Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/N5HqxTO32YIXYM8vLGSUE_ubAvM.roa
File: N5HqxTO32YIXYM8vLGSUE_ubAvM.roa (raw, json)
Hash identifier: EgrAY9NHsy1CQqXHl5PdxaoF5mZ6cFeCS2SznbTDZsg=
Subject key identifier: 37:91:EA:C5:33:B7:D9:82:17:60:CF:2F:2C:64:94:13:FB:9B:02:F3
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D0B
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/N5HqxTO32YIXYM8vLGSUE_ubAvM.roa
Signing time: Fri 01 Sep 2023 09:59:29 +0000
ROA not before: Fri 01 Sep 2023 09:59:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18185
IP address blocks: 120.117.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3339 (0xd0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3791EAC533B7D9821760CF2F2C649413FB9B02F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:02:c5:94:6d:1a:c7:a6:6c:e0:f7:4e:7e:14:
20:ae:d4:ce:44:d9:16:23:ac:ea:fd:ab:a7:24:a1:
7f:b4:04:48:b2:36:52:e2:14:6f:67:f0:60:03:f0:
22:cc:37:91:d3:ba:af:d4:f1:02:1e:25:9a:1e:8d:
98:64:21:e3:13:12:98:69:e1:9c:35:01:87:ce:f7:
99:42:c1:1a:43:0b:81:d7:67:b0:e9:9c:9f:6f:36:
8b:1d:21:29:26:f2:7b:8a:de:fe:bb:d9:8e:a2:32:
9a:d9:9a:42:d4:05:7e:f5:9c:a4:a0:3f:59:e7:a5:
a1:61:05:5c:07:26:e1:e2:76:46:83:96:25:f3:77:
c9:c2:7a:dd:05:f5:2e:92:13:74:28:ee:56:d5:5e:
8b:28:be:e3:a0:ba:e2:16:da:61:c5:07:46:d7:eb:
46:a9:49:2e:3e:e0:6e:70:1e:22:6e:d3:c8:b4:e0:
2e:04:63:ae:8b:ff:60:eb:05:0b:95:76:f2:7c:d3:
15:ba:35:99:23:5b:aa:8e:92:a0:8a:cb:2d:3d:ff:
65:73:9c:bc:50:36:a7:68:f0:73:bb:e9:8a:eb:6b:
a4:36:a8:87:5a:73:60:7d:d6:a5:7e:d5:3f:47:b1:
cf:ea:11:f8:c0:af:18:ad:43:b6:2c:df:31:92:be:
d4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:91:EA:C5:33:B7:D9:82:17:60:CF:2F:2C:64:94:13:FB:9B:02:F3
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/N5HqxTO32YIXYM8vLGSUE_ubAvM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.2.0/24
Signature Algorithm: sha256WithRSAEncryption
87:6d:66:57:37:7e:e0:96:8f:85:a1:8f:e2:40:6f:8a:9d:a5:
b1:4c:5e:d4:e1:02:9c:6d:6c:39:e5:13:3c:82:94:1f:77:88:
e2:47:d2:ff:74:44:85:ff:42:72:2c:60:07:23:3e:ec:8e:9c:
2d:6a:f5:7e:d2:cb:a1:40:f0:ce:16:10:e4:41:7b:d0:b2:e9:
be:8b:c7:b7:2a:c6:43:6d:de:9c:e4:58:b6:f4:0e:af:c5:7d:
1a:fc:1a:a9:05:91:ed:13:40:1b:68:bf:3a:04:dc:9f:f3:70:
de:c4:d1:9e:e1:68:ed:ad:e9:0d:1c:84:27:8d:52:48:e4:9e:
84:ee:25:db:d5:aa:f7:c3:4e:bb:f1:4e:d8:aa:f0:0e:89:9f:
67:d0:13:a2:56:34:c7:bd:32:23:d6:14:94:99:2d:97:f8:09:
e8:81:d7:fd:f4:9e:40:e3:63:dd:a9:06:34:8a:ed:3d:0c:8d:
a4:22:52:d7:d7:fc:82:d4:52:1e:14:cd:4e:37:11:24:e5:c1:
95:41:a2:2f:6a:0c:73:46:b2:6f:2a:a9:28:7e:84:8c:6a:12:
26:8b:a0:40:f9:18:1d:40:32:ee:39:85:c4:7d:cf:d1:0f:72:
da:42:8b:df:c6:f6:d4:63:67:be:10:c9:41:86:b3:45:bf:13:
0b:2f:e2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org