Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/MKtJCaCRupG9ktMhzyaKMkhHThY.roa
File: MKtJCaCRupG9ktMhzyaKMkhHThY.roa (raw, json)
Hash identifier: Dd5tXEP31f6r1fEg/YguboLh64njNH8BvsudcpdXBW0=
Subject key identifier: 30:AB:49:09:A0:91:BA:91:BD:92:D3:21:CF:26:8A:32:48:47:4E:16
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C5B
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/MKtJCaCRupG9ktMhzyaKMkhHThY.roa
Signing time: Mon 17 Jun 2024 08:52:28 +0000
ROA not before: Mon 17 Jun 2024 08:52:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 2405:9200::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3163 (0xc5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:52:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=30AB4909A091BA91BD92D321CF268A3248474E16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:93:b4:52:82:c5:30:23:2e:f7:92:fe:ae:00:
c3:ab:76:be:95:ec:d5:1d:0a:02:ed:a1:1b:ec:bb:
ba:35:9a:1c:c9:ac:c8:63:6e:99:43:54:c8:54:23:
fc:a4:9b:94:75:64:14:ef:47:1a:a2:0d:a9:d5:ad:
71:94:44:5d:c5:03:c5:b7:26:f6:6a:68:c1:9a:a7:
7e:bd:2d:d6:68:50:ce:a0:b9:59:4b:d0:c4:6c:2e:
54:40:8d:94:f5:66:b7:fe:35:07:e6:ef:76:0a:9a:
af:9f:22:c6:d3:f1:ca:d3:1e:40:7e:74:2b:da:c4:
82:d7:e7:e0:aa:8f:71:29:72:55:ca:fb:b7:dd:f8:
49:13:2c:12:76:ff:34:02:01:a1:e9:b4:11:cf:c1:
d0:48:2c:00:b6:ee:bb:b1:d8:ce:a6:f4:2a:89:07:
a6:08:31:c8:5f:51:36:b7:bd:74:2c:81:76:aa:68:
58:cf:72:d9:b5:89:e3:7f:bd:92:df:71:41:7f:36:
51:ad:80:04:d9:57:aa:23:f8:4a:4e:45:93:ae:11:
de:39:87:15:e0:52:ad:e4:40:7c:fa:70:1b:99:4a:
ab:94:e5:21:3d:90:32:6f:b9:90:69:2c:81:32:81:
ba:d4:b4:35:72:b5:7a:18:b8:cc:35:be:86:cd:cf:
fa:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AB:49:09:A0:91:BA:91:BD:92:D3:21:CF:26:8A:32:48:47:4E:16
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/MKtJCaCRupG9ktMhzyaKMkhHThY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:9200::/32
Signature Algorithm: sha256WithRSAEncryption
1e:ba:a6:16:9f:df:74:2d:30:1e:d2:ce:bd:69:4a:09:71:37:
de:20:ba:42:2f:15:d2:43:30:eb:9c:fa:67:25:e6:db:a1:66:
10:1d:54:02:cd:bf:7c:7b:04:5c:11:4a:01:16:08:ae:63:16:
fd:b9:d8:81:48:f3:f8:a8:09:48:16:46:d4:49:f9:62:77:f8:
98:d7:bb:34:aa:c7:5e:75:e3:40:ac:06:74:75:48:62:c7:c9:
7d:dd:6d:5f:90:b9:04:0c:59:e0:db:e3:4e:e6:51:38:ad:7b:
d1:c2:99:dc:99:e7:e1:7b:7a:d4:86:e7:f0:b4:fc:61:0e:db:
41:d6:c1:41:ea:31:58:5b:da:4f:0d:33:b2:3e:b4:d3:97:b1:
80:e3:55:7d:9f:d9:e5:42:07:a4:1b:cf:96:32:b8:f5:9f:f7:
5e:29:d7:74:36:59:d9:13:3c:b9:5e:a0:64:1a:00:73:38:81:
86:cb:37:6d:b5:56:b1:3d:29:82:fd:be:e4:a8:43:7d:10:09:
ed:b2:4a:21:43:36:40:e8:10:2f:a3:68:0e:a3:bc:e6:95:dc:
1e:d3:5a:c2:b0:c0:41:d1:3a:bf:d6:bb:6a:35:08:58:57:d5:
c7:a6:0d:60:39:31:6e:49:4c:59:f9:c8:e3:2f:ba:12:c4:a7:
89:a8:e2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org