Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/eShWxZJVSKjqazr_VKef8mLWmCU.roa
File: eShWxZJVSKjqazr_VKef8mLWmCU.roa (raw, json)
Hash identifier: W6QH3sRHIPiOC+QP+8KExdyivbMRvAgdlMYZ5kLn8qc=
Subject key identifier: 79:28:56:C5:92:55:48:A8:EA:6B:3A:FF:54:A7:9F:F2:62:D6:98:25
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B82
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/eShWxZJVSKjqazr_VKef8mLWmCU.roa
Signing time: Fri 01 Sep 2023 09:59:52 +0000
ROA not before: Fri 01 Sep 2023 09:59:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 61.58.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2946 (0xb82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=792856C5925548A8EA6B3AFF54A79FF262D69825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f5:0b:32:5b:fb:9f:82:59:fb:d8:17:54:67:
0e:7b:f1:fe:04:77:9b:a7:fd:0f:b7:d0:70:97:89:
e1:f2:f6:a4:af:26:9f:97:9f:2e:4e:5c:3e:a6:41:
9e:fc:bf:33:e0:d4:d6:17:a6:ca:0a:a6:84:12:67:
21:2a:bc:aa:28:09:c0:12:a9:46:75:9c:be:76:ee:
86:c3:ba:9b:25:f9:3d:20:2e:92:ec:ed:6e:3e:47:
13:ba:ef:5e:3c:40:6f:0c:00:f2:fa:62:c1:9a:04:
ab:91:e2:24:b2:1b:7f:e9:be:2b:80:62:27:10:86:
0a:1a:8f:bc:96:1a:ce:3b:90:50:92:29:da:4f:ae:
85:b3:65:53:cc:7e:80:af:10:51:88:27:f0:5d:af:
00:4c:19:ff:c5:15:50:3a:6f:5b:1b:eb:e6:5b:1c:
4f:51:55:40:15:82:60:c2:2d:60:68:81:d0:b7:61:
6b:57:99:e6:0d:93:3d:1c:08:58:8a:fa:4b:b4:78:
28:2b:ec:c7:62:b3:47:8f:61:c2:67:c0:e4:fb:26:
92:32:10:4e:32:6a:7f:93:3a:95:42:64:1f:dd:96:
41:8e:df:35:f5:7a:89:a5:75:28:f2:e9:b1:5b:9a:
45:89:95:5d:26:b8:3b:5e:8f:44:e5:9d:17:4a:34:
ff:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:28:56:C5:92:55:48:A8:EA:6B:3A:FF:54:A7:9F:F2:62:D6:98:25
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/eShWxZJVSKjqazr_VKef8mLWmCU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/20
Signature Algorithm: sha256WithRSAEncryption
57:00:df:41:7c:6e:38:eb:55:95:33:9a:8e:88:b5:97:7d:6d:
41:d8:4f:ad:6a:de:35:bd:f0:a9:12:e4:52:a2:cb:e0:95:f0:
0a:b5:1d:d2:af:a9:e2:98:bd:ca:68:55:78:a5:d0:12:6c:9a:
10:2f:68:4a:16:2c:7d:1b:8a:b2:ff:a6:27:d0:4f:89:13:9b:
ac:61:32:b1:df:15:00:77:91:f7:62:d2:ec:1a:9a:74:85:30:
74:f4:0a:11:35:6a:ea:5e:d2:93:17:10:7f:1a:12:b3:e2:0d:
87:b0:fc:f2:aa:cd:ae:af:ec:5e:7a:d5:9a:4c:1d:db:aa:2b:
eb:7e:4f:c8:02:cd:62:a8:46:6c:02:b1:3b:46:04:41:ca:59:
df:f4:8e:ce:b0:34:16:3f:6e:e7:55:5a:d6:7c:da:9e:b2:35:
6c:aa:7e:13:d1:cd:9a:f9:69:ed:d7:d9:82:33:0d:7c:2c:fd:
27:0c:0b:ff:ca:0c:2d:05:01:87:30:1b:c1:00:47:b3:b7:f1:
d6:ee:3b:8c:b3:a4:f7:1d:20:62:6f:59:04:58:63:ff:00:d4:
05:f2:a2:2b:eb:16:8c:61:25:7f:38:ab:0f:ba:93:1e:e6:6c:
b9:9f:9f:9c:e4:90:d4:96:a5:57:ca:24:84:00:ca:e8:5c:ba:
94:46:d1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org