Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/QCHblueLgvUGIxUuyl8zpdO6RWE.roa
File: QCHblueLgvUGIxUuyl8zpdO6RWE.roa (raw, json)
Hash identifier: 0E1vJ4jCeGBbTfbHB1YdbopatJEF/MM+K7nr/8Bj9H8=
Subject key identifier: 40:21:DB:96:E7:8B:82:F5:06:23:15:2E:CA:5F:33:A5:D3:BA:45:61
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C69
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/QCHblueLgvUGIxUuyl8zpdO6RWE.roa
Signing time: Mon 17 Jun 2024 08:56:09 +0000
ROA not before: Mon 17 Jun 2024 08:56:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 61.58.64.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3177 (0xc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:56:09 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4021DB96E78B82F50623152ECA5F33A5D3BA4561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:da:3a:e2:3d:9d:fe:c4:12:7b:08:8d:83:17:
24:26:51:8e:ff:c5:9c:c9:ef:93:cb:19:58:13:84:
30:09:a6:8d:6e:6d:76:d0:73:c3:7a:d2:e4:3c:0a:
6e:87:3c:64:2b:61:7a:05:98:60:24:65:18:cb:01:
42:62:f0:14:f5:99:13:ce:35:68:f1:56:4d:49:c8:
4d:77:7c:7c:27:de:e6:1f:e7:a9:dd:c1:43:f8:92:
f6:e7:71:2c:57:d7:ee:bd:a7:df:06:44:d7:06:6c:
af:54:03:61:0d:e8:95:b3:96:a8:0e:d5:b9:0b:5b:
c8:5e:ae:56:a4:e2:ed:9c:ba:59:97:63:38:c4:ff:
ed:16:4b:d9:62:04:ad:99:64:b0:eb:e6:ac:1e:a9:
95:47:c7:bc:ac:39:53:c2:32:42:88:0b:b9:69:15:
0c:dd:c1:f5:d8:e4:b2:97:5e:fc:17:3d:25:fe:6e:
09:7a:29:34:49:30:ad:7e:ad:78:d7:4e:d2:9b:8e:
2e:b2:73:49:54:60:00:e9:84:86:52:c9:f4:a5:53:
30:05:be:bc:7e:f2:2d:76:db:8b:38:01:03:01:8e:
9b:1b:62:aa:7c:c4:81:ee:fa:c8:69:e4:fb:cd:2f:
bc:63:93:b9:12:7c:59:95:f6:6d:98:10:4e:59:3c:
3f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:21:DB:96:E7:8B:82:F5:06:23:15:2E:CA:5F:33:A5:D3:BA:45:61
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/QCHblueLgvUGIxUuyl8zpdO6RWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/21
Signature Algorithm: sha256WithRSAEncryption
16:7a:17:cd:67:ce:92:8f:b1:25:4a:5f:dd:fc:f7:f0:21:cc:
9f:e7:c3:24:b9:ee:cf:cb:f0:5f:3e:b8:1d:e4:ad:91:03:ed:
c4:f8:39:9e:ac:18:1c:2f:70:a4:87:20:61:91:25:6d:c9:12:
fe:5c:cb:4d:98:f4:a6:18:92:9c:d6:84:8a:9c:99:bb:4e:48:
57:d5:5f:10:60:96:cb:a4:69:cc:5e:0e:5f:6c:5a:77:c7:0a:
c2:02:5a:b1:14:76:3b:75:4e:de:8c:19:97:f6:20:7b:1e:4c:
f1:b2:57:3d:a8:8c:39:70:2b:7f:a3:55:4b:02:88:a7:e0:d9:
b4:35:ed:95:d2:17:43:a9:5f:b3:cf:f7:52:30:22:95:c2:f3:
19:ac:f5:a3:e8:58:fd:dd:0f:f2:a5:2c:43:fa:2d:0c:b0:73:
93:15:96:86:61:2b:0e:39:64:06:e5:69:17:a2:65:a0:47:ac:
75:f4:f6:4e:cb:17:ff:00:14:3d:36:ba:7a:a9:ea:6f:8b:7c:
e5:7c:9d:51:c6:61:87:34:10:64:c3:02:57:da:be:c1:2d:f9:
8c:72:d4:7d:58:04:e1:90:f4:47:3c:52:07:93:c8:03:13:85:
17:9d:b2:ea:9f:fb:ef:a9:b4:5c:6b:cb:c1:ae:ff:6a:c9:55:
20:0f:70:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org