Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/QQ7oyC43fVc5IAuPcSvXL6Y8Kzw.roa
File: QQ7oyC43fVc5IAuPcSvXL6Y8Kzw.roa (raw, json)
Hash identifier: ExfzM2RWnQuG876eApo7vq2eN7Jby5Ry+S4Mhq01rAs=
Subject key identifier: 41:0E:E8:C8:2E:37:7D:57:39:20:0B:8F:71:2B:D7:2F:A6:3C:2B:3C
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B9A
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/QQ7oyC43fVc5IAuPcSvXL6Y8Kzw.roa
Signing time: Fri 01 Sep 2023 09:49:27 +0000
ROA not before: Fri 01 Sep 2023 09:49:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131584
IP address blocks: 101.3.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2970 (0xb9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 1 09:49:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=410EE8C82E377D5739200B8F712BD72FA63C2B3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ca:f8:fa:39:6c:bd:c3:a7:c7:fa:b8:5c:0a:
bb:04:8c:74:8e:97:2b:db:0c:2e:50:59:d2:97:c6:
f3:87:19:23:22:18:eb:70:e2:ce:84:56:33:f0:a9:
13:67:76:48:7f:47:ae:fe:22:78:a5:db:13:67:33:
e6:c0:12:83:25:e6:30:4b:36:b5:18:1a:a8:19:04:
09:2c:be:ae:a0:d5:f6:ea:15:12:69:f6:33:c0:b4:
de:97:76:82:a5:48:9f:6c:bc:64:81:58:f2:03:21:
85:a3:80:aa:e9:f4:6e:36:7b:f2:9e:b1:ea:37:da:
ce:43:84:3f:71:95:f8:99:85:1d:5e:fa:dc:a7:5a:
30:34:63:9b:6c:17:4c:e6:38:4e:8f:ea:67:3e:d3:
55:a0:fc:34:b8:dd:4c:c1:d2:0e:7e:1d:2d:38:68:
29:5b:0a:2e:be:2c:be:4a:ec:be:79:fb:5b:b4:e3:
b4:8e:bc:17:ad:f8:d6:41:89:18:31:1a:46:bc:11:
38:ad:53:23:73:50:df:36:78:6c:f7:16:13:cc:7f:
c7:27:aa:27:ca:33:73:71:1e:f7:7b:3f:7d:1a:de:
bf:c8:ca:4e:ee:f9:21:15:1f:17:49:ff:f7:a2:bc:
90:a4:2e:2e:90:50:3f:ed:df:e2:eb:d4:13:39:9e:
5a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0E:E8:C8:2E:37:7D:57:39:20:0B:8F:71:2B:D7:2F:A6:3C:2B:3C
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/QQ7oyC43fVc5IAuPcSvXL6Y8Kzw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.0.0/16
Signature Algorithm: sha256WithRSAEncryption
15:5a:ac:b2:7b:dc:2a:e6:f8:3a:49:61:f7:75:e5:4e:14:bf:
29:f6:86:09:b9:bd:e7:d5:a4:8e:25:8a:ee:90:ac:ab:d5:33:
68:3b:5f:83:48:bc:2d:ff:b8:51:38:2d:b9:88:db:40:a4:aa:
89:24:81:1e:ea:05:40:6b:38:6e:81:a3:de:d4:2d:8a:fe:6f:
04:6a:4a:6a:28:a8:b4:12:a1:20:5b:a1:1e:e3:66:f7:e6:92:
9c:41:3a:92:f4:ea:44:93:03:eb:6c:9c:86:cb:97:80:e1:33:
b9:5c:3d:23:95:9c:ac:98:b2:02:1e:26:1f:d1:f8:b6:3b:c2:
d4:72:42:6f:ca:04:af:90:aa:02:6a:e8:31:ab:ac:4e:b6:05:
0e:4a:0b:30:5f:08:35:81:14:76:b3:f7:c4:ab:81:8a:a7:10:
ff:66:29:32:0b:fc:76:16:fe:c7:dc:82:7a:fa:15:bc:a8:f9:
33:da:39:9c:2e:aa:5f:d8:cc:1c:b1:09:ab:b9:3a:aa:ff:59:
6c:8f:a8:d5:04:8f:d9:02:87:5e:22:58:e0:4c:fb:a2:b6:1a:
ae:29:cd:4c:2b:d7:b4:9a:91:c1:6c:28:38:18:89:3d:24:51:
7f:65:32:00:44:20:d7:96:67:4b:97:d3:bf:67:97:39:97:63:
15:22:fb:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org