Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/cK_UzdPsGznQ3gpjye1vvdzh-98.roa
File: cK_UzdPsGznQ3gpjye1vvdzh-98.roa (raw, json)
Hash identifier: mRen2CSa8ePrr7aGte7rxeLSs0+yGbbelZDNyenLS4A=
Subject key identifier: 70:AF:D4:CD:D3:EC:1B:39:D0:DE:0A:63:C9:ED:6F:BD:DC:E1:FB:DF
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CA7
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/cK_UzdPsGznQ3gpjye1vvdzh-98.roa
Signing time: Fri 01 Sep 2023 09:59:27 +0000
ROA not before: Fri 01 Sep 2023 09:59:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 192.83.192.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3239 (0xca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=70AFD4CDD3EC1B39D0DE0A63C9ED6FBDDCE1FBDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:64:ac:da:b4:32:d0:be:d3:9a:9f:8e:c0:
c1:9b:70:91:80:39:bc:13:ea:5a:05:b9:6f:2a:d6:
f6:10:82:ed:6f:22:6c:3a:fa:2e:1c:16:97:92:f4:
20:91:45:17:95:7b:ed:49:b1:82:4e:01:f9:35:d8:
2d:f6:a7:d1:8c:40:b6:e4:ff:3c:2a:03:5c:98:1a:
d8:45:c9:91:27:fd:c0:1e:3e:63:60:e6:40:ed:9c:
f3:a3:11:f3:4b:ed:4b:c5:fd:bb:70:13:cc:26:8e:
7d:f2:1c:db:51:56:4a:b5:98:78:8a:b2:b2:d6:cf:
fa:f6:90:44:6a:cc:6d:4b:5a:e1:68:a2:11:ad:93:
40:9a:0c:5c:88:c4:9b:33:e5:b4:35:3e:02:46:48:
ed:05:f3:fb:35:58:89:39:4a:03:fb:4f:d5:a8:96:
e7:a0:03:00:0d:6a:d0:a5:7f:4f:95:e1:d2:7e:fc:
e8:68:bc:f2:f3:f4:e5:31:a3:77:f5:17:82:1d:06:
bc:82:90:03:41:40:b5:d5:73:d5:d6:5f:75:61:7b:
79:11:65:42:65:0b:95:43:45:44:d8:35:35:ac:f6:
c7:aa:9c:16:62:b5:0c:8a:63:3c:95:5c:44:a7:eb:
27:ab:66:45:a3:f0:de:cc:86:e4:1e:69:f8:a0:26:
d5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:AF:D4:CD:D3:EC:1B:39:D0:DE:0A:63:C9:ED:6F:BD:DC:E1:FB:DF
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/cK_UzdPsGznQ3gpjye1vvdzh-98.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.192.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:c6:78:f0:9b:78:e8:aa:2b:c8:f4:8b:a1:52:48:ec:e5:c3:
64:24:ff:ce:00:a9:ad:ac:18:87:c6:36:e1:ca:23:e5:2d:12:
87:67:f6:a0:eb:ff:0d:ff:23:da:ff:2a:55:98:b6:e0:c4:d2:
d6:ed:7d:54:b8:dc:92:c1:c3:f4:86:9b:26:1f:a7:30:16:af:
3f:aa:33:4c:5c:ee:54:b7:b0:7b:72:82:77:07:52:c8:d9:85:
4c:9b:1a:d5:65:fd:cf:4c:44:62:36:e3:5c:4e:d0:a6:2f:76:
a9:49:2a:00:86:81:a5:ec:23:d1:d5:b6:26:f1:97:7c:e3:77:
ac:d6:59:14:41:8f:f6:37:ee:1a:2e:23:df:bb:0a:9f:fc:31:
a0:7f:da:33:fd:f3:05:a5:91:ab:07:dd:ab:01:69:ba:bd:bb:
59:af:49:4b:92:9e:36:6c:9b:52:7a:76:df:0a:30:a3:24:98:
18:6e:54:59:af:ac:60:a8:e4:4a:27:f0:50:76:33:5d:a6:6b:
01:0b:99:ed:a5:99:e3:45:b3:4e:38:dc:12:b6:1b:3d:45:6d:
a7:01:6f:69:f7:aa:f6:58:98:08:f5:b5:4e:9d:a1:f3:7b:25:
d3:df:42:14:69:32:13:16:ac:93:e8:78:4d:c2:e1:84:75:2f:
03:8b:a5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org