Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/CXOAv7boONDtx-8nx-hT26Csa6k.roa
File: CXOAv7boONDtx-8nx-hT26Csa6k.roa (raw, json)
Hash identifier: LqSTt7sGKQFsTBStevJQ+wK+fF33zaTjKBIr+M9psks=
Subject key identifier: 09:73:80:BF:B6:E8:38:D0:ED:C7:EF:27:C7:E8:53:DB:A0:AC:6B:A9
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0CF5
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CXOAv7boONDtx-8nx-hT26Csa6k.roa
Signing time: Fri 01 Sep 2023 09:59:16 +0000
ROA not before: Fri 01 Sep 2023 09:59:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131150
IP address blocks: 163.32.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3317 (0xcf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=097380BFB6E838D0EDC7EF27C7E853DBA0AC6BA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:33:cf:7e:f5:34:6e:7c:da:da:4c:c6:ff:0b:
f3:c1:65:2c:9e:4a:f3:bb:a6:05:ff:ed:c4:c4:93:
f4:4b:1b:40:2d:51:a2:fb:f7:93:28:d1:d0:ce:55:
b9:0e:08:4e:e6:5f:93:c5:28:b0:03:ae:29:6f:68:
20:54:6d:68:61:92:44:68:d7:38:8a:ed:d1:88:db:
1a:4d:b5:d2:5e:56:af:ee:23:8b:5b:d9:bc:89:79:
38:29:3f:d1:d6:69:5b:be:11:c6:fa:51:dc:b8:f4:
08:14:a8:3d:0c:83:5d:77:34:5a:ac:c1:32:11:fb:
99:85:6c:74:e7:75:46:0c:35:c2:05:2c:36:dc:65:
59:f7:95:be:19:67:ec:96:fe:ac:03:74:5e:d0:c4:
b1:b7:f0:ac:9d:c2:89:81:2d:c1:bf:3f:a4:5b:d5:
e4:50:47:b4:35:95:a5:97:1c:50:db:2c:fa:4f:f9:
44:4b:50:26:72:04:82:32:3f:bd:ed:e2:c1:df:69:
23:30:7d:47:12:41:b6:1e:54:08:5d:a8:f2:5c:dd:
c9:85:7c:6d:74:21:4f:da:70:91:bb:b1:1d:31:7c:
73:01:bd:cf:d7:da:71:3a:a2:4c:db:9a:f1:67:c0:
bb:65:5a:4f:ec:f5:77:8b:5f:41:e6:d5:0a:02:28:
81:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:73:80:BF:B6:E8:38:D0:ED:C7:EF:27:C7:E8:53:DB:A0:AC:6B:A9
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CXOAv7boONDtx-8nx-hT26Csa6k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.200.0/22
Signature Algorithm: sha256WithRSAEncryption
68:b8:5f:74:ee:83:e1:43:68:3e:2b:34:73:5e:eb:52:8e:82:
fe:2b:14:0b:bc:36:16:af:66:91:68:91:bc:95:e6:1b:18:b1:
f9:87:c5:d4:c6:d1:e3:dd:43:94:b8:40:c3:27:0f:30:35:b5:
45:4c:4e:28:4a:c5:f9:3d:b5:74:ba:11:9c:95:93:1a:66:11:
84:98:27:7b:0a:e5:ba:3a:25:e7:e2:21:7f:1e:04:90:60:6a:
76:59:cd:56:c9:15:04:4e:95:b0:51:fc:9d:fb:ed:15:6b:89:
83:90:45:42:cd:f0:5a:01:70:e7:e7:b1:13:c8:a9:f8:4f:a8:
8b:3f:89:97:8b:a7:05:2a:95:15:cd:1d:cd:be:f2:6b:f2:d9:
45:ac:9b:ce:a4:b0:b2:76:2c:e3:c6:05:dd:f4:8e:23:12:75:
09:d9:c1:ce:51:63:fb:cc:7a:2f:7f:34:93:bd:21:93:31:45:
39:b1:91:f0:60:3f:f2:b5:0d:b2:60:61:d0:c9:d3:f2:8a:65:
55:2b:e0:e6:c5:1f:6f:b0:6e:7b:3c:b6:46:b4:e8:00:54:7e:
cc:2a:89:ce:25:e8:39:e3:6e:d1:ae:99:32:d3:2d:4a:a3:c4:
d1:cf:64:b2:3f:a8:08:10:46:b2:a8:19:77:11:4e:eb:d1:04:
83:84:04:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org