Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/Cz1KF5gqNvrhNX2b1n_h_5o-8lg.roa
File: Cz1KF5gqNvrhNX2b1n_h_5o-8lg.roa (raw, json)
Hash identifier: Q9YbC6GpiphqjWda6i7nRBcbszzO8ueoltj8wDv7UVo=
Subject key identifier: 0B:3D:4A:17:98:2A:36:FA:E1:35:7D:9B:D6:7F:E1:FF:9A:3E:F2:58
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C5D
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/Cz1KF5gqNvrhNX2b1n_h_5o-8lg.roa
Signing time: Mon 17 Jun 2024 08:52:45 +0000
ROA not before: Mon 17 Jun 2024 08:52:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3165 (0xc5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:52:45 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0B3D4A17982A36FAE1357D9BD67FE1FF9A3EF258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3d:82:43:6c:9b:4d:6c:95:8f:3a:35:92:d8:
95:e5:07:9a:f7:ad:00:21:e2:6c:1b:e4:de:8f:91:
a2:5c:08:03:d3:3d:64:77:f9:42:5f:8e:2c:27:ef:
80:d3:37:48:57:34:ec:8e:07:90:a6:ab:6f:a9:d5:
14:7e:f5:e3:0e:56:b9:32:38:a5:99:5a:b8:c1:74:
92:e0:dd:e4:b7:22:65:42:63:be:15:b3:b7:48:70:
6a:5d:fc:9a:fb:14:b6:3e:60:5b:9c:aa:a5:be:97:
4d:0f:61:e5:44:96:2d:a6:09:9c:c9:c6:6b:e5:35:
df:39:3f:01:48:fe:4c:26:6a:72:f8:d6:a5:41:c4:
a6:66:c4:8f:4d:5a:4d:79:e9:91:bc:f4:22:24:28:
49:58:b6:3a:f4:74:9e:33:15:04:3b:b8:83:6e:70:
b1:78:66:b8:6f:a7:e8:ae:c8:fc:6e:53:84:85:f8:
63:08:40:a1:8f:c0:d9:90:ee:1f:a1:b9:a2:b6:af:
ae:e2:d8:5e:dd:66:d1:6c:2a:33:91:01:46:fc:df:
10:36:ca:76:7d:d9:64:10:34:87:41:d7:73:a6:17:
94:5a:b8:b7:70:48:e2:e7:0b:b0:69:03:c3:58:54:
e2:5f:1b:ea:33:1e:f3:7e:0f:53:39:f6:fb:3f:94:
de:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3D:4A:17:98:2A:36:FA:E1:35:7D:9B:D6:7F:E1:FF:9A:3E:F2:58
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/Cz1KF5gqNvrhNX2b1n_h_5o-8lg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
86:f8:18:29:46:bb:77:ea:c2:82:92:e8:b1:32:cb:bf:6f:63:
96:e3:47:77:70:ac:32:7f:94:62:6f:ad:70:11:03:3d:92:e6:
93:d3:f5:93:ab:1b:00:6a:3e:d9:3f:0a:82:e1:06:4b:7f:b3:
2d:67:72:08:e6:50:71:cd:b5:56:ac:37:dd:b5:a7:a1:6f:1d:
0a:70:97:54:21:ce:01:5f:1c:89:a1:3b:0f:ca:7a:6e:08:3a:
2a:6c:17:07:4b:56:03:dd:69:12:5e:e6:15:74:7e:49:f6:0c:
fe:4f:c4:ee:51:b2:b1:84:fa:3f:04:41:fc:e4:5e:5e:d7:21:
da:2a:65:18:fb:52:a5:57:d0:7a:23:8a:84:bb:e7:ab:91:2c:
77:b9:36:84:af:dd:43:ab:ab:9b:05:ea:3f:ce:82:f0:7f:ba:
d3:5c:10:5b:fc:f3:aa:e1:d0:f1:45:c3:6f:00:8f:b2:83:d5:
1e:7a:0d:99:0f:1c:c5:76:be:d5:5b:61:53:bb:8e:26:66:50:
3e:ad:92:fe:65:c8:9c:02:26:72:0b:d5:fd:1c:ee:9c:75:49:
4b:90:fa:4a:78:b2:1c:f0:81:cf:0d:77:83:a1:54:ad:ca:d3:
a6:73:6d:29:87:97:29:cd:74:33:d7:15:3b:d4:90:86:2b:8c:
d5:67:89:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org