Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/svR58pzf2SPKaJe3zEjpzULzyG4.roa
File: svR58pzf2SPKaJe3zEjpzULzyG4.roa (raw, json)
Hash identifier: i9LFYYMikmx1JAJnX6rMlUVxoywSmGLGIEteLUxl48Q=
Subject key identifier: B2:F4:79:F2:9C:DF:D9:23:CA:68:97:B7:CC:48:E9:CD:42:F3:C8:6E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0C9A
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/svR58pzf2SPKaJe3zEjpzULzyG4.roa
Signing time: Fri 01 Sep 2023 09:59:18 +0000
ROA not before: Fri 01 Sep 2023 09:59:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9916
IP address blocks: 140.129.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3226 (0xc9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B2F479F29CDFD923CA6897B7CC48E9CD42F3C86E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:14:6f:65:8b:62:d4:56:cc:96:c8:99:1d:ce:
a6:4b:ab:af:5e:50:c0:61:88:4f:50:84:7f:9e:49:
17:b1:44:e8:4f:56:b0:12:d1:8f:c0:84:9b:e2:46:
bc:b0:80:af:e3:8d:42:32:3e:81:4d:8a:5d:dc:75:
cb:68:10:aa:1c:5f:59:77:42:56:ee:c4:17:bf:9c:
b8:f7:74:fb:5d:8e:02:51:22:31:39:51:2e:d9:0b:
e1:3f:06:75:85:0b:57:b1:25:10:df:99:41:a6:3f:
48:44:b6:be:52:68:d5:e6:1c:87:88:18:7e:0f:3f:
ef:33:46:2c:09:3d:af:7a:39:20:63:1f:48:6b:1c:
3c:22:25:a0:7b:9c:33:5c:dc:d6:c1:9d:8c:3e:56:
2c:53:1a:eb:2f:49:fe:e6:6d:01:3d:76:02:64:a2:
ed:9b:94:41:0a:07:d0:fd:16:22:c5:7a:1b:62:2c:
e3:d4:67:bb:b9:6c:4d:f5:49:3e:f0:03:22:61:e6:
c5:b0:bf:44:00:4c:51:21:14:be:65:d4:0c:10:43:
36:ff:2e:40:65:29:6c:ed:5e:bd:f7:85:39:4a:a7:
d7:20:ff:08:f4:00:06:27:e2:b8:3d:dc:d2:f9:b9:
c3:b8:9d:47:1f:ff:ae:a0:ed:20:dd:8a:fd:0a:ba:
f4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F4:79:F2:9C:DF:D9:23:CA:68:97:B7:CC:48:E9:CD:42:F3:C8:6E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/svR58pzf2SPKaJe3zEjpzULzyG4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.52.0/22
Signature Algorithm: sha256WithRSAEncryption
00:85:b4:18:61:f8:49:0c:97:ce:7a:2a:68:f6:a5:f5:9e:45:
26:33:c1:44:f9:a4:d8:2b:09:85:72:a8:d2:cf:dc:2f:2e:28:
14:f3:a7:78:04:29:ad:d0:ae:34:e7:93:50:e2:f0:b4:e4:35:
3e:9a:81:77:29:3f:dd:ce:cf:60:dc:e4:29:ea:14:65:ef:4b:
b5:a0:f0:4a:bd:65:31:b3:8f:98:84:e7:87:bb:2a:eb:7a:40:
7b:99:b1:c9:2a:d7:24:77:9f:aa:07:14:f8:39:41:4b:b1:8a:
cc:9b:88:68:4e:97:46:08:c8:36:13:ff:8f:60:fd:5b:bc:70:
f4:a9:33:04:73:f0:cc:2d:b1:d4:28:58:41:fb:e7:53:fd:7d:
ef:2b:70:9b:bf:41:8d:4c:55:48:1b:ee:13:b4:59:b8:d0:f8:
93:19:7d:c9:68:fe:9f:0a:56:e3:a2:09:db:3e:04:23:ed:36:
3b:de:83:41:2d:ba:b4:48:de:3d:4d:ab:7a:c8:68:5b:45:46:
1e:79:b8:fe:98:a5:92:99:05:b9:e2:03:ed:cf:bc:0f:58:77:
c1:c7:2b:07:4c:11:f2:41:3e:82:10:8e:52:f0:3b:03:a2:7d:
e1:ee:f1:a4:01:ad:0a:e1:24:a7:cc:2b:f7:fc:f7:f8:5e:a7:
c1:78:69:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org