Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6OU03p9z-VnKAD9NiNQLNUx_rvw.roa
File: 6OU03p9z-VnKAD9NiNQLNUx_rvw.roa (raw, json)
Hash identifier: 4b9BVYsZlPS8/AWOqnuTy3iPYoH6zZ5uvuEFIwwze24=
Subject key identifier: E8:E5:34:DE:9F:73:F9:59:CA:00:3F:4D:88:D4:0B:35:4C:7F:AE:FC
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B7F
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6OU03p9z-VnKAD9NiNQLNUx_rvw.roa
Signing time: Fri 01 Sep 2023 09:59:51 +0000
ROA not before: Fri 01 Sep 2023 09:59:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 61.58.64.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2943 (0xb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E8E534DE9F73F959CA003F4D88D40B354C7FAEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:08:91:0d:d8:96:0e:9f:38:29:bf:5a:71:3f:
07:f0:d6:c0:b2:de:e6:6f:38:ee:29:c8:f6:e4:47:
00:fe:f9:22:46:bf:7a:68:c7:16:17:c9:57:6d:8b:
e2:95:c9:d7:3e:b6:74:47:43:db:a5:2e:e7:c0:fc:
36:f4:d4:21:71:d7:b6:a9:e3:39:f4:18:aa:e7:70:
d4:c8:e2:2f:78:71:91:83:5e:51:38:18:91:29:9c:
b5:6d:d1:1f:5e:1a:9c:f3:3f:c8:12:ce:f3:54:88:
5c:88:34:39:e1:f6:22:64:e3:0b:e2:40:68:e2:6b:
54:4e:fb:e7:2b:cf:02:bf:ac:e4:83:ba:c8:40:d0:
ee:55:7e:5f:56:c9:bd:24:55:1c:f9:a2:64:be:7a:
48:b9:d5:8f:39:48:55:61:d6:97:9e:cf:2b:61:c1:
15:21:23:ab:e2:af:9b:67:77:60:77:b0:73:1e:fc:
e9:6e:54:c3:0d:4e:33:96:73:13:f4:af:28:a8:e9:
80:e4:d0:83:3c:db:18:73:b0:f5:2a:51:a6:38:06:
4c:72:71:70:e0:ae:a7:05:96:da:0d:82:00:54:96:
1a:c9:5f:8f:d9:0e:6f:a7:53:de:95:e2:c3:eb:2d:
0d:60:60:60:28:3b:04:98:dc:2a:a6:ab:aa:14:c3:
6e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E5:34:DE:9F:73:F9:59:CA:00:3F:4D:88:D4:0B:35:4C:7F:AE:FC
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6OU03p9z-VnKAD9NiNQLNUx_rvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/21
Signature Algorithm: sha256WithRSAEncryption
60:05:21:7c:ff:0b:fb:e7:e0:d3:a2:ad:04:0e:4a:f7:49:30:
76:3e:e8:37:82:20:3b:78:be:8a:ff:f5:8b:c6:56:d1:a8:e5:
34:e5:70:80:79:42:a1:7b:a7:af:75:9d:7a:4a:4c:7f:42:7e:
83:de:54:31:88:7c:42:99:92:21:ef:6e:6e:58:f0:a4:f2:09:
e4:e0:8e:46:75:97:a9:97:a4:ac:5a:32:1f:2e:43:48:36:47:
47:9e:23:31:1c:2c:19:81:44:df:f8:cb:ad:6f:bd:0d:ad:5f:
d9:17:e9:41:d8:a1:86:fb:88:13:24:fe:90:83:6a:fd:e6:4c:
84:df:f7:17:5d:4b:f5:b6:01:ed:fe:65:0b:19:ac:f7:83:3a:
61:83:d0:70:66:b9:b3:47:b0:58:59:1f:a4:fc:36:4d:35:36:
8f:54:8f:41:ba:92:be:57:68:5d:c3:4e:a5:41:d9:87:02:75:
a1:85:4e:a9:e4:36:09:c8:9b:67:e5:87:f7:36:a3:ea:2d:25:
fe:81:35:57:a6:77:cb:4b:de:a5:a9:61:12:df:13:a7:b2:42:
ad:90:aa:ff:44:31:1a:a1:8f:c9:ee:81:ff:16:d4:27:ce:2c:
1c:d1:20:ab:8b:8f:5c:f6:94:f5:57:28:fe:9d:7a:5a:20:d7:
60:b3:3c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org