Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/A2bY0Mrj8hhFAj3aKUMX_WPkB4A.roa
File: A2bY0Mrj8hhFAj3aKUMX_WPkB4A.roa (raw, json)
Hash identifier: SnbNkj9ArmLlTQ0roip7VImCyW/UQ5RYxqbcltU9eUo=
Subject key identifier: 03:66:D8:D0:CA:E3:F2:18:45:02:3D:DA:29:43:17:FD:63:E4:07:80
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D14
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/A2bY0Mrj8hhFAj3aKUMX_WPkB4A.roa
Signing time: Fri 01 Sep 2023 09:59:34 +0000
ROA not before: Fri 01 Sep 2023 09:59:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 210.62.240.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3348 (0xd14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0366D8D0CAE3F21845023DDA294317FD63E40780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:88:6b:98:bf:38:73:e5:15:6e:d3:5c:82:e9:
3b:95:b2:04:1e:21:6a:92:fa:00:7a:3f:f8:3c:76:
62:05:86:8e:71:83:67:da:cc:b1:c8:08:12:16:4e:
85:4c:f4:67:81:58:0b:89:07:3f:cb:a5:c4:0e:96:
a8:a5:6d:1c:db:14:49:46:0a:cc:59:39:38:7a:7f:
40:05:b1:e3:3a:47:08:72:d4:67:a0:a1:d5:7f:6b:
f7:18:0e:82:59:bb:06:7a:15:64:90:a3:b9:33:19:
26:d1:98:b3:fc:03:62:44:0a:83:4d:6d:3d:75:29:
da:a4:02:c0:20:d5:4e:9e:2d:70:15:fb:76:23:5a:
ca:da:f6:37:09:de:0d:38:b4:6c:ed:0c:e7:1d:7c:
40:83:49:ee:aa:94:39:7d:a2:42:af:dc:bb:cc:ea:
f6:17:58:77:89:fc:b7:c2:0d:e1:fd:37:59:71:91:
e5:30:3b:cf:25:e5:ad:c7:6b:06:60:3b:a1:51:46:
29:57:e5:bf:af:91:bc:f8:c7:83:13:39:df:a5:d1:
7b:48:e9:a7:c6:fe:e9:56:39:7c:52:58:9b:30:0a:
31:86:78:f6:8a:1a:48:ff:1b:bb:1c:d2:7d:9d:31:
08:72:21:56:99:47:70:9a:f2:25:17:b4:99:e8:0f:
c3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:66:D8:D0:CA:E3:F2:18:45:02:3D:DA:29:43:17:FD:63:E4:07:80
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/A2bY0Mrj8hhFAj3aKUMX_WPkB4A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.240.0/21
Signature Algorithm: sha256WithRSAEncryption
31:8d:cf:8a:9e:12:92:67:4a:50:22:73:58:65:76:52:39:b7:
57:99:e7:38:db:3b:b8:fc:51:2d:42:0e:38:ed:11:79:0f:0b:
02:2d:ca:be:e0:89:97:e3:e6:24:11:ce:fb:1f:4b:a6:c5:9d:
3a:c2:07:8b:65:81:e6:01:71:51:49:ea:03:a7:82:5f:7b:e5:
e4:5d:12:ad:c6:0c:f1:84:60:4e:4f:44:e7:1e:33:81:07:ec:
c7:a9:dc:5e:f6:f2:3d:74:11:f5:af:e0:52:43:29:a2:23:7e:
2e:2e:5f:cd:ff:dd:49:52:7b:23:45:80:bc:69:6f:7a:9a:25:
3e:a1:17:46:43:15:01:47:28:cb:51:95:18:c4:b1:2b:6e:3c:
ca:e1:74:7a:33:99:4c:aa:42:5f:6c:84:5c:c4:0d:cd:ac:e8:
ec:f0:6f:d8:e3:99:eb:68:dd:78:21:32:c8:25:bd:2f:c4:03:
db:30:a0:00:5a:a8:74:47:92:93:0c:14:01:e6:fe:20:96:82:
2a:b6:9a:f5:7c:5c:7e:74:cf:92:5e:3e:57:d6:a9:73:33:5b:
42:3e:b0:ee:bc:12:73:9d:09:5d:92:57:d8:6f:8e:af:6c:6e:
24:a2:30:85:89:ad:a4:09:96:e2:95:a0:30:6c:10:fe:a3:35:
23:66:16:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org