Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/XvWkdXZprIEOXTgOQEZMdYahs-o.roa
File: XvWkdXZprIEOXTgOQEZMdYahs-o.roa (raw, json)
Hash identifier: 1EiudxtBHURPXDS/ohDBiEU6ektrkaEkiD4EWsusixo=
Subject key identifier: 5E:F5:A4:75:76:69:AC:81:0E:5D:38:0E:40:46:4C:75:86:A1:B3:EA
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B9D
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/XvWkdXZprIEOXTgOQEZMdYahs-o.roa
Signing time: Fri 01 Sep 2023 09:49:27 +0000
ROA not before: Fri 01 Sep 2023 09:49:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 101.3.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2973 (0xb9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 1 09:49:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5EF5A4757669AC810E5D380E40464C7586A1B3EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ad:b0:05:22:1d:ee:61:75:f1:7b:5c:b0:de:
91:bc:b5:cd:58:6f:b7:e7:46:b8:d0:53:d8:59:bc:
f9:39:8d:b7:a1:af:4f:1c:1b:95:fc:63:a7:fc:3d:
a3:27:e1:30:18:84:5f:91:19:b7:ba:b8:9a:cf:31:
f5:be:d4:98:ba:66:fe:1e:10:7b:72:f6:3a:2f:d2:
f7:e6:bb:83:8f:e1:1e:d5:a1:46:58:41:aa:eb:db:
d4:5d:05:98:ff:50:2a:5e:34:27:ec:ee:49:37:7e:
bb:07:4f:58:62:0f:b3:30:d1:5b:af:0d:de:27:7e:
88:b7:c9:0f:67:97:13:36:12:b9:85:eb:c7:1f:db:
fe:b9:d1:a2:86:55:83:04:3b:01:79:25:ab:7b:ce:
a9:c9:ae:1c:68:63:9b:e5:2d:c1:24:cb:ec:67:04:
6d:64:98:9e:75:0d:0b:c8:15:5c:94:e4:45:fc:a8:
51:62:f8:f1:89:bb:c0:d3:6d:2a:1b:a3:ea:24:5c:
37:d4:85:be:3f:5a:04:72:fe:d5:e4:b3:7a:ed:7a:
e8:2f:69:75:01:99:6f:28:7b:23:2c:f6:c7:bd:3e:
32:02:6b:35:fc:8b:0f:52:fe:ef:65:a8:f3:b5:54:
e0:fd:ba:5c:56:f0:c8:3c:a1:d3:a6:45:00:7c:77:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F5:A4:75:76:69:AC:81:0E:5D:38:0E:40:46:4C:75:86:A1:B3:EA
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/XvWkdXZprIEOXTgOQEZMdYahs-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.108.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:63:6b:45:54:81:94:13:00:b6:29:fe:83:ea:db:83:f4:91:
07:da:3d:aa:e6:ee:85:0d:4f:92:9d:69:7c:6b:76:f7:80:e4:
dc:cf:93:89:11:62:69:e7:b7:1b:fc:c6:83:af:db:e0:78:7a:
70:06:f8:6b:66:ed:22:44:c5:ce:ac:c7:08:57:ff:c4:62:02:
9f:d7:7b:49:e9:80:4c:5e:2a:e2:23:3a:88:9b:7e:b3:23:1e:
b2:c9:a5:42:ec:53:1b:42:a9:d8:5a:8a:16:80:29:70:5b:ee:
0c:db:45:a2:11:84:ee:c2:3b:61:ca:1f:a7:70:9a:4d:87:69:
8e:2f:f6:2a:4c:cb:0b:3a:6c:d8:41:66:11:3b:48:2f:9f:af:
c8:18:d8:c7:1f:96:cb:b2:a7:63:0b:c1:79:4a:a3:fd:42:cb:
c0:85:8f:ce:b8:1b:8d:aa:ea:1b:49:bb:45:59:1b:53:d1:6d:
ff:cf:f6:a5:45:77:a1:bb:09:66:1d:4d:3c:43:78:44:5e:13:
41:51:51:9d:e3:a7:18:f8:b7:05:60:37:e4:4c:6a:0f:69:98:
e3:b6:98:f5:fd:38:70:bb:43:0e:96:b6:e8:43:e5:d5:4b:5f:
4d:cd:0b:0e:74:92:c4:74:e3:f3:15:41:d7:f9:0b:7c:e2:30:
cc:54:5c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org