Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Q1xTSWWUIbSeSvRles1yenhrn20.roa
File: Q1xTSWWUIbSeSvRles1yenhrn20.roa (raw, json)
Hash identifier: ToXEhn34QgFnUcntMwyNtaGaJtUXcMCl5Nwwtf43ZU4=
Subject key identifier: 43:5C:53:49:65:94:21:B4:9E:4A:F4:65:7A:CD:72:7A:78:6B:9F:6D
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CB7
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Q1xTSWWUIbSeSvRles1yenhrn20.roa
Signing time: Fri 01 Sep 2023 09:59:37 +0000
ROA not before: Fri 01 Sep 2023 09:59:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 192.83.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3255 (0xcb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=435C5349659421B49E4AF4657ACD727A786B9F6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:89:32:bb:ea:f4:db:9c:49:c8:75:cc:23:13:
80:c7:7e:4f:a8:ac:0a:0f:7f:ea:de:17:8b:2d:ae:
c4:86:f6:fe:6b:7c:37:78:a1:47:41:15:72:5c:4f:
c7:0b:34:b6:a3:2a:3f:99:86:30:ba:fc:b8:41:a5:
66:61:50:1a:9d:29:b3:ac:8b:14:e4:93:43:38:69:
73:c4:90:e1:a4:33:ab:6c:b9:6d:a9:b9:93:75:f2:
1e:ed:38:e3:dc:ed:fb:af:7a:ae:31:f7:92:c4:27:
5c:7d:a5:98:be:06:eb:af:f0:82:07:e1:8f:89:6d:
ba:18:11:24:dd:29:75:c1:6b:ba:f9:79:da:84:7f:
40:ed:c2:c8:60:34:05:1c:fa:90:55:45:95:70:f7:
4c:9b:54:cc:fa:5e:bc:13:c7:b9:6d:ca:06:22:f4:
eb:93:af:51:dc:9c:99:0a:d4:6e:d5:60:c6:95:7e:
8d:bd:f0:c1:c9:c8:fe:bc:1d:1b:73:5a:74:6a:46:
ac:01:80:06:16:64:a0:bc:c0:4f:3c:98:42:6d:67:
f1:82:08:94:88:9d:20:61:54:69:52:02:82:b7:b1:
f1:04:32:4c:6f:35:6a:2d:26:61:bf:a5:6a:c4:04:
44:51:21:11:19:6e:34:c4:38:bf:ca:33:76:92:ff:
76:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:5C:53:49:65:94:21:B4:9E:4A:F4:65:7A:CD:72:7A:78:6B:9F:6D
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Q1xTSWWUIbSeSvRles1yenhrn20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.176.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:05:9b:91:05:c6:f9:7c:a2:31:0e:d7:7a:8a:17:74:03:00:
a0:00:53:98:1d:2f:56:f8:a4:91:71:5b:ab:43:3b:ce:d7:26:
24:cf:43:56:4c:2d:66:30:87:a0:42:71:d9:f0:d7:12:39:9a:
00:7c:5a:78:89:4b:e8:ee:e4:80:80:77:c6:8b:f6:f5:da:b0:
11:d8:c2:0d:84:85:ee:1c:d8:38:77:06:97:11:cc:c5:37:03:
e4:2f:57:a4:ca:00:20:9d:b1:31:db:cc:3c:16:40:91:43:4f:
91:43:92:e1:5e:91:b0:95:1e:e7:81:95:d1:82:8b:54:c6:2f:
c4:18:7a:28:ab:b4:9d:ba:56:37:4e:27:f2:dd:33:de:18:1b:
66:7d:26:97:92:13:e6:49:e5:01:51:e0:fb:63:00:3a:a4:98:
f5:cb:02:e7:cf:bf:29:6b:7e:73:15:ce:bd:9c:4d:7a:9b:4e:
73:d8:e1:8f:7f:6c:40:15:a3:f5:2b:2a:32:13:5e:2d:19:68:
bf:45:77:30:ea:98:3d:8c:79:7c:0f:85:1f:8c:74:6a:64:e0:
34:a4:f2:75:75:0a:79:a4:7b:84:b4:c7:03:0b:db:1a:23:5a:
76:39:6d:f5:d9:fe:c5:5d:5c:7b:bc:9b:b0:de:1d:25:19:8c:
5e:0a:8d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org