Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ejpTZriqP8uR11PksKpx7oZqIXk.roa
File: ejpTZriqP8uR11PksKpx7oZqIXk.roa (raw, json)
Hash identifier: KTLEP860yvykeLm7hRgVxppjmR2UlJSXrgOzgDcbtFM=
Subject key identifier: 7A:3A:53:66:B8:AA:3F:CB:91:D7:53:E4:B0:AA:71:EE:86:6A:21:79
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C5F
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ejpTZriqP8uR11PksKpx7oZqIXk.roa
Signing time: Mon 17 Jun 2024 08:53:05 +0000
ROA not before: Mon 17 Jun 2024 08:53:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 59.102.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3167 (0xc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:53:05 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7A3A5366B8AA3FCB91D753E4B0AA71EE866A2179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:42:9b:c3:0a:1c:5a:9e:92:84:02:6c:00:2c:
e1:24:35:20:47:78:c7:da:bf:0c:b8:c2:70:cf:80:
8f:86:68:b5:1a:05:80:ce:9a:7b:da:20:3b:ee:f0:
a8:c7:76:25:1a:cb:1b:7c:3d:6d:de:b4:cf:8f:04:
42:05:11:e4:65:b5:7e:30:c8:5e:9f:a7:c0:15:97:
80:40:02:9a:ff:ff:08:46:01:a5:9f:d0:ff:8f:25:
f9:d7:8a:73:be:a4:3e:b7:79:1b:31:12:db:4e:cc:
ff:f5:a8:82:79:49:b4:9e:b2:2e:31:82:d0:51:d2:
a1:c2:78:08:4c:1c:f8:7f:83:b9:29:25:89:60:56:
ee:1d:1e:33:79:ae:22:c4:d1:75:54:e7:bc:4a:60:
b6:bb:d7:fc:cb:f1:d8:26:b0:60:df:6b:cd:88:8b:
5f:5a:95:e8:52:32:aa:db:d1:b6:00:3c:f1:9f:7f:
7b:cd:f4:2a:ee:18:b8:19:1d:6e:db:8d:f3:af:83:
27:ff:02:5f:45:78:fd:d7:60:85:27:da:9e:3b:a0:
d0:3b:01:c7:e4:c9:58:b9:e8:00:08:94:39:28:c6:
61:05:e7:70:96:b0:78:aa:56:24:6a:d1:da:64:c9:
83:24:59:c1:5f:ef:f6:f5:87:5b:ea:b8:a2:df:6c:
96:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3A:53:66:B8:AA:3F:CB:91:D7:53:E4:B0:AA:71:EE:86:6A:21:79
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ejpTZriqP8uR11PksKpx7oZqIXk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/21
Signature Algorithm: sha256WithRSAEncryption
33:b5:a0:db:ca:bf:c7:5c:6a:3f:70:29:1c:74:6b:97:2a:fe:
1d:77:d2:97:0d:0b:2d:e7:57:19:a2:01:b2:54:a6:36:ad:f7:
04:56:1b:d7:bd:4b:43:4d:71:3c:58:29:f8:60:12:26:ba:fb:
a3:9d:6e:ea:1f:8f:65:78:98:a2:be:29:2b:37:90:15:a7:7f:
ed:3f:24:d7:ca:9c:25:68:cc:d1:c6:3b:ba:74:b4:6e:bf:d6:
1c:f3:7c:f5:fb:85:0b:f4:a4:d2:18:68:71:ef:3f:3f:cf:14:
a6:87:c9:7a:ee:48:dd:eb:71:62:93:e8:a2:9b:1e:d0:2b:5c:
3b:7d:fb:49:8b:95:77:ef:0c:45:e1:48:8c:74:0d:69:73:f8:
f7:f6:79:97:87:1c:77:79:55:4a:f5:b5:71:21:a2:2a:6b:33:
6c:af:11:5a:46:48:3b:fd:e5:98:63:78:68:63:e7:a7:cd:17:
f1:ec:20:e7:78:af:07:5a:61:f2:16:13:65:61:fc:58:79:8f:
9d:f3:c7:a0:c0:46:47:fa:b0:c6:f6:f7:f5:1f:e3:6a:17:08:
bc:71:6d:25:e9:68:11:2e:bf:a0:1c:ba:5d:78:e9:8d:74:a9:
d9:8d:05:db:61:0d:96:c7:2b:25:23:cd:7a:7f:7b:38:14:6f:
12:08:08:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org