Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ENizDRk1eriI1r2VtUgGiUZB7l0.roa
File: ENizDRk1eriI1r2VtUgGiUZB7l0.roa (raw, json)
Hash identifier: BjFRWYi+JPv+DWZcNVsXEJ5RvB6JPfcURkz5L9e5lWU=
Subject key identifier: 10:D8:B3:0D:19:35:7A:B8:88:D6:BD:95:B5:48:06:89:46:41:EE:5D
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CA9
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ENizDRk1eriI1r2VtUgGiUZB7l0.roa
Signing time: Fri 01 Sep 2023 09:59:29 +0000
ROA not before: Fri 01 Sep 2023 09:59:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38844
IP address blocks: 140.122.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3241 (0xca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=10D8B30D19357AB888D6BD95B54806894641EE5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:15:75:f9:4f:06:54:6a:dd:79:c6:94:3d:97:
16:34:3d:40:b9:4e:fd:ce:f7:04:28:31:61:0d:2f:
6c:5e:29:7f:5e:f4:d9:c1:09:41:83:c0:7a:6c:05:
92:4c:49:8d:7e:2c:2f:f1:c5:4b:d6:0c:ed:59:e0:
f6:76:31:8a:b4:af:f4:17:7b:21:46:8e:57:a0:ae:
33:74:a1:42:4e:34:07:6e:e1:de:aa:3b:b8:29:02:
8f:03:91:95:75:60:fb:7a:80:2c:de:a0:c6:55:cf:
36:10:49:d0:61:6e:25:87:d2:46:59:c0:d2:11:56:
f8:b1:01:ad:83:0e:79:59:05:9f:91:6d:2f:a8:e4:
14:3d:ff:68:4c:86:ca:e9:c0:4f:da:57:37:b3:2a:
cf:60:98:56:a5:aa:40:75:c4:74:d0:9f:e4:0f:13:
f7:22:70:f1:7c:bd:f4:6d:7d:4e:17:8c:21:f7:7c:
98:fb:28:39:18:f1:4c:43:f0:f6:04:0a:a8:6c:f0:
02:4d:74:c6:6b:b5:f4:36:be:dc:7a:2c:6d:9b:7d:
77:72:7e:47:0b:4d:32:e9:e8:aa:69:26:b4:e7:87:
02:e8:f7:23:80:fe:3f:2b:3c:2b:e7:44:d1:6f:92:
e4:47:df:bc:c6:85:a1:8e:3c:be:47:f1:2c:48:f5:
7f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D8:B3:0D:19:35:7A:B8:88:D6:BD:95:B5:48:06:89:46:41:EE:5D
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ENizDRk1eriI1r2VtUgGiUZB7l0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.122.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:2d:87:c9:3f:8c:f7:58:17:c2:c8:89:1d:ff:fd:c4:97:87:
99:54:3d:e3:4b:da:a3:05:17:7a:90:e0:89:41:ce:fb:7a:69:
d9:e5:4e:58:49:66:21:43:ff:da:11:71:01:e3:37:0d:31:5c:
a7:42:bc:b1:5f:f1:46:60:76:6a:0f:87:79:95:1a:f3:d7:16:
b5:43:29:7c:83:6c:82:a7:ab:57:c3:aa:be:9c:45:c9:77:6b:
15:7f:6d:19:47:00:11:87:d9:32:58:ed:ea:0a:8c:d0:f4:be:
05:38:0c:6c:0f:61:d0:6b:c5:2c:26:00:12:d9:be:ce:34:cd:
df:26:f5:29:ca:3a:4f:da:d6:e5:3e:a1:40:a5:ec:11:e9:9a:
38:4e:ea:d2:67:a1:33:5b:90:75:c3:6b:be:f8:23:a1:ac:80:
4b:c3:16:b8:64:0d:82:1d:40:c4:15:79:26:15:1f:b1:a1:42:
6a:9a:e9:dc:56:53:75:9f:3c:ba:2f:7b:d8:c1:bd:80:e2:0b:
e5:9c:17:06:51:dd:3c:2e:05:35:a9:64:ed:df:f7:3c:34:9d:
83:7c:0a:56:36:95:55:ba:4c:c9:54:c8:b2:6e:7c:ce:77:42:
5c:44:b4:c1:f0:0f:c8:e5:10:bd:73:ed:cc:60:47:f3:96:9a:
52:95:4d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org