Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/HqEkJqdlMfWRRfBPeRjabeNGWOg.roa
File: HqEkJqdlMfWRRfBPeRjabeNGWOg.roa (raw, json)
Hash identifier: 5APafvfe754y83mh+NTfs18sjoICmbCxIjJRAji6IB4=
Subject key identifier: 1E:A1:24:26:A7:65:31:F5:91:45:F0:4F:79:18:DA:6D:E3:46:58:E8
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0CFB
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/HqEkJqdlMfWRRfBPeRjabeNGWOg.roa
Signing time: Fri 01 Sep 2023 09:59:18 +0000
ROA not before: Fri 01 Sep 2023 09:59:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 163.28.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3323 (0xcfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1EA12426A76531F59145F04F7918DA6DE34658E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0c:6a:c6:92:aa:16:c0:ba:38:30:ed:94:0d:
63:b8:20:d9:a8:94:d6:1a:20:ad:3b:1f:76:90:a9:
d2:8a:09:23:86:3b:a2:d4:82:01:e1:99:5e:44:e2:
06:03:e6:95:a4:90:f3:7f:5a:f2:98:53:cd:79:c8:
52:4e:8e:80:3d:3c:1c:03:72:1a:8f:b2:e3:31:39:
73:7e:e9:62:b2:13:08:9e:da:86:19:4c:25:94:7c:
3c:84:dc:93:a5:7b:25:c6:34:41:f1:6a:40:41:98:
2b:49:29:b6:ef:91:77:49:15:1a:69:dc:6b:d4:38:
cf:9d:1d:c4:3e:20:d5:b2:07:97:5c:b5:7c:09:58:
80:4d:0b:f6:c1:2d:91:70:5e:2e:7d:16:6b:52:27:
7b:23:89:79:30:a2:6d:db:2e:9a:07:26:07:15:3c:
0f:e8:73:3f:51:d4:7e:c0:b3:d8:49:c1:71:4a:7f:
b2:78:02:65:07:89:76:fa:b5:7e:db:2a:2f:11:21:
ab:50:a3:e8:29:72:3f:ca:09:5f:db:82:d6:3d:31:
f5:41:2f:fd:43:58:5f:c4:13:db:7e:f2:02:b4:51:
6d:2d:8e:8b:c1:7d:a3:f4:15:42:ab:8c:49:98:5f:
58:0b:92:f0:b7:ec:e9:3b:e6:59:9a:84:74:55:06:
73:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A1:24:26:A7:65:31:F5:91:45:F0:4F:79:18:DA:6D:E3:46:58:E8
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/HqEkJqdlMfWRRfBPeRjabeNGWOg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.28.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:25:92:b8:02:de:39:88:3f:80:b9:21:a1:92:fe:2d:1d:5d:
ca:8a:d8:f7:7f:ef:5c:0b:df:63:43:e0:1e:75:f1:c0:84:3c:
c3:d9:a4:9f:8b:92:cc:5a:0c:39:56:69:8b:9a:6c:65:da:8a:
f8:80:1b:c1:74:b9:78:c8:74:d8:c2:5d:f5:f1:41:15:2d:25:
1a:77:c7:7e:59:60:6f:f8:d5:75:08:4f:ca:ae:ee:ef:12:ca:
d7:98:87:e5:ed:6f:c2:c8:fb:8f:aa:bc:64:1a:48:8c:9e:57:
83:10:e1:b1:20:d1:c2:60:5e:5e:c5:a9:30:5a:0a:67:5b:6f:
df:50:1e:e7:62:d3:0b:15:3e:cb:23:51:42:78:24:12:ca:59:
6a:55:8e:3b:db:59:b7:8d:6e:1d:ab:4a:68:9d:b0:39:78:46:
f8:f7:af:92:a8:4c:55:0e:0a:e0:7f:49:00:45:60:ea:a6:57:
23:98:86:51:ce:c0:c4:4e:2b:48:3d:40:3f:f7:23:d9:92:0b:
2a:83:23:7a:c2:fe:53:fd:6d:a7:17:0b:f7:ee:c1:93:b5:af:
f3:3f:80:9d:2c:1e:2f:ec:91:fa:73:a9:1d:37:9e:2d:49:48:
bc:bc:64:56:f1:6d:a4:44:00:72:17:bc:c5:bc:09:38:7b:c8:
15:d0:56:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org