Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XozROPMbiGoT3Ymg1OSGqMzn2bY.roa
File: XozROPMbiGoT3Ymg1OSGqMzn2bY.roa (raw, json)
Hash identifier: 09/G7iDK9iU0CRHz5BnXKI1SeBEJK+c0nbNpNeIuXJI=
Subject key identifier: 5E:8C:D1:38:F3:1B:88:6A:13:DD:89:A0:D4:E4:86:A8:CC:E7:D9:B6
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D13
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XozROPMbiGoT3Ymg1OSGqMzn2bY.roa
Signing time: Fri 01 Sep 2023 09:59:33 +0000
ROA not before: Fri 01 Sep 2023 09:59:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38844
IP address blocks: 203.68.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3347 (0xd13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5E8CD138F31B886A13DD89A0D4E486A8CCE7D9B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:25:13:66:29:10:d2:87:86:5a:bf:9b:0a:
d3:e8:35:da:0f:53:b5:50:e1:12:b9:8e:0a:7e:cf:
7f:e3:f4:f6:52:61:1a:b7:b6:16:1c:20:0f:b1:6f:
60:e1:08:6e:a2:cb:2d:e4:b3:f5:7d:b3:7f:ba:10:
27:d6:e2:dd:6b:59:00:6a:63:5f:e8:c8:b6:f4:f0:
07:ba:a9:05:d0:22:57:bd:22:a4:e2:db:6a:1d:9a:
e6:0b:65:61:25:14:45:fb:d2:80:49:1e:ea:4f:5b:
16:e1:97:6c:b3:fb:2a:f2:55:65:e5:67:da:c8:f7:
47:a4:83:1c:7c:19:a1:3b:d6:83:a2:d4:5f:93:07:
98:25:e4:1d:47:be:b0:f6:4f:39:7f:f9:80:64:67:
cd:0c:cf:3b:96:46:1e:aa:d8:a6:1b:14:4f:16:b2:
34:17:ad:50:39:43:7c:79:cb:6c:9e:ee:8e:69:be:
b9:7f:63:47:82:e0:3c:47:40:72:bf:aa:b5:7c:ae:
40:26:65:cb:77:6e:f6:cf:5a:f7:81:07:af:85:ff:
2d:d2:ef:4b:b7:1a:94:e6:5b:ee:4e:fa:9a:9b:cd:
4f:b8:b0:42:1e:05:2f:8a:d2:95:6d:28:95:83:58:
33:a8:2d:d0:e0:a2:39:0e:95:86:6d:bf:e6:13:60:
57:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8C:D1:38:F3:1B:88:6A:13:DD:89:A0:D4:E4:86:A8:CC:E7:D9:B6
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XozROPMbiGoT3Ymg1OSGqMzn2bY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.168.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d0:6e:70:24:a3:fb:72:77:94:f1:80:86:2d:2d:57:cb:18:
ca:4d:98:b4:14:da:ec:8b:1d:b0:e2:a6:e6:a8:fd:e1:b9:7f:
a0:17:bf:f7:00:3f:0b:37:99:92:ea:1f:29:e4:7d:ce:65:9f:
df:1d:4a:ec:ea:e1:09:5e:5c:ff:d6:d9:af:95:e7:8f:71:1e:
fa:4d:47:40:eb:5f:6a:2a:3f:d6:d5:90:3c:c4:be:cf:0f:0e:
a4:24:ad:ff:66:3a:0f:c0:a3:5a:fd:bb:7f:fd:ac:07:4a:2f:
a7:c1:6a:37:f9:35:8f:1f:c4:2a:86:31:8b:ad:13:a3:31:d3:
54:04:e7:51:2e:63:03:41:59:60:62:73:50:ea:a5:57:a9:d7:
c8:80:51:86:83:54:ff:2e:2a:4f:e1:79:49:33:a6:24:8e:7e:
0f:bc:85:7c:7c:cd:37:5f:a0:d6:0a:65:8d:6e:60:92:10:83:
13:42:a7:9e:36:9a:d6:9f:06:69:da:b7:bd:53:89:5b:90:f2:
31:3d:0e:c5:8f:c3:42:71:aa:51:3e:b1:4e:d0:ae:44:c1:08:
91:82:a1:83:d5:8f:9e:34:d2:0f:05:6f:f7:52:46:a2:e3:3c:
39:6a:9b:41:8b:c7:42:c2:44:53:21:94:f3:de:80:30:fe:10:
25:f0:24:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org