Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa
File: GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa (raw, json)
Hash identifier: n1D3nT1Cv0c+Y+Tv1PGJEwvDRjeW75CpbftaWj3bxUk=
Subject key identifier: 18:88:40:42:CD:93:8F:FB:07:1B:33:A0:63:EE:33:68:A3:2C:A5:BD
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0BA2
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa
Signing time: Fri 01 Sep 2023 10:01:07 +0000
ROA not before: Fri 01 Sep 2023 10:01:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 116.118.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2978 (0xba2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 1 10:01:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=18884042CD938FFB071B33A063EE3368A32CA5BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a7:24:b6:e8:9e:99:36:84:dd:f0:c0:b3:91:
d7:bd:84:42:ae:74:14:54:4d:98:2d:72:63:58:fe:
8c:03:39:77:b0:42:72:54:5a:57:27:d7:9e:b1:e0:
56:95:0f:32:8c:c9:23:0a:bc:f3:c5:26:b2:36:94:
c2:e7:0d:a7:50:d3:a6:ed:1f:58:93:46:3b:9f:1b:
75:0e:ce:53:d8:a4:2f:cf:8f:51:a9:01:7b:00:10:
d2:2f:7f:be:ea:a2:51:5d:57:7e:7d:e9:b6:8a:5c:
43:d4:af:26:b3:53:56:59:93:e8:f8:d9:8e:40:8f:
4a:77:ec:18:c1:d5:60:5c:4a:58:c5:72:6b:a1:10:
90:ea:cf:17:a8:71:77:64:f3:bd:69:ab:dd:bb:ff:
ec:d1:fc:f7:76:2a:9e:b5:12:3e:b8:17:00:c3:2c:
77:4a:c6:57:8c:22:55:47:e2:eb:4d:78:a9:e7:93:
c8:5e:22:5f:4a:09:0e:f5:10:3d:cc:49:24:8c:53:
49:71:17:75:b5:64:98:86:6f:3f:4f:de:bf:7e:6e:
82:91:7c:93:fd:ca:d7:cf:a1:b8:77:36:30:b9:38:
6a:e8:4a:84:41:be:ad:fb:74:2e:0e:d9:0e:e4:1c:
8f:c3:a6:bb:b8:5d:95:9e:08:13:f9:65:57:4d:b2:
85:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:88:40:42:CD:93:8F:FB:07:1B:33:A0:63:EE:33:68:A3:2C:A5:BD
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.118.128.0/18
Signature Algorithm: sha256WithRSAEncryption
7b:ec:54:71:ef:d4:b8:21:90:ec:f4:a9:03:48:ab:14:02:2c:
1d:54:02:b7:35:3c:d7:5b:0d:94:35:0a:2c:90:b8:3f:c9:50:
2d:74:9b:31:01:ee:3f:8b:48:75:22:b5:39:ad:68:f5:86:63:
46:c6:31:88:5b:54:df:53:c3:4e:a5:da:81:aa:ce:70:83:71:
80:e3:5f:7b:93:64:40:97:f6:7d:ea:fa:3e:2b:48:21:41:72:
ee:87:8f:6a:67:46:a7:42:fe:57:af:1c:02:7a:bb:cb:5a:24:
1d:9e:5f:0e:72:50:bd:40:81:79:2d:3d:c9:18:63:49:f5:bd:
04:ba:15:bf:47:b6:c6:ca:31:c3:0b:36:54:d6:13:3b:3d:e5:
15:40:11:bf:1a:f6:0b:80:31:d9:f2:9a:93:c0:0e:01:96:ff:
d2:d0:7d:d4:ae:db:94:89:40:a4:a7:f8:58:ef:6f:5e:fd:68:
38:e6:ee:d6:17:02:be:78:67:47:c2:f9:07:f2:cd:12:7d:5b:
61:f2:0e:27:d0:ef:36:50:01:97:e3:16:b5:08:d5:84:9b:f7:
20:09:54:07:1d:b4:1b:e0:9c:2d:26:3c:9b:a7:76:c0:12:a8:
85:d9:89:ff:f3:59:ac:d6:e3:16:13:4b:a1:02:f1:86:d8:05:
9d:df:5f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org