Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fhPx71A6VP8zfbGaTwZtIgE3b68.roa
File: fhPx71A6VP8zfbGaTwZtIgE3b68.roa (raw, json)
Hash identifier: wS00DDbtf7WG/pL6PWzIrvEOiV4nh1AlHTAfsro1AGo=
Subject key identifier: 7E:13:F1:EF:50:3A:54:FF:33:7D:B1:9A:4F:06:6D:22:01:37:6F:AF
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B8E
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fhPx71A6VP8zfbGaTwZtIgE3b68.roa
Signing time: Fri 01 Sep 2023 09:59:55 +0000
ROA not before: Fri 01 Sep 2023 09:59:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2958 (0xb8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7E13F1EF503A54FF337DB19A4F066D2201376FAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f6:60:59:07:2d:f8:d2:16:d0:82:bc:9a:ab:
12:71:05:e4:2e:25:55:ba:aa:83:04:14:33:65:81:
2d:4e:b4:12:9a:aa:21:7e:3a:66:63:e1:75:3f:76:
a0:47:f4:7a:2a:0d:4b:d4:e8:81:38:24:57:22:6b:
f8:17:8a:dd:12:25:70:3d:33:2a:e5:e5:11:9c:de:
a1:39:cc:98:36:01:9f:54:35:b0:fc:95:bf:00:3e:
35:cc:46:e8:f4:fb:1f:33:30:4f:46:e4:7e:d9:1e:
eb:b1:8d:da:b6:64:86:70:d3:3b:84:12:6e:18:e4:
01:39:bb:07:0e:33:b0:03:55:c6:90:c5:58:e9:d9:
7b:48:e0:51:d8:80:96:37:8f:8f:67:7d:6d:d1:21:
7a:8b:5f:66:74:1a:00:a7:59:a8:2c:8b:ed:05:50:
89:b9:31:f7:34:ea:07:74:88:9d:1f:5c:88:58:e9:
6a:12:a3:68:6a:5a:21:19:e8:d9:3e:f5:e4:2d:e2:
72:c0:e1:78:48:91:9f:6c:03:06:16:a8:23:fe:11:
70:3d:5a:de:0e:72:f1:4e:64:54:70:0a:34:6a:e4:
ba:15:e7:f2:7a:b0:36:ca:0d:45:3f:8a:89:46:51:
53:e9:2d:4e:64:bb:b6:d9:4e:cc:fb:b9:7a:e2:2e:
d0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:13:F1:EF:50:3A:54:FF:33:7D:B1:9A:4F:06:6D:22:01:37:6F:AF
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fhPx71A6VP8zfbGaTwZtIgE3b68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
24:a4:26:cf:7c:d5:a7:ad:f7:ef:cb:4d:2e:28:51:5f:7b:e0:
8c:5b:41:89:ef:98:63:5f:1f:22:00:db:94:63:f9:11:3b:40:
1a:ab:8e:65:a3:df:a9:04:2c:bc:33:d4:11:da:43:93:fd:6c:
8c:7d:2e:81:9a:3d:49:7f:46:0c:c6:b5:36:b9:fc:43:7e:36:
e3:95:81:b7:62:e9:86:0a:91:44:b0:2f:81:54:00:fa:5f:0e:
87:93:5e:90:79:ea:f9:0c:45:53:20:61:da:4e:8a:ad:f7:64:
9e:be:49:22:a1:26:93:27:03:0e:bb:e7:3b:4d:da:44:a6:d7:
85:86:44:1b:8e:3a:42:36:e2:0e:5e:1d:bd:cc:c3:a5:6d:bd:
d6:55:d2:66:29:5e:2e:06:95:7e:96:6b:8b:d0:ab:60:13:c0:
89:1f:14:e6:16:81:f2:36:9a:23:5b:c8:8a:a9:3b:91:c6:ea:
99:3c:2e:4a:d4:91:31:b0:e1:d3:c9:10:75:c8:37:f4:39:33:
bb:f5:84:7b:72:64:a6:44:eb:76:99:af:f5:58:06:d2:ed:97:
9d:8a:d8:c5:26:6d:2d:ca:0c:13:05:66:3b:2a:34:25:85:d9:
d5:6d:8d:74:45:7c:06:bd:46:a4:59:07:4f:75:ad:db:25:98:
c3:12:55:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org