Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/qkTBklndsB0DS1ex_moWuHKSpmI.roa
File: qkTBklndsB0DS1ex_moWuHKSpmI.roa (raw, json)
Hash identifier: E9NizxJRJkeiQ2f1ylhJAgGCNplJdOIK2D3SaeZ9IEc=
Subject key identifier: AA:44:C1:92:59:DD:B0:1D:03:4B:57:B1:FE:6A:16:B8:72:92:A6:62
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0B69
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/qkTBklndsB0DS1ex_moWuHKSpmI.roa
Signing time: Fri 01 Sep 2023 09:45:56 +0000
ROA not before: Fri 01 Sep 2023 09:45:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 45474
IP address blocks: 27.105.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2921 (0xb69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 1 09:45:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AA44C19259DDB01D034B57B1FE6A16B87292A662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:05:5b:a6:d5:18:f2:81:41:68:31:1e:98:45:
fe:61:f9:eb:6b:5a:d4:8a:30:6e:13:cb:14:b8:69:
67:60:fc:d5:78:bd:54:c6:06:2a:7a:fa:95:29:2b:
b9:f4:c7:e7:fb:b6:03:82:49:cc:48:3e:8d:33:11:
1b:0c:8f:04:12:78:e4:8e:1b:45:4f:f0:15:11:e8:
a3:56:10:33:da:c1:bf:43:56:61:91:79:7f:2c:1d:
db:6b:72:c4:11:12:3b:26:cf:d2:2c:06:a7:22:2b:
0c:9c:27:69:1c:ea:29:7b:fe:cd:d7:47:5a:ba:27:
56:aa:cd:c1:ee:e0:ff:69:93:1e:42:46:91:ed:f6:
51:fc:22:f2:e8:18:ca:8d:cc:f3:4f:af:d3:0a:ab:
4a:bf:b1:b7:c3:52:38:15:b1:3c:54:d9:a9:3d:0d:
c4:88:66:10:99:21:71:69:80:48:28:eb:15:63:d4:
b3:7a:04:83:e7:65:bc:51:ec:85:1d:fb:49:dd:10:
f1:f1:1a:b3:fc:c8:15:c9:1c:15:d7:11:b8:6d:f9:
39:ae:12:e5:11:df:19:9d:75:17:ff:c0:df:e0:8b:
6d:17:68:a7:b1:64:45:e4:57:6c:66:8c:32:26:70:
58:3b:57:3a:7a:ef:82:38:29:c9:48:70:c1:71:8f:
d7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:44:C1:92:59:DD:B0:1D:03:4B:57:B1:FE:6A:16:B8:72:92:A6:62
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/qkTBklndsB0DS1ex_moWuHKSpmI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.105.206.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:6b:59:29:51:90:9f:b8:0a:2d:9d:c6:09:f6:b6:60:7d:20:
f4:ee:b3:4e:dd:27:16:ca:00:44:5b:56:f1:ee:f7:2e:06:53:
90:6b:2f:dc:bc:77:e4:3d:ba:2d:6a:31:78:9e:78:50:e7:7c:
6f:62:3d:3c:99:df:2a:3f:7c:90:94:1f:2d:33:ea:01:9d:f4:
c4:b0:02:f9:e6:41:86:e8:0a:30:7c:43:1f:67:99:b3:e1:68:
8a:ce:d3:26:65:5a:94:68:67:8d:84:2f:c1:ad:f0:f4:16:2e:
8a:24:01:a0:19:11:75:37:7e:76:53:db:4b:1d:de:d6:95:ce:
49:5e:25:e3:e4:d9:a4:b7:72:17:77:c3:d0:19:c5:99:78:4e:
e5:76:2b:de:f0:ca:79:75:0c:24:ff:98:f4:46:63:f3:fc:13:
d2:e2:00:f2:08:af:f0:12:c1:54:27:4d:fb:df:01:44:76:63:
0c:ba:40:04:b6:df:16:fb:aa:f6:cc:f6:c7:8e:d1:ea:da:51:
29:53:58:94:8e:f2:e6:53:66:59:07:1a:9f:1d:e5:62:91:45:
bf:4d:5a:cb:ef:fe:6b:73:c5:86:28:f6:b8:d4:94:3e:34:37:
7d:9d:fc:38:d5:87:cf:75:3d:38:56:e2:10:58:91:c1:e5:43:
02:47:5f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org