Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/5FtrFml6PjstVHcR4qQ4efAyaf0.roa
File: 5FtrFml6PjstVHcR4qQ4efAyaf0.roa (raw, json)
Hash identifier: MLePbgjW9/dlhtAynci6sykUHQiVpDlE3e8GqE0EdRQ=
Subject key identifier: E4:5B:6B:16:69:7A:3E:3B:2D:54:77:11:E2:A4:38:79:F0:32:69:FD
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0C98
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5FtrFml6PjstVHcR4qQ4efAyaf0.roa
Signing time: Fri 01 Sep 2023 09:59:16 +0000
ROA not before: Fri 01 Sep 2023 09:59:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 140.128.0.0/13 maxlen: 13
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3224 (0xc98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E45B6B16697A3E3B2D547711E2A43879F03269FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:dc:87:cb:30:dd:7f:0c:a1:7a:2a:df:62:
8a:88:91:e0:24:a9:65:e1:45:47:03:b3:ee:ba:69:
4e:69:5d:88:4c:88:bb:92:86:72:c4:d2:42:2f:cd:
d4:b7:43:94:f5:55:0d:5b:16:6f:cf:c3:f9:d5:08:
91:e6:80:9b:cf:43:55:55:c8:9c:53:17:16:55:93:
43:11:fe:29:5e:4b:9c:ad:bb:7a:17:09:79:85:00:
85:d6:ca:dd:0b:f8:66:38:49:0b:0c:01:b7:3b:29:
e5:0f:c6:6e:f0:9d:43:b4:70:7e:1d:09:6d:c0:6b:
7f:b5:b9:93:09:38:3f:d0:a3:6b:06:c2:58:f2:ea:
67:d9:d7:6c:97:7e:45:8a:e1:f8:77:72:f1:1b:13:
05:2c:82:1f:28:ba:0b:78:f1:5e:df:d1:2a:24:bc:
d0:b1:b3:ce:5a:ed:d0:54:e1:13:bd:3e:54:03:34:
b9:ee:c9:24:91:6f:e5:f5:60:23:9c:b8:42:fb:e6:
4c:37:92:8e:59:89:1d:53:75:2b:39:2f:5a:c7:07:
ec:d0:1a:66:91:9b:3d:be:b2:13:36:ab:a2:b0:d6:
e0:30:6e:6b:5e:69:d4:1f:09:f7:4b:4f:ac:89:03:
68:49:f8:2b:36:36:6d:e2:f9:fb:6c:8f:60:cc:7f:
4d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5B:6B:16:69:7A:3E:3B:2D:54:77:11:E2:A4:38:79:F0:32:69:FD
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5FtrFml6PjstVHcR4qQ4efAyaf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.128.0.0/13
Signature Algorithm: sha256WithRSAEncryption
46:3b:d6:18:7a:0a:ae:19:cc:b0:d7:fa:71:12:4c:72:b3:dd:
23:8b:10:8e:0a:0c:c9:cb:dc:cd:82:f9:c7:1c:6b:a9:fb:b4:
ea:25:9e:eb:a1:89:9f:0e:11:ed:32:86:e7:c7:18:64:c2:cb:
f8:14:0e:5a:c7:c0:73:3b:93:af:be:a1:4f:84:14:09:da:1a:
f6:41:a1:fc:75:af:d1:1c:75:4d:24:4f:22:dd:21:ee:c0:11:
03:23:28:1c:1f:50:f4:ce:94:64:2c:94:6a:2d:23:96:8e:a1:
34:4b:b7:bd:9f:55:47:38:1a:4b:dc:36:6d:fe:1c:43:71:3d:
c3:15:27:54:c4:4a:96:ee:19:0b:46:0f:8e:6a:a4:c8:ab:85:
15:7f:dd:52:76:2a:64:59:d6:3a:e7:64:27:2b:e3:d2:35:66:
93:ff:e2:e8:8a:b6:43:4e:41:32:63:bd:0d:c1:88:96:9a:90:
54:5e:84:3b:a2:8a:4f:2d:c2:53:60:65:e6:fd:2d:1c:34:43:
82:85:3d:ab:61:20:66:f5:b4:cd:ae:28:46:78:36:a0:32:28:
23:b6:07:0b:b4:1e:5b:97:4d:65:c1:fb:e3:d7:ac:0c:66:41:
80:39:eb:d6:ea:76:a2:c1:a3:e7:8f:31:ad:52:cd:a2:98:1b:
50:85:03:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org