQ5J43jT+0aC5IKs=
Subject key identifier: E6:42:45:D9:28:31:AA:4A:7C:28:0D:9C:24:14:B9:38:10:92:40:DC
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0BAA
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa
Signing time: Tue 28 Nov 2023 06:05:55 +0000
ROA not before: Tue 28 Nov 2023 06:05:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9922
IP address blocks: 39.1.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2986 (0xbaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Nov 28 06:05:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E64245D92831AA4A7C280D9C2414B938109240DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f9:fc:40:2d:db:2e:6c:b6:bd:08:bc:f4:70:
7e:9b:ff:41:23:22:10:3d:8b:4d:a4:23:20:d3:ec:
c0:e2:78:11:b0:5a:e5:4a:55:41:a7:d5:10:5e:10:
17:d5:a7:7b:cc:99:9b:3f:ee:3b:86:ca:39:0b:ed:
83:d9:ba:24:ea:17:35:d1:47:81:7a:40:c7:25:8d:
3a:1d:7f:4c:99:92:37:8a:e8:55:ce:9d:fb:8a:bc:
5f:0f:75:e0:75:e0:0e:f2:36:22:96:a7:d1:6a:ad:
1f:04:13:3e:92:b7:0e:89:f4:74:c5:0c:b2:fb:30:
94:7a:85:29:d5:1b:08:99:66:0d:9f:04:91:37:01:
6c:40:6a:eb:6e:34:89:ee:0f:18:01:18:b7:50:60:
8b:37:f5:9f:3c:23:fa:5a:27:8d:58:03:7f:72:8e:
94:43:91:72:79:8e:12:db:f3:bf:f1:93:f1:29:8d:
1b:f1:0c:e3:85:d9:f5:f1:1f:ac:e6:a5:1a:a3:71:
06:77:28:51:a3:76:97:96:98:de:9f:be:a4:a1:87:
8f:13:bc:20:61:ed:15:75:91:35:4a:70:e8:ca:15:
5f:b3:5c:b8:c3:42:29:58:fb:44:aa:fc:90:b3:1c:
6d:2c:67:53:0e:3e:17:06:62:a7:5a:5f:8c:85:df:
6e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:42:45:D9:28:31:AA:4A:7C:28:0D:9C:24:14:B9:38:10:92:40:DC
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.1.0.0/20
Signature Algorithm: sha256WithRSAEncryption
c3:19:d9:0f:80:2b:11:7c:ed:c1:96:c0:8c:f3:ed:00:44:16:
c5:49:49:4b:cf:bb:52:7a:26:e9:c0:35:75:50:ec:d7:65:9e:
de:b7:5f:35:23:74:45:09:78:37:c8:13:e2:53:cc:a3:6b:62:
e3:79:c2:23:39:9d:dd:df:ab:b1:2b:95:fb:11:1b:1b:c4:a5:
af:d0:18:b3:06:2a:87:34:a3:72:c8:f7:2f:09:ac:e7:99:69:
5c:6d:91:1e:20:e7:e5:6c:e8:2d:8b:91:05:19:0a:19:08:10:
49:dd:a5:46:f0:06:51:a3:84:d5:c2:b3:9e:d2:53:4c:34:01:
1f:e6:9b:ea:55:e5:b4:6b:5a:7e:04:db:0e:d0:88:51:15:9d:
a0:30:6d:5a:0c:9e:89:07:2c:2c:96:d0:7b:8e:81:01:70:39:
ba:f6:37:0d:17:6b:42:3b:fd:bd:33:17:35:39:32:a2:9a:a7:
f6:26:a3:63:50:90:97:0f:28:fc:62:0c:e6:8d:9c:73:23:dc:
ca:57:f4:40:c4:6c:d4:35:96:f3:1e:59:3b:5e:4b:b8:33:6f:
23:05:40:62:b0:c7:ab:b6:ac:27:ea:71:59:50:d7:f6:22:15:
4d:91:49:c0:e2:bb:8d:55:c4:55:ad:05:7e:d7:56:15:e1:7b:
e6:70:f4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org