Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/aKuW60nVLLTGtdu0GH6HS7ULnlQ.roa
File: aKuW60nVLLTGtdu0GH6HS7ULnlQ.roa (raw, json)
Hash identifier: XrRDqzuEcC1lcwOxgGA9GKfBZowv8559PV+19/djFE0=
Subject key identifier: 68:AB:96:EB:49:D5:2C:B4:C6:B5:DB:B4:18:7E:87:4B:B5:0B:9E:54
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0BA4
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/aKuW60nVLLTGtdu0GH6HS7ULnlQ.roa
Signing time: Fri 01 Sep 2023 10:01:08 +0000
ROA not before: Fri 01 Sep 2023 10:01:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18049
IP address blocks: 61.58.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2980 (0xba4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 1 10:01:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=68AB96EB49D52CB4C6B5DBB4187E874BB50B9E54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a6:f0:63:24:05:32:8a:28:08:90:3d:ac:f6:
a3:46:85:25:85:ef:d0:a9:6e:21:f0:46:6a:f8:80:
8c:bb:df:c5:1e:dd:88:35:f6:fe:13:0a:b1:37:b9:
a2:2c:1c:38:11:b5:f6:10:80:50:0c:47:31:82:36:
29:33:55:13:6a:3a:59:da:e7:2a:a4:60:d5:39:4e:
a2:b4:0b:ee:6c:c8:f6:11:56:cb:2e:c1:e4:6e:07:
00:f9:51:bb:5a:6d:2f:6b:fe:fe:fb:0d:b3:df:5b:
10:54:82:33:1e:88:6e:56:a2:9c:f3:9e:7b:ff:e3:
0c:33:43:f3:7d:8d:36:df:e0:9c:0b:94:ff:fc:65:
33:7b:cc:f8:b4:a7:91:dd:9a:3a:e3:44:17:e6:19:
be:15:e2:14:a3:c9:16:03:20:ac:4d:af:77:78:7f:
c6:4a:43:b8:87:bf:af:ca:a6:0c:07:c9:11:b6:db:
1d:7c:78:1b:b0:de:dd:f9:39:ff:5d:27:70:90:36:
4d:11:0a:1c:3c:b9:4a:19:3a:f6:b6:84:fe:e4:45:
d7:00:f3:6f:43:9f:e0:b1:9d:c5:3a:f7:1f:d8:59:
44:01:ca:59:84:eb:43:12:1b:12:b8:1f:1f:0b:01:
26:06:30:44:35:93:3c:0d:eb:71:a0:b4:3a:bd:31:
c7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AB:96:EB:49:D5:2C:B4:C6:B5:DB:B4:18:7E:87:4B:B5:0B:9E:54
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/aKuW60nVLLTGtdu0GH6HS7ULnlQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.128.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:3f:f1:8c:ed:d0:5e:be:f8:44:d9:0c:72:03:24:db:53:83:
6e:cb:56:c2:0a:26:e4:8f:38:2b:37:b8:82:07:96:0a:1c:1d:
53:e7:05:75:93:83:e9:ff:be:c3:85:ed:c8:9e:b7:52:ed:52:
8e:03:28:1d:3e:1e:86:49:55:32:03:1e:68:0f:27:9d:e9:0b:
70:b7:39:d8:4d:60:ef:4b:6c:d5:e1:8d:40:d2:90:67:0e:51:
7e:5f:a9:48:e4:f3:b5:1a:f3:65:3d:b4:e4:6d:53:35:cd:1d:
6d:f9:e9:53:98:18:f8:2f:1c:72:27:0e:7f:d6:ea:02:41:a3:
92:00:d9:ef:71:47:d1:83:b7:d2:cc:31:64:4c:5d:f5:96:35:
74:31:30:2e:ef:b5:2b:15:46:0e:0b:13:5a:a4:f3:63:c2:9f:
f6:02:4c:88:df:2f:0b:83:27:69:b1:56:45:d3:38:91:7f:3c:
92:1a:2c:7d:02:84:a5:39:e5:3c:bb:9f:b0:32:29:ab:66:57:
9b:e9:e9:ae:67:51:4c:47:9c:2f:ad:e2:53:ce:55:6c:c3:1b:
69:a4:f6:05:ab:1c:f3:d3:d9:ef:c5:3e:70:05:d3:de:08:d7:
a8:e3:a2:5a:6e:d3:84:8c:99:d3:32:20:a6:e5:49:dd:df:e2:
30:8e:7a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org