Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Z2_fgWx68PxMFffsfKgtwM8mZKw.roa
File: Z2_fgWx68PxMFffsfKgtwM8mZKw.roa (raw, json)
Hash identifier: JwnG3nfxMLRjahYxS5T9ZaGNxgzHWq5cwZnhgiPsISs=
Subject key identifier: 67:6F:DF:81:6C:7A:F0:FC:4C:15:F7:EC:7C:A8:2D:C0:CF:26:64:AC
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CB2
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z2_fgWx68PxMFffsfKgtwM8mZKw.roa
Signing time: Fri 01 Sep 2023 09:59:34 +0000
ROA not before: Fri 01 Sep 2023 09:59:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 192.83.168.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3250 (0xcb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=676FDF816C7AF0FC4C15F7EC7CA82DC0CF2664AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:88:0f:dc:5a:ce:d7:bf:07:7d:7b:f0:ef:a5:
b0:ef:e8:10:06:6b:7e:b8:8c:58:45:fa:ea:1b:2b:
26:cf:5b:7c:12:e9:4a:2a:66:d8:76:0e:96:71:0a:
9e:d8:6d:56:bf:a9:98:38:30:4f:97:0c:84:c3:96:
d3:5a:70:d0:24:41:47:f1:95:f0:ee:07:27:9a:a0:
67:d1:e6:52:cd:b3:a9:b3:cc:e5:9d:0d:8c:58:19:
79:3b:b7:d9:13:91:33:7b:97:ec:6b:77:83:31:01:
40:a4:03:9c:a6:ee:6a:fa:6d:72:8e:04:1f:d4:91:
54:f3:e2:f3:cc:5f:63:a4:33:1f:4d:f7:5c:e7:07:
75:73:e5:1f:8e:af:ab:07:2d:e2:a0:84:02:96:92:
2b:2a:37:16:32:f9:a2:fb:d5:8c:fe:a1:38:79:cd:
1e:11:e8:0c:f5:b6:c3:54:f1:1e:87:e1:fb:dc:98:
71:73:4d:5a:88:4a:bd:05:a5:78:16:06:b5:13:ae:
5f:fa:01:8f:05:3c:94:f0:e8:ff:01:03:22:fd:f8:
5d:74:cd:9f:07:22:bd:87:7a:bb:91:4c:f9:61:6d:
5c:4f:82:ee:ca:58:55:ef:1b:67:3a:52:ee:a4:22:
83:0a:b3:05:ab:ca:b4:ee:b9:80:cd:b8:d5:1a:ae:
5a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6F:DF:81:6C:7A:F0:FC:4C:15:F7:EC:7C:A8:2D:C0:CF:26:64:AC
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Z2_fgWx68PxMFffsfKgtwM8mZKw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.168.0/21
Signature Algorithm: sha256WithRSAEncryption
5e:ab:23:7e:6b:3f:16:3f:c4:87:9f:31:2a:15:1f:91:28:56:
9c:7e:63:ee:21:59:a3:9e:50:3b:e3:53:cc:73:ce:15:67:8f:
87:99:d1:0f:bc:b7:80:37:41:7e:48:2e:c8:f1:50:b7:f9:64:
ae:61:13:05:1c:e2:11:eb:4c:c8:6c:e3:24:20:84:07:ee:ab:
da:12:00:66:e1:af:b7:15:3f:52:30:ac:33:44:e6:7a:0a:ec:
ce:0b:f3:dc:a4:ca:3d:66:1b:7c:a8:b4:4d:0a:b9:6e:dd:7d:
f2:9b:be:d9:84:df:11:a6:2f:af:0f:58:ee:ad:ff:db:48:d6:
77:a4:9e:05:39:4f:6b:de:06:1e:46:c2:8b:ea:4a:a7:5c:91:
b8:69:cc:a7:91:3f:33:24:a4:e0:16:c7:6d:56:b6:7c:64:73:
c0:97:07:ca:2a:8f:18:88:d0:e8:df:fa:da:14:0f:64:46:44:
3b:5d:51:30:14:75:34:58:11:a7:b7:5f:b9:1c:3d:a5:31:ff:
eb:1c:53:04:4f:c2:d6:39:c4:b1:14:18:dc:5a:a7:d5:3e:10:
bc:5d:e6:3d:bb:10:ad:cc:d1:97:15:77:6d:db:7c:17:36:ff:
89:9a:96:0d:c4:ff:78:bd:05:0b:74:e3:3d:f7:25:45:f7:2e:
22:0e:c8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org