Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/i72W5xJesZewcKJ9DA9SJC-4vN8.roa
File: i72W5xJesZewcKJ9DA9SJC-4vN8.roa (raw, json)
Hash identifier: eYhR7kTfzpTOOwUn2WCnCv/xpDY5+CO1eguHx60+Xo4=
Subject key identifier: 8B:BD:96:E7:12:5E:B1:97:B0:70:A2:7D:0C:0F:52:24:2F:B8:BC:DF
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B87
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/i72W5xJesZewcKJ9DA9SJC-4vN8.roa
Signing time: Fri 01 Sep 2023 09:59:53 +0000
ROA not before: Fri 01 Sep 2023 09:59:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 210.202.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2951 (0xb87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8BBD96E7125EB197B070A27D0C0F52242FB8BCDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:53:8e:68:5b:ac:26:d8:91:dd:7f:f8:e2:e2:
7d:6b:7d:27:3d:d9:71:27:9f:5b:54:56:b0:fd:32:
05:42:a5:d9:4a:9c:0e:ae:79:99:9f:9a:80:70:23:
0b:54:a6:0a:46:83:7d:92:1f:5f:ad:41:9f:46:94:
1c:a9:ec:b1:b5:5a:e3:a2:1a:9f:d6:c1:7c:b7:a2:
c9:48:57:e5:58:6e:4c:09:f9:92:ec:46:44:27:16:
86:9b:79:ef:8f:76:82:d8:29:6f:48:c4:88:93:7a:
3d:97:af:10:28:fb:52:27:be:57:89:51:4c:0d:bc:
a1:ad:2c:f2:33:0a:98:dd:87:75:ce:fd:7c:50:34:
8b:ae:b8:c4:6b:62:12:69:cf:f7:aa:16:16:6e:16:
e8:34:5d:8a:70:57:ac:99:fc:ac:ef:67:b8:4c:52:
63:d1:7f:3b:b4:a2:ab:ce:b2:7b:50:71:f2:6e:0f:
c2:20:05:15:0d:2a:a9:a3:d4:d2:15:a0:80:f7:03:
62:29:ab:1b:31:33:92:00:75:91:66:74:d9:1a:1d:
1c:55:88:57:78:86:6a:22:43:b9:44:0c:ea:89:57:
d7:6b:e4:03:7b:98:e1:c5:0b:2e:d4:fa:cc:be:a9:
3c:4d:18:99:8c:eb:f5:16:ff:ff:8b:76:cf:da:c6:
6f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:BD:96:E7:12:5E:B1:97:B0:70:A2:7D:0C:0F:52:24:2F:B8:BC:DF
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/i72W5xJesZewcKJ9DA9SJC-4vN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.56.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:11:d6:b4:14:54:9e:1a:20:70:96:de:9d:b4:aa:f3:04:61:
89:7e:3e:bb:5f:01:09:ad:66:6e:8c:29:d2:75:70:16:e8:e7:
42:f6:0f:83:e3:1d:b7:6e:47:07:97:94:a5:a3:ae:7f:c3:7d:
f5:63:74:da:0d:36:60:12:cf:95:1f:11:d2:4a:58:94:c5:ee:
a5:a6:27:65:f9:98:72:50:56:1b:74:9e:a6:49:90:d7:61:84:
b1:4b:aa:fa:11:21:4b:66:84:83:cb:7e:b2:74:6b:10:c6:9a:
01:62:a2:44:6d:c8:b5:cf:2b:97:64:a7:16:f2:02:f6:3f:b2:
54:61:48:02:55:af:68:d2:70:fc:f6:9d:9c:df:8e:17:10:c8:
56:bf:ec:03:05:55:f4:ba:a4:dc:f2:0c:15:51:84:f1:0e:bb:
87:6d:13:fb:d4:74:90:97:b1:96:fb:94:da:71:97:e4:df:0f:
75:3c:0f:a2:fa:2f:89:fe:94:b3:22:75:2d:c4:07:a3:b6:1e:
1b:45:b3:b6:bc:15:f9:3b:96:38:6a:2f:81:55:2c:6d:29:a7:
e9:c6:37:39:0c:09:d4:60:39:08:d5:17:4c:ed:47:ab:54:49:
b3:96:e5:0d:90:20:b8:fb:b4:07:4b:5f:99:b4:7a:e9:e1:f6:
ba:7f:af:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org