Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KtJpunK8SgWn6ya_8Q2XTHsLvYw.roa
File: KtJpunK8SgWn6ya_8Q2XTHsLvYw.roa (raw, json)
Hash identifier: bIsxSo4BTg97hwh6el+LIKL3NH/vW5vzaNRMBtiHTqc=
Subject key identifier: 2A:D2:69:BA:72:BC:4A:05:A7:EB:26:BF:F1:0D:97:4C:7B:0B:BD:8C
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B89
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KtJpunK8SgWn6ya_8Q2XTHsLvYw.roa
Signing time: Fri 01 Sep 2023 09:59:54 +0000
ROA not before: Fri 01 Sep 2023 09:59:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 116.241.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2953 (0xb89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2AD269BA72BC4A05A7EB26BFF10D974C7B0BBD8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a8:22:97:39:76:7f:f6:02:6a:5e:a0:91:21:
61:ba:e9:35:f8:99:1a:81:7d:b1:1c:bc:62:8e:aa:
00:b7:12:47:23:53:55:6d:aa:43:fe:16:e3:fe:92:
ca:18:96:59:f0:25:f0:32:71:e8:0a:14:e0:d6:36:
9c:93:4c:f3:7b:b6:2b:b1:96:f2:14:63:a1:e4:ce:
ca:f6:02:93:91:16:c9:62:af:d8:e6:b6:76:0a:ac:
22:38:ba:39:04:e0:3c:9f:bc:62:28:82:a8:85:63:
85:d4:7f:5f:57:64:55:56:4e:41:c9:02:89:b8:df:
ab:22:c6:66:7d:35:95:29:cc:16:c2:a8:7d:7a:6a:
b2:a4:9c:6e:38:bf:08:db:fb:2d:42:3e:0f:bf:5d:
9c:a0:36:11:eb:31:93:a4:dc:ff:76:d7:c2:d9:99:
e9:9a:a3:ad:eb:b8:d2:88:76:e8:31:52:eb:c5:6f:
e8:38:0a:39:ee:c9:70:e9:84:26:09:c1:2a:61:47:
94:de:15:e9:74:41:b9:4c:78:45:00:22:d9:06:ae:
84:32:4b:9a:61:7b:c3:02:50:12:c5:e8:56:d3:b1:
1d:0c:fa:43:45:84:bb:bf:4d:81:53:80:83:04:c0:
f2:7c:8e:33:3f:18:bd:92:e4:6f:36:bf:54:4b:c2:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D2:69:BA:72:BC:4A:05:A7:EB:26:BF:F1:0D:97:4C:7B:0B:BD:8C
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KtJpunK8SgWn6ya_8Q2XTHsLvYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.241.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a3:e3:61:a1:1b:a7:8a:fa:be:53:02:61:ab:84:61:66:81:45:
96:c4:88:29:e7:d2:87:81:f0:54:3c:ba:2d:51:4a:2a:c0:d1:
ce:68:bb:96:e5:f3:1b:0f:83:85:6b:fe:1d:a0:a4:17:9f:85:
0f:94:aa:26:4e:90:28:93:a5:b4:59:6d:ad:d6:86:e3:aa:ed:
39:62:fa:4e:3e:0a:ca:11:4d:30:96:37:79:d9:bd:58:d1:3d:
43:63:1f:03:b1:ca:3f:5d:51:eb:5e:9a:fb:a4:77:8b:a4:2f:
c6:66:9d:41:5f:cf:87:2e:49:dd:04:0c:3a:7e:0f:73:30:70:
df:6e:4d:4a:ab:98:a9:1c:4b:fe:66:de:a6:fd:1d:23:ce:81:
91:95:3a:7a:54:0a:e9:71:d2:75:14:9b:13:fd:12:15:15:50:
0f:b6:6b:ab:ca:ce:1e:f7:01:1a:96:7e:86:b8:76:64:8d:0e:
3c:c7:67:2d:c5:24:3c:4b:b0:ab:0a:1e:9d:f2:33:62:10:5f:
a5:a7:d7:8b:b8:4a:fa:ef:61:90:f0:87:83:45:a6:7d:71:5f:
d7:10:94:fb:a0:55:9e:18:9c:4b:7c:83:78:a9:d9:b7:07:c0:
54:4a:72:a0:6b:8e:e4:14:ae:cd:7b:17:6f:cc:1d:82:0e:9e:
f7:91:5b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org