Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/wgvpD8YgIeddmMRsH-jd9ym7N28.roa
File: wgvpD8YgIeddmMRsH-jd9ym7N28.roa (raw, json)
Hash identifier: eIJ+Kx8t6PklFvSBnVrqrfnUlj+NRRqQxxYFKy6F4DE=
Subject key identifier: C2:0B:E9:0F:C6:20:21:E7:5D:98:C4:6C:1F:E8:DD:F7:29:BB:37:6F
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0CAF
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/wgvpD8YgIeddmMRsH-jd9ym7N28.roa
Signing time: Fri 01 Sep 2023 09:59:32 +0000
ROA not before: Fri 01 Sep 2023 09:59:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9916
IP address blocks: 140.129.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3247 (0xcaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C20BE90FC62021E75D98C46C1FE8DDF729BB376F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:db:6b:c9:de:8a:02:8d:07:37:21:5a:bf:c8:
be:fb:78:66:45:19:50:ce:ad:8b:28:7d:c3:75:6e:
e2:8e:bb:37:05:55:b5:13:e7:6f:ba:82:e8:e1:54:
47:94:2b:d8:52:18:cc:d4:d4:71:fd:ab:2a:51:e0:
66:a2:44:6b:dd:62:51:97:4d:f4:91:de:ae:71:c5:
1a:25:04:b1:df:29:ff:47:51:2b:66:15:9e:da:35:
96:3d:62:5b:7b:b4:8f:84:28:c3:60:78:48:18:9d:
f7:69:85:be:eb:36:33:cd:85:07:0c:f0:ab:55:e8:
e4:e3:55:6f:e2:6c:49:46:b8:b4:f6:25:28:50:ed:
16:6b:31:04:ef:17:88:16:ef:39:ba:ba:83:56:bf:
51:9b:b8:e5:e9:4d:20:bc:ff:f1:c8:8f:55:e5:18:
52:64:cb:b2:f7:d7:48:97:b8:e4:dc:0d:54:d2:f0:
59:79:9b:f9:be:44:e9:04:ea:50:40:6d:b6:22:68:
1c:73:08:df:7c:b0:46:8b:bc:d5:ad:aa:01:c9:04:
08:8d:38:5f:50:eb:76:8d:ce:88:06:9b:73:68:0c:
98:8a:9a:d4:53:ea:83:1a:60:8e:c5:9f:68:01:5a:
3c:a8:6c:fa:b4:e4:c7:e5:c3:95:a5:6d:16:5d:18:
91:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0B:E9:0F:C6:20:21:E7:5D:98:C4:6C:1F:E8:DD:F7:29:BB:37:6F
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/wgvpD8YgIeddmMRsH-jd9ym7N28.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.51.0/24
Signature Algorithm: sha256WithRSAEncryption
42:62:ef:b7:63:7a:c5:a1:d7:ad:62:41:07:c2:ee:b4:44:59:
01:3b:0c:57:2b:4c:21:6f:c8:ea:e3:51:4f:c5:68:de:42:2f:
23:c3:7a:c9:ad:a3:61:b8:59:f2:d1:87:d5:6b:9b:cd:f4:c1:
57:68:8f:af:26:60:a3:e4:4e:a2:f1:d4:83:ad:f0:92:82:a5:
de:e1:63:7d:a0:f0:e5:72:1a:7e:a8:a5:8f:7d:02:94:42:96:
1b:da:c0:89:70:d5:bf:02:b7:8f:0e:9e:9e:2b:82:84:75:61:
f2:d3:ae:ac:f4:45:e1:b3:38:ea:7d:d0:c4:4b:20:46:82:1e:
6b:8e:b6:02:6d:64:3a:ad:80:be:21:45:12:99:c5:d2:07:3c:
7b:a5:50:4d:cf:95:70:ba:0f:f0:e4:16:34:5f:ac:cb:27:da:
20:5c:4b:90:c4:3f:db:5d:ef:7f:30:48:a7:56:11:b5:36:b6:
be:63:d3:79:a6:c8:57:fa:85:29:07:18:78:69:c8:03:6d:e6:
7f:8e:fb:4f:85:79:1a:f0:d8:3c:29:4c:7e:1d:58:2d:13:86:
76:e6:11:87:7b:d7:4c:75:28:88:2c:80:30:d2:1f:c5:d3:23:
9e:b0:36:78:c6:c3:4e:96:53:5e:c4:c5:74:a1:62:bf:0c:15:
41:b8:c2:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org