Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/9paD2t3tHXBiIONMgjfdpAT8w_o.roa
File: 9paD2t3tHXBiIONMgjfdpAT8w_o.roa (raw, json)
Hash identifier: Mbg/d54pFWYvUBwVzE7jUQrRld/lFZK/QrzlPRwXPkI=
Subject key identifier: F6:96:83:DA:DD:ED:1D:70:62:20:E3:4C:82:37:DD:A4:04:FC:C3:FA
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0B66
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/9paD2t3tHXBiIONMgjfdpAT8w_o.roa
Signing time: Fri 01 Sep 2023 09:45:56 +0000
ROA not before: Fri 01 Sep 2023 09:45:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18182
IP address blocks: 61.62.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2918 (0xb66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 1 09:45:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F69683DADDED1D706220E34C8237DDA404FCC3FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:45:51:81:9c:5b:b2:5f:7d:4c:dc:e7:75:4b:
3b:a0:a4:59:95:44:e9:44:c9:c3:27:68:c2:87:69:
0b:04:1c:63:2a:8f:79:19:b9:0a:ad:50:fc:96:9d:
8e:c2:d8:58:3d:0f:62:44:d0:b4:cb:12:b8:e3:c0:
29:ed:9f:6f:83:6c:cf:35:d8:fa:57:cc:fd:bf:30:
5b:33:29:ca:1c:08:8b:28:1d:96:97:ab:93:3c:50:
8b:39:dc:76:3f:5b:63:98:62:04:e7:71:bd:8b:51:
9f:98:0c:20:c1:45:de:23:dd:73:28:e1:be:77:f1:
e6:e5:4d:49:eb:af:b8:67:6d:00:b0:fa:35:7a:9e:
42:2e:54:fd:b1:fc:71:62:fb:80:bc:9d:0f:f4:41:
41:2c:a9:7b:d8:f4:a5:c7:89:8b:ae:9f:d1:8b:fa:
c7:03:15:a2:62:2f:03:66:e7:e7:d1:bd:cf:70:03:
a6:7e:b9:9a:8d:92:85:a9:76:bd:00:66:5e:db:c2:
db:35:3f:40:85:17:a4:3a:fd:59:29:24:9e:7c:64:
05:32:4e:76:e6:81:8e:12:d0:cb:6f:74:78:61:c8:
ef:e6:f7:51:6c:ca:db:23:b0:10:de:7e:a9:38:c1:
e2:4a:5f:c3:a6:86:7c:82:ad:b6:0e:06:11:4b:13:
8c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:96:83:DA:DD:ED:1D:70:62:20:E3:4C:82:37:DD:A4:04:FC:C3:FA
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/9paD2t3tHXBiIONMgjfdpAT8w_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.62.0.0/16
Signature Algorithm: sha256WithRSAEncryption
26:5d:44:b5:f2:26:13:d9:7b:9a:7f:22:90:a8:26:50:ff:2e:
1f:33:05:72:d5:61:5e:7f:66:d6:24:1b:85:45:f4:f6:e2:a1:
99:8d:5d:a5:74:1c:7a:d0:77:0c:45:55:37:3c:05:53:c9:e7:
d4:4c:65:62:87:33:7e:35:ff:01:86:e8:94:d2:19:55:1f:44:
5a:80:aa:01:07:2b:b0:0f:7b:ee:6c:aa:91:1b:45:df:45:64:
cf:28:3a:f8:74:ae:0c:96:ae:b7:4a:99:2d:e4:5c:31:3f:57:
e2:44:21:0e:ff:af:35:80:31:1d:df:e2:80:be:c3:7a:49:2d:
4a:53:19:91:cf:af:39:39:1d:b7:88:44:14:f3:ec:2f:b9:d7:
9e:f8:54:ca:61:97:28:94:42:8f:27:23:a4:29:25:fc:2e:96:
2c:56:1e:dd:52:d9:0a:b8:25:de:66:b7:4c:19:e1:9b:7e:cf:
70:06:9d:13:ac:2f:b8:4d:1a:41:80:56:c9:2b:9e:16:8e:a2:
06:10:1a:89:ea:bf:1c:5e:e8:b0:9e:21:55:7b:2e:21:9c:ac:
b2:38:7b:88:7b:1c:16:c0:f3:76:f2:28:27:6b:24:aa:e1:55:
3c:4d:52:61:a1:d0:d6:98:65:fc:04:e1:f6:76:35:5a:4a:3f:
4a:73:73:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org