Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/dXhsK5lE2jO-Qm1jf4WTUHv2BHs.roa
File: dXhsK5lE2jO-Qm1jf4WTUHv2BHs.roa (raw, json)
Hash identifier: SAdX8i8hoiDG5hWqYuoF9EqtVQv5OpTpzL3m8KKQyUs=
Subject key identifier: 75:78:6C:2B:99:44:DA:33:BE:42:6D:63:7F:85:93:50:7B:F6:04:7B
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CA3
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dXhsK5lE2jO-Qm1jf4WTUHv2BHs.roa
Signing time: Fri 01 Sep 2023 09:59:26 +0000
ROA not before: Fri 01 Sep 2023 09:59:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 140.136.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3235 (0xca3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=75786C2B9944DA33BE426D637F8593507BF6047B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bb:ef:3a:ec:5f:8b:6b:ba:01:5f:d6:6d:67:
ba:cc:da:10:a3:4e:f4:4c:ab:25:4d:a9:ea:5d:35:
bd:0d:0e:26:45:df:f2:48:ec:3c:21:f7:ff:52:01:
43:63:57:0f:ed:c2:8d:03:4e:c1:64:03:d4:b9:24:
92:78:41:a8:b8:06:86:79:5b:9d:d9:1a:3c:5a:f3:
86:1b:e7:53:24:bc:f9:55:29:66:0d:17:49:96:a9:
1f:81:ad:5f:75:13:66:ed:16:fa:ef:e6:61:e5:1f:
22:ce:ce:be:a4:c4:5a:cc:b6:d5:ad:76:29:a7:35:
bf:76:b8:be:19:06:e0:ba:7d:3b:f8:c1:97:c0:cc:
8c:60:0f:d5:a5:30:72:6d:f2:db:1d:65:20:d7:73:
c4:0d:39:b0:a4:50:30:7e:36:71:6a:3b:6c:52:59:
a6:b4:a8:2a:dc:0d:c8:78:5f:d1:ad:04:98:1a:e4:
4b:ec:24:e2:3f:4b:c3:9d:20:f6:54:55:4a:d3:2b:
08:0f:85:74:c7:0f:c3:7c:66:41:cb:c8:63:e5:ff:
24:37:48:74:4e:86:f3:7e:9f:56:b4:0e:29:94:5f:
68:f4:fd:35:8a:57:23:5a:95:c4:f5:8f:c6:94:79:
c2:57:9e:b8:90:e2:19:91:c5:74:6d:4b:e0:fe:8a:
9f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:78:6C:2B:99:44:DA:33:BE:42:6D:63:7F:85:93:50:7B:F6:04:7B
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dXhsK5lE2jO-Qm1jf4WTUHv2BHs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
00:ba:67:a1:54:ee:15:c7:bf:be:67:95:d6:99:c3:b1:2e:87:
de:13:c1:01:c6:b8:ce:21:56:2f:a3:24:58:af:be:83:ce:bf:
8f:65:ff:66:27:50:49:21:9d:7a:b0:fd:69:d6:f1:5e:be:61:
84:4c:3b:ff:ad:23:68:2b:af:b0:ac:d9:b6:b5:99:4f:31:c6:
0a:11:f2:a0:01:dd:b0:14:da:ad:5e:7b:bf:2a:5e:6b:6b:cd:
d2:b4:28:d2:d6:d3:f8:b0:d3:33:7d:12:f7:3c:5b:4d:22:6d:
18:eb:09:94:1f:b1:b3:6b:9c:df:50:d0:3c:81:c1:06:9a:58:
bd:b7:10:ba:53:c0:93:4c:42:34:5c:83:5a:17:ca:29:59:04:
99:45:ea:8d:f6:04:ef:1b:ff:ca:e8:13:cb:c3:9b:1e:e0:47:
4a:68:e1:2f:33:49:6a:e5:93:d5:0c:de:da:86:38:4e:8e:e3:
73:1f:66:41:13:43:e5:fe:e9:56:12:0f:6e:bb:13:10:e7:23:
cc:da:2a:65:f1:48:fd:59:e3:a2:fe:a5:3f:4f:96:dc:8c:e6:
73:1f:ab:26:51:75:c5:fc:f9:6d:63:d9:83:f2:23:15:a4:70:
be:a7:26:24:ad:3d:ee:2d:a1:3c:93:9e:fd:b0:b6:ed:a7:6d:
54:8d:7b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org