Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/olfDiP-rp18G3qu4_0yn449onQ8.roa
File: olfDiP-rp18G3qu4_0yn449onQ8.roa (raw, json)
Hash identifier: zkplxlxrcBHTpVQzwH/56QAa+xFuRko+FWJNpyduoZE=
Subject key identifier: A2:57:C3:88:FF:AB:A7:5F:06:DE:AB:B8:FF:4C:A7:E3:8F:68:9D:0F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D07
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/olfDiP-rp18G3qu4_0yn449onQ8.roa
Signing time: Fri 01 Sep 2023 09:59:26 +0000
ROA not before: Fri 01 Sep 2023 09:59:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131150
IP address blocks: 163.32.140.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3335 (0xd07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A257C388FFABA75F06DEABB8FF4CA7E38F689D0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:df:11:03:86:78:ea:73:bb:a2:86:f3:ed:bf:
2c:3a:c9:07:52:1e:29:9f:12:7c:7f:3d:40:db:09:
00:6c:da:0f:95:95:6c:d8:c2:50:7a:ad:da:e8:5d:
35:21:45:69:fd:8a:d7:96:1c:d8:1c:7e:18:ee:a8:
2a:51:9f:44:73:92:62:13:19:0d:24:68:40:51:6b:
a2:9e:aa:01:49:64:d2:a1:e4:a8:1f:87:86:8b:9d:
17:03:b1:56:48:a1:38:fc:91:d7:44:d9:84:93:ba:
81:0c:40:5a:e0:be:e5:78:fb:4c:03:5c:5c:4d:a8:
7d:e9:a1:94:3b:13:13:98:c7:c1:bf:d4:50:f7:72:
80:19:4b:e3:60:c3:db:60:7a:c9:de:fe:df:ba:f0:
0b:7d:98:66:02:1c:6b:48:95:df:5c:18:cb:6a:79:
52:72:b1:94:3c:12:f5:73:07:06:4d:8b:44:f8:9d:
f9:23:ed:22:c0:0a:58:18:b5:79:66:d9:35:62:7d:
23:39:4e:d5:b9:60:ef:17:4c:14:1a:e7:b7:06:34:
d7:49:11:82:d8:6a:93:2b:b3:b3:41:5a:35:f0:52:
20:ea:1c:1d:4d:db:1c:35:c1:61:d5:fd:88:9d:5b:
dc:76:9e:f0:ef:ef:4f:2d:e9:07:6e:41:df:81:2f:
e0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:57:C3:88:FF:AB:A7:5F:06:DE:AB:B8:FF:4C:A7:E3:8F:68:9D:0F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/olfDiP-rp18G3qu4_0yn449onQ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.140.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:77:b4:18:c2:e3:67:c7:a8:1f:02:3c:97:78:0b:ac:1c:1d:
3d:77:67:99:68:0f:c8:7c:be:f7:d5:e7:3b:ea:2e:86:98:9c:
b5:4d:68:ca:4c:7b:c0:bd:2f:6e:c9:9e:3b:43:cc:53:f5:5c:
74:99:a3:45:f7:6b:af:a0:f3:09:6d:4d:fd:83:9e:5f:62:85:
fb:5a:77:61:f9:72:30:c7:8b:bb:ff:c1:d0:52:0c:0d:0a:80:
15:cb:cf:f0:aa:72:06:34:fb:51:fc:a3:5a:c7:82:c6:5c:70:
fa:43:17:74:45:7d:91:ff:82:a2:47:33:b1:07:83:99:e2:28:
2a:b2:7e:0f:0d:21:7f:4b:34:56:6f:b2:db:1d:85:fa:59:7d:
a4:04:c6:8e:a8:ac:c1:64:ab:be:66:a0:63:48:9f:ad:4e:a6:
89:c5:68:48:8b:6a:31:93:10:c8:60:41:00:4d:98:f0:d5:d6:
eb:bd:0b:97:63:e0:97:32:ee:b1:cf:fb:60:00:fb:fe:9e:e4:
5c:b4:8b:da:01:02:90:fe:e7:75:57:22:7c:7d:80:e9:b7:c5:
b3:ef:f8:58:3c:04:b3:19:86:32:e2:e0:e7:f1:8d:2d:cf:ad:
54:c1:7e:f5:ca:49:7b:8c:3f:ca:5b:ba:ba:7d:21:8d:89:ef:
3f:5e:b6:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org