Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/2Pzc_ttjPhXoSl0T162ZE58vZB8.roa
File: 2Pzc_ttjPhXoSl0T162ZE58vZB8.roa (raw, json)
Hash identifier: CwPpVuQJAFXtznq6CtJNqPUIH8grFm74zwX9YQQcQxo=
Subject key identifier: D8:FC:DC:FE:DB:63:3E:15:E8:4A:5D:13:D7:AD:99:13:9F:2F:64:1F
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0B9F
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/2Pzc_ttjPhXoSl0T162ZE58vZB8.roa
Signing time: Fri 01 Sep 2023 10:01:06 +0000
ROA not before: Fri 01 Sep 2023 10:01:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 61.58.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2975 (0xb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 1 10:01:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D8FCDCFEDB633E15E84A5D13D7AD99139F2F641F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:8e:5d:91:6f:d3:1d:6e:8e:2a:b6:e0:19:
77:a9:5b:46:ec:8e:b5:6a:0d:02:6d:b4:d7:74:d2:
9f:8e:08:f8:54:8e:15:aa:cf:98:95:40:32:3a:47:
1e:87:ea:3d:0e:2f:e1:83:48:bb:a7:18:ba:ae:b3:
a6:f4:5b:f4:9a:ad:b4:71:54:0b:8d:32:63:1c:12:
af:ae:07:f9:f4:a7:7f:97:72:1e:d9:7b:b0:2d:35:
11:0d:f6:e8:9d:21:ee:67:bd:46:5f:24:7d:d3:47:
9c:6b:d2:63:d8:1d:67:5d:35:30:20:b7:e2:96:7e:
6a:82:3a:c3:d6:2f:33:a7:bc:be:31:65:30:4e:3b:
46:b6:15:e8:a8:9c:77:ad:6f:25:51:2f:2b:ef:ba:
90:8d:d3:22:46:4d:b1:ac:db:ff:50:f2:0f:53:13:
ef:8d:8b:49:52:d8:9f:17:c6:4f:ad:8d:eb:e8:7d:
01:96:d5:66:67:f7:f5:f4:2c:e8:4b:92:8e:ab:57:
a0:17:fa:87:69:67:dc:55:69:80:07:00:d8:6d:98:
c2:c4:54:19:13:3f:3b:bf:a8:31:5e:33:08:f4:05:
dd:7d:43:01:f6:f1:03:52:cc:0d:15:ea:28:b1:a3:
04:72:90:43:7b:22:63:bf:a8:35:03:b6:ed:3d:22:
5c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FC:DC:FE:DB:63:3E:15:E8:4A:5D:13:D7:AD:99:13:9F:2F:64:1F
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/2Pzc_ttjPhXoSl0T162ZE58vZB8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.156.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:00:d8:c6:6b:b2:33:6c:3f:49:45:f9:8f:b7:a5:b2:6e:88:
86:ae:8c:13:22:03:78:a4:59:f5:76:f4:14:d0:ff:12:08:72:
46:fb:ba:d6:b6:98:8e:e4:8e:f0:6d:2d:4e:b9:63:d4:93:91:
91:ce:d5:76:d0:50:84:13:b7:d5:0d:1f:4d:31:e2:7d:fd:ac:
a2:e7:96:41:0c:1c:3b:8b:6c:54:d6:d6:54:9c:6c:10:27:de:
96:c6:59:9c:3d:b7:5d:99:29:0f:0c:b6:9c:70:80:4f:f7:a4:
b8:e2:2a:ac:30:3f:06:ee:fc:09:42:62:d4:55:b5:f1:cc:9a:
91:74:3e:e0:62:a5:b7:f4:64:d6:45:cd:27:bb:63:fd:b2:38:
31:98:03:22:2f:d6:e1:4e:00:04:51:6b:81:c6:e4:ad:e5:0d:
8e:ad:85:a1:c7:cc:d8:a2:38:67:9a:b1:23:eb:05:ea:41:17:
fa:76:2e:c0:0d:3b:f7:4b:4e:d9:77:cd:cf:7c:9c:ba:2b:06:
4b:f7:9e:58:38:33:21:52:54:ae:76:0c:df:94:6a:a5:7d:5a:
bc:1c:28:1d:07:fb:74:4f:10:58:eb:5c:ed:7a:14:37:a9:4f:
f8:3c:3b:82:cd:3a:5f:2f:d1:33:30:89:8a:a7:f5:a1:89:f0:
99:46:ba:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org