Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/XpSJ0gW04ql1EU-vL4Apqo0PxUM.roa
File: XpSJ0gW04ql1EU-vL4Apqo0PxUM.roa (raw, json)
Hash identifier: ybc1qOv1PxUSyFu6e6BeYjhJij0Uvbdq+flPKgik8CI=
Subject key identifier: 5E:94:89:D2:05:B4:E2:A9:75:11:4F:AF:2F:80:29:AA:8D:0F:C5:43
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0BA9
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/XpSJ0gW04ql1EU-vL4Apqo0PxUM.roa
Signing time: Fri 01 Sep 2023 10:01:09 +0000
ROA not before: Fri 01 Sep 2023 10:01:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 58.99.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 1 10:01:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5E9489D205B4E2A975114FAF2F8029AA8D0FC543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:94:c4:23:de:90:58:49:0c:de:a4:97:b9:8f:
20:e2:d8:d5:fb:a1:59:1a:a2:18:76:21:57:06:0a:
21:3b:b8:eb:37:d5:94:ac:b8:eb:ae:57:70:ce:df:
71:bd:78:25:01:60:26:7d:ea:1f:a2:53:37:6a:89:
53:7a:2e:23:21:a1:ca:a5:ef:0f:46:29:0e:23:c2:
3a:16:60:f1:50:ee:4e:69:26:2c:b2:00:14:51:6a:
3c:8e:19:36:ed:15:b5:84:2e:e0:db:19:ed:50:83:
e0:85:a0:bb:1a:4d:b8:97:c5:d6:ac:86:28:bd:88:
2b:c8:1d:46:2c:f9:76:47:0a:f3:af:5c:a8:c5:fd:
b2:50:60:03:f2:ff:38:93:25:cf:16:b4:e9:ff:d2:
9f:4e:75:e5:32:39:74:09:7e:80:50:46:5f:e5:d8:
53:fc:b5:84:2d:bf:02:22:9d:da:ec:ba:b0:e5:56:
b5:dd:80:78:fd:53:37:b4:08:06:e6:4f:03:b9:c9:
4e:b1:b7:50:dc:39:c5:2d:3a:d5:c5:10:62:20:f8:
df:10:4c:bb:9d:ab:3c:2d:76:02:f6:1f:4c:0b:f0:
9f:ba:48:32:21:80:f2:7a:dc:f0:90:50:23:64:a4:
32:c3:24:55:a5:80:70:1c:63:0d:da:b3:b4:40:0f:
b3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:94:89:D2:05:B4:E2:A9:75:11:4F:AF:2F:80:29:AA:8D:0F:C5:43
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/XpSJ0gW04ql1EU-vL4Apqo0PxUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.64.0/18
Signature Algorithm: sha256WithRSAEncryption
24:f9:03:49:55:ff:98:7c:0f:bf:e6:9b:4d:ff:df:6a:1d:09:
27:4e:3c:a5:23:ff:0c:eb:b7:35:47:0f:4d:47:f7:99:14:0d:
37:d4:b9:4c:4b:3d:07:12:9d:70:e0:c3:c0:22:4a:17:ea:ac:
e8:db:bf:38:28:ce:fe:84:e5:16:c6:70:82:4a:e7:e5:e0:04:
21:8b:a3:5e:66:6a:93:63:74:99:f6:f7:39:8e:cc:bd:7d:b7:
87:14:66:de:51:78:43:54:9e:44:dc:9f:81:9b:8d:d6:92:a4:
b3:11:aa:a2:89:63:cd:93:25:da:5c:74:bb:52:ca:e3:db:51:
be:7f:d0:a9:40:1c:a2:a3:a3:58:b1:51:f4:bf:6a:53:13:f2:
03:8e:68:94:73:26:5a:b3:f6:b7:8a:a8:bd:40:be:fd:9e:5f:
bf:be:ef:80:60:80:ac:e5:4d:49:f1:06:de:a8:7a:65:f8:58:
09:62:db:56:d2:9d:1a:26:90:6d:28:b3:36:86:4f:ad:4e:22:
62:0a:9c:db:25:54:88:47:99:88:35:a6:94:3b:76:0d:80:01:
65:5d:e7:9c:d7:ac:ea:05:a0:02:ac:7e:f2:ef:cd:e3:8e:99:
1d:b3:2c:03:08:ef:74:55:5f:3b:b0:e8:1b:0b:61:40:b6:e8:
51:c2:64:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org