Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/pKYWtm2cvaR9viWlfY_dHM5asG4.roa
File: pKYWtm2cvaR9viWlfY_dHM5asG4.roa (raw, json)
Hash identifier: INUKqlIEpV/h3vJhAsGQIzz/dlwEJTAdPCNoUiAu6JY=
Subject key identifier: A4:A6:16:B6:6D:9C:BD:A4:7D:BE:25:A5:7D:8F:DD:1C:CE:5A:B0:6E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CB3
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pKYWtm2cvaR9viWlfY_dHM5asG4.roa
Signing time: Fri 01 Sep 2023 09:59:34 +0000
ROA not before: Fri 01 Sep 2023 09:59:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38847
IP address blocks: 140.120.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3251 (0xcb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A4A616B66D9CBDA47DBE25A57D8FDD1CCE5AB06E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:68:89:04:9b:6e:1d:3d:77:29:dc:68:7e:15:
a5:6c:32:50:3a:7f:a9:27:33:e4:6b:ee:17:b5:e9:
fd:2a:2f:42:5a:7d:29:0d:2e:60:6f:41:be:f0:eb:
46:be:fc:d6:bf:a5:06:56:57:00:20:c2:38:7d:ec:
2b:f0:80:1b:8c:b4:89:59:76:11:20:d5:f4:48:36:
10:01:35:d5:d9:6f:44:d7:14:6c:ca:74:5b:20:47:
f5:f2:e1:7a:db:d9:dd:c8:c9:3b:2a:74:71:98:8e:
6d:76:7e:38:9f:c3:10:6a:60:8e:1d:64:c6:db:33:
11:65:db:a3:03:68:d1:99:cd:16:c2:ec:e8:bb:2a:
e0:b5:fe:4d:63:f8:ce:c8:0f:c7:73:60:cd:0b:78:
83:21:d1:f7:23:77:29:50:46:7b:a8:5f:bd:9a:ac:
ca:f0:ae:67:08:96:15:19:7d:9f:30:27:a0:af:ec:
d3:95:2a:ff:ea:48:66:9d:c6:f6:86:f4:c4:7e:c5:
57:71:11:e0:91:31:f8:12:9d:25:d7:e2:c9:33:eb:
3e:f6:31:eb:01:2b:b2:b6:f5:27:6f:a6:5d:96:5c:
e4:fd:84:9c:be:e3:c0:84:5f:45:f0:7a:5b:e7:81:
3c:47:5b:6b:f1:ca:ab:37:ee:7a:35:da:71:c5:14:
97:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A6:16:B6:6D:9C:BD:A4:7D:BE:25:A5:7D:8F:DD:1C:CE:5A:B0:6E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/pKYWtm2cvaR9viWlfY_dHM5asG4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.120.0.0/16
Signature Algorithm: sha256WithRSAEncryption
98:d6:4a:b0:97:9f:57:16:14:32:c4:3d:38:2a:9f:66:e0:c5:
0f:d3:f6:e8:a2:ef:8c:64:b0:da:e9:45:87:81:6a:f1:71:b6:
c4:9a:c9:f7:70:26:04:57:2c:a6:ca:51:d2:dd:30:26:ec:61:
c2:3e:ba:21:3e:c8:83:d9:3f:3a:66:10:8b:25:8f:b9:61:32:
16:de:04:97:52:ec:8f:8b:4d:62:26:fa:0a:8b:eb:f0:70:3f:
bf:17:dc:71:18:a4:04:dd:1f:32:59:53:b1:68:ef:57:fe:80:
57:71:19:6d:ae:f9:51:5a:13:0f:d0:71:d6:c1:d3:e9:1e:54:
ca:f0:c0:22:77:e3:eb:b6:8a:04:bf:55:03:1e:b3:ea:3a:f9:
1f:d0:ce:e9:8f:27:ac:b8:5a:f3:0d:7e:85:2e:08:eb:7a:c4:
13:ad:f6:b1:de:16:72:c0:d9:e5:31:c9:5b:a3:fd:06:12:8d:
53:59:c0:2e:83:bc:78:5d:3e:b4:92:fb:dc:a2:50:b8:d9:c4:
69:e6:0c:8a:60:c6:33:4e:c8:8e:5a:71:64:a8:15:02:9a:36:
5b:bb:a9:03:50:17:c5:ef:cd:03:29:f3:bd:ef:ad:61:35:1c:
65:66:e3:70:45:4e:48:ce:62:08:70:d9:01:8a:67:ca:b6:0d:
da:a1:8e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org