Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa
File: mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa (raw, json)
Hash identifier: E+AGgTwhs8zO7t4iuMctZv0JJfanUHHxX6lbe0xu2Jg=
Subject key identifier: 9A:F5:78:7C:C0:23:6F:F1:62:30:89:35:AE:A1:4F:64:E7:C2:35:C3
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0B59
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa
Signing time: Fri 01 Sep 2023 10:00:09 +0000
ROA not before: Fri 01 Sep 2023 10:00:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131590
IP address blocks: 2400:c780:fffe:1d67::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2905 (0xb59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 1 10:00:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9AF5787CC0236FF162308935AEA14F64E7C235C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1f:e7:3c:3c:a1:03:c2:18:15:ad:44:e2:11:
20:84:28:b5:eb:1f:51:df:01:5b:eb:43:e1:59:30:
03:ca:b6:61:b9:04:26:40:b2:da:f2:f8:66:65:0c:
6b:f9:9f:92:10:2f:1c:5c:49:e2:2f:98:2e:e8:86:
d6:65:39:6b:16:02:72:3e:00:95:9a:4b:29:d9:d3:
50:5c:41:6e:38:3b:a1:60:59:96:07:66:25:68:48:
63:f7:88:74:aa:93:18:b9:09:29:5a:3d:b3:a3:79:
91:64:84:d1:db:94:c5:55:a3:23:c4:1a:ed:58:32:
0b:22:16:11:a7:74:29:42:da:fb:8a:ae:ce:a0:94:
5c:5d:69:63:bd:c4:da:1b:f9:c6:b7:68:97:7c:a0:
27:58:a9:9a:d0:62:d4:b9:91:b6:ad:28:84:9a:16:
d8:6a:e0:c1:3b:b0:50:6f:3c:bc:db:d1:17:af:1b:
fd:fc:9e:ec:91:e6:21:6d:79:52:81:c8:0e:c8:d1:
07:24:d0:9a:d7:05:29:49:42:07:11:f9:4a:5e:ee:
fe:55:d5:6d:12:10:46:82:7d:d5:bf:4c:ac:04:2b:
33:ad:f9:95:47:71:5d:b3:6d:38:c7:41:a4:39:0c:
08:c0:1c:4b:2e:fe:fa:95:b1:e2:a2:c9:96:64:5b:
3c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F5:78:7C:C0:23:6F:F1:62:30:89:35:AE:A1:4F:64:E7:C2:35:C3
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c780:fffe:1d67::/64
Signature Algorithm: sha256WithRSAEncryption
a4:d4:04:79:cd:04:37:51:f9:a8:09:1a:a6:bf:1f:07:17:46:
c3:35:77:ba:8f:53:62:a1:09:96:9d:b7:a1:6b:f7:d9:8c:70:
ec:db:50:08:af:bb:43:ba:19:e5:ee:2c:ba:ae:e0:27:08:85:
b6:3b:17:3f:ef:b6:f3:ff:5f:7c:0e:98:e7:81:cc:8b:59:f0:
6c:81:db:4a:96:e2:ff:85:d2:5a:7b:d7:c8:bd:ab:84:5e:78:
98:26:29:ba:d6:e6:60:c5:24:11:71:59:be:4e:63:93:d2:ff:
be:2c:97:fa:7e:b4:62:8e:e3:b2:89:42:7f:8b:c5:86:8a:a3:
a1:9b:ca:67:4d:a9:bb:ea:e4:b5:97:40:31:3d:8a:47:ff:3f:
47:8f:ae:e9:73:1d:d8:06:8d:a3:aa:b2:59:37:66:36:8c:2d:
c2:61:a6:d8:f9:b9:a9:82:c4:58:5f:33:a6:aa:02:18:50:d8:
18:a1:fb:75:cf:ae:ee:c8:9a:6e:87:77:35:97:59:54:8f:bd:
d4:7e:97:be:10:9a:a2:8c:bf:4c:f8:98:36:dd:2a:4e:de:3c:
79:a8:40:dd:9c:f7:f6:cf:9d:7e:90:15:7d:3a:57:bf:6c:1c:
69:e1:32:3c:b0:94:a2:97:58:b3:a1:5c:a3:a1:d7:83:ce:42:
47:1c:ab:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org