Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/ClegjVFmg3gSvwuE91SW7AnxCSM.roa
File: ClegjVFmg3gSvwuE91SW7AnxCSM.roa (raw, json)
Hash identifier: PYALLxLlqN7iRW7Mn8qaIRnQrxLUXnXqUpIXZAQ2698=
Subject key identifier: 0A:57:A0:8D:51:66:83:78:12:BF:0B:84:F7:54:96:EC:09:F1:09:23
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0B68
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/ClegjVFmg3gSvwuE91SW7AnxCSM.roa
Signing time: Fri 01 Sep 2023 09:45:56 +0000
ROA not before: Fri 01 Sep 2023 09:45:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 32787
IP address blocks: 27.105.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2920 (0xb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 1 09:45:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0A57A08D5166837812BF0B84F75496EC09F10923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ec:eb:a2:77:90:d9:b7:dc:1f:f5:29:6a:b2:
97:25:e0:f0:41:48:67:d0:2d:16:2e:8e:4d:fe:22:
3b:62:8a:41:cc:cf:b9:c4:3d:9b:b9:0e:c4:88:d5:
dd:6f:b7:d3:66:12:2e:88:7e:af:99:4e:76:84:39:
66:28:bb:e8:62:ea:23:04:34:d2:f3:cf:a2:46:1f:
4b:1c:40:79:61:f3:23:39:f7:66:fd:cb:e7:ff:52:
47:9f:4d:68:a3:4e:2d:fb:2a:7b:fe:23:78:d5:89:
12:e4:e3:55:52:e8:cb:15:74:1b:0d:80:f4:c4:4e:
65:ee:97:40:e5:c7:3f:fe:4e:f0:ff:59:9a:b0:14:
cf:cf:49:96:b3:63:17:97:ef:63:f7:69:cd:58:61:
b7:30:b3:83:bb:ff:69:6b:0a:9e:35:0c:06:ab:9c:
0a:de:0f:25:0a:8a:c2:60:77:00:73:54:a7:70:5b:
cc:6c:fb:8a:b9:f3:82:72:31:f7:4e:4d:41:d5:ef:
d1:ef:64:41:ed:2a:31:cf:0b:cc:fb:88:49:7e:67:
07:ff:21:bc:5c:72:30:a6:d3:35:a7:3c:64:fb:20:
22:62:2e:6a:a2:ba:16:21:52:21:07:d7:5b:4c:cc:
a1:5a:f4:cb:df:9c:0d:5a:e9:88:de:de:19:dc:34:
7c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:57:A0:8D:51:66:83:78:12:BF:0B:84:F7:54:96:EC:09:F1:09:23
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/ClegjVFmg3gSvwuE91SW7AnxCSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.105.82.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a6:2c:8b:85:78:e3:48:33:7c:19:2e:32:e4:4d:5b:86:6f:
7c:aa:8d:c9:c8:3d:64:6e:6a:bb:3c:c3:8a:69:e4:2d:88:d0:
31:da:30:2e:b6:f0:28:20:13:99:ff:95:3a:26:c3:3e:2c:3c:
06:2d:38:47:47:ea:9e:91:94:7e:ba:d4:73:bc:73:4a:05:2d:
48:c7:b2:36:85:1c:91:8e:fb:48:33:96:e3:d4:2c:85:71:28:
c1:87:66:9f:d5:f2:c5:74:68:07:c1:78:fb:e7:4e:bc:99:50:
67:77:c7:fe:7c:b4:00:99:95:6e:68:44:25:a7:b6:78:c0:cf:
cb:68:95:9b:38:d7:d8:38:f2:5f:b2:90:1f:14:ff:66:c0:3d:
d5:36:66:db:5f:04:c2:88:4a:17:09:91:55:a8:bf:ba:e1:9d:
f4:84:4f:f2:d1:07:fe:13:7a:0c:a7:2f:8f:c2:b5:99:0d:a1:
59:4b:1c:5d:91:e3:0e:4f:f6:8b:03:a1:0e:b2:0e:c0:62:dc:
62:ad:16:56:fd:65:b2:20:79:8d:d6:c8:1b:57:c3:e1:43:ed:
d9:43:16:6b:1b:81:92:2c:04:03:3d:26:7f:a1:e9:27:d5:db:
f7:8e:ba:30:4f:f1:11:23:33:81:6a:3e:b6:b9:4e:dc:16:03:
25:7e:ad:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org