Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/whK2yoRyEjqkJ6Lhlp5-UwtyYhs.roa
File: whK2yoRyEjqkJ6Lhlp5-UwtyYhs.roa (raw, json)
Hash identifier: P7oQFchB0QS4E/xHzbFPlzpCKJZGokFUP4llOjwCnE8=
Subject key identifier: C2:12:B6:CA:84:72:12:3A:A4:27:A2:E1:96:9E:7E:53:0B:72:62:1B
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0C99
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/whK2yoRyEjqkJ6Lhlp5-UwtyYhs.roa
Signing time: Fri 01 Sep 2023 09:59:17 +0000
ROA not before: Fri 01 Sep 2023 09:59:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38845
IP address blocks: 140.136.164.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3225 (0xc99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C212B6CA8472123AA427A2E1969E7E530B72621B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:36:18:01:8f:ed:88:eb:75:00:46:a3:99:
87:43:62:fd:fe:27:76:01:cc:90:91:01:c0:21:82:
74:61:73:c1:e6:33:fc:1d:7a:4f:d7:83:73:b8:5f:
ef:3e:27:0e:c2:7f:33:b3:cf:aa:d6:50:6c:79:b2:
89:33:77:ea:ea:6f:55:a8:a8:ee:7f:68:97:fc:fe:
79:1c:fc:c9:24:c8:45:2a:df:b3:d2:49:93:2f:dd:
09:8e:07:02:c7:52:0c:b9:62:74:be:99:f2:55:fa:
4a:4b:87:4e:46:11:bf:f8:23:f4:d4:1d:63:5d:11:
f3:0a:d4:3e:4c:d6:33:a5:42:8c:b1:76:0c:8e:b8:
07:ca:32:c4:71:ec:2a:ef:a0:2c:bd:0f:45:b7:5c:
0b:cb:c1:e6:50:4d:98:6d:d6:7c:53:c3:91:c6:53:
05:7c:5e:90:18:d6:76:c3:14:7c:e3:70:1e:0b:63:
96:57:8b:f6:39:d1:3d:0b:e0:f1:2a:65:39:b0:42:
72:7a:30:8d:d7:0f:18:0d:66:b8:41:f1:32:b3:f8:
b5:a1:34:69:f0:f3:c7:db:ac:bf:16:77:70:c2:d4:
d4:c3:10:60:f4:86:bd:36:7c:d2:5e:01:b5:27:d4:
60:12:7b:f2:b4:12:89:85:32:3c:90:57:0e:e7:8a:
50:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:12:B6:CA:84:72:12:3A:A4:27:A2:E1:96:9E:7E:53:0B:72:62:1B
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/whK2yoRyEjqkJ6Lhlp5-UwtyYhs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.136.164.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:e2:56:ee:34:86:ed:ea:d0:04:2e:01:2d:e1:cb:ee:40:29:
7c:96:70:35:06:49:fb:b1:4f:2a:fb:6e:86:67:ca:aa:c7:dd:
7c:48:52:bb:8a:e0:b8:f8:94:69:90:c6:89:f5:74:5f:07:a0:
2a:b9:fa:93:5a:92:64:e3:33:a5:94:87:65:9b:57:ca:fe:ad:
1c:fe:ef:62:17:61:04:6a:12:99:13:df:2b:ee:69:ab:d8:90:
67:8b:0e:8f:ca:39:64:3b:22:4b:f1:5c:f5:7a:f4:1e:e9:7f:
52:e7:90:4c:b6:33:71:00:00:a2:42:86:16:d2:58:4e:23:4a:
f4:a3:0a:45:29:ae:0e:49:29:16:96:a8:21:30:f0:4b:ea:5b:
f0:97:e7:a5:c2:b3:e5:5c:43:3e:70:cc:d2:73:88:d3:9a:7e:
73:b2:ab:d0:f2:a7:ca:9c:66:76:7d:94:a4:a6:9c:12:d8:f4:
56:25:b6:fe:94:bd:55:f3:c9:10:e5:d6:e9:88:78:ce:62:7b:
3b:2c:0a:41:e4:78:96:bb:10:30:ff:da:c8:02:39:01:67:36:
aa:c9:93:b8:f1:ae:a0:aa:26:1e:37:60:b0:0c:fb:2d:31:96:
cd:32:a6:0e:ec:a2:49:e8:9c:47:12:42:bd:9d:79:81:05:fe:
c2:d3:71:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org