Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/z9uO_NBIUvi1hDI1MkVnQV2nn6I.roa
File: z9uO_NBIUvi1hDI1MkVnQV2nn6I.roa (raw, json)
Hash identifier: HxzL8/aspprzc4Df61wzZiRbHGQM3+e9zC7o+rMrjWc=
Subject key identifier: CF:DB:8E:FC:D0:48:52:F8:B5:84:32:35:32:45:67:41:5D:A7:9F:A2
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D0D
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/z9uO_NBIUvi1hDI1MkVnQV2nn6I.roa
Signing time: Fri 01 Sep 2023 09:59:30 +0000
ROA not before: Fri 01 Sep 2023 09:59:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 203.68.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3341 (0xd0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CFDB8EFCD04852F8B5843235324567415DA79FA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:90:d5:b8:15:b6:8c:73:10:36:90:06:e0:
18:ae:0d:88:2f:08:8f:ad:74:70:b0:92:ce:30:f4:
62:c8:59:9c:65:58:45:01:a9:12:c1:26:00:97:97:
ac:76:da:cf:75:d1:f5:90:fe:d6:2b:75:a4:f5:a5:
c0:90:45:f2:10:eb:40:ef:a3:ba:3d:13:98:32:b4:
ff:bc:a7:09:47:f6:e9:0d:24:e2:35:95:54:07:5d:
a3:e7:26:f5:3d:df:b3:6b:e5:04:ee:8a:69:46:82:
19:7f:a3:ac:33:cd:b7:33:78:ad:44:d8:3f:d1:9b:
0b:49:f9:4d:e2:19:4c:83:84:d4:68:23:ce:59:3c:
04:6b:0d:46:80:51:fd:f6:9b:a0:54:23:4f:c9:75:
ce:e4:0f:18:63:65:5a:5c:8c:ec:63:e4:a1:f2:c0:
12:34:7b:db:90:c5:e3:e2:4a:06:e9:ad:ba:e4:e8:
79:62:ee:04:78:fc:85:cb:ed:7c:71:18:13:26:34:
03:ca:33:42:ee:65:24:80:54:6a:a9:3d:2f:ec:58:
d6:bb:f0:12:a0:bc:f5:f1:fd:15:24:be:35:e2:e5:
e8:64:c1:5d:13:ba:f2:d2:3b:ca:df:9e:9a:33:f9:
ba:df:ac:cc:58:60:f7:7e:66:f1:d6:d1:d6:38:34:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DB:8E:FC:D0:48:52:F8:B5:84:32:35:32:45:67:41:5D:A7:9F:A2
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/z9uO_NBIUvi1hDI1MkVnQV2nn6I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
70:1e:7f:d3:18:a6:71:41:4e:d1:87:6f:4c:f1:64:39:21:f2:
08:57:52:c8:3d:f3:20:68:0d:b0:48:2b:b8:e2:58:85:63:2f:
4d:9a:14:56:42:d2:c6:9e:70:d4:80:75:39:17:f7:53:a2:c6:
08:1c:40:30:10:b8:b6:6a:9a:a1:97:c3:5f:1a:9b:a8:ef:e3:
c0:03:28:2d:d2:59:d8:e7:46:b8:a1:db:8d:71:6d:68:42:40:
2b:3a:e1:40:f2:61:89:02:b8:cb:50:0f:2d:64:a7:fc:92:63:
46:7e:d2:71:b1:88:42:ff:e3:f0:3d:04:c3:9f:62:96:49:1f:
97:2e:67:3e:dc:5d:c0:76:73:50:5c:6a:52:41:81:d7:51:35:
60:51:ec:f1:88:5e:0f:70:9f:b0:f6:ba:25:86:ed:9b:b7:41:
79:24:a6:de:c6:e9:f5:a9:8f:a7:12:bf:71:5e:86:84:8d:86:
66:eb:f6:1d:c3:22:fa:e2:54:dd:33:cd:c0:16:ee:1f:c8:a2:
e5:af:15:84:2a:7c:69:6f:fd:1c:6a:00:67:e3:9d:f5:b1:73:
c8:47:60:5d:34:06:71:de:02:11:69:9e:33:44:52:0f:30:c9:
89:cf:a6:38:e6:a9:90:a8:87:9d:39:d7:51:3f:c3:e2:a1:69:
a6:34:5b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org