Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TNET/KTGtDuU9OPRxzFoAu7Ibbs2r2GQ.roa
File: KTGtDuU9OPRxzFoAu7Ibbs2r2GQ.roa (raw, json)
Hash identifier: YTeELx7wg2QxlwDA1DD6D4gl+T5ujqRwmkitrLPWeH4=
Subject key identifier: 29:31:AD:0E:E5:3D:38:F4:71:CC:5A:00:BB:B2:1B:6E:CD:AB:D8:64
Certificate issuer: /CN=9FE26AE5E0DA56EC49EC9986B9C894D5B898A153
Certificate serial: 088C
Authority key identifier: 9F:E2:6A:E5:E0:DA:56:EC:49:EC:99:86:B9:C8:94:D5:B8:98:A1:53
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/n-Jq5eDaVuxJ7JmGuciU1biYoVM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TNET/KTGtDuU9OPRxzFoAu7Ibbs2r2GQ.roa
Signing time: Wed 18 Nov 2020 07:15:22 +0000
ROA not before: Wed 18 Nov 2020 07:15:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 43.227.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2188 (0x88c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FE26AE5E0DA56EC49EC9986B9C894D5B898A153
Validity
Not Before: Nov 18 07:15:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2931AD0EE53D38F471CC5A00BBB21B6ECDABD864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ec:81:97:05:ee:dc:b8:cb:a2:8c:34:4b:48:
c4:6a:69:fe:13:81:bc:97:be:e9:2b:dc:c2:64:20:
58:3a:d2:16:31:4a:11:22:8e:c3:9f:b4:ff:33:99:
0d:ea:31:ee:35:54:b8:56:22:70:9a:57:20:ac:fd:
9d:83:27:35:da:94:96:68:7e:6c:8f:f0:2d:fe:2c:
f7:91:8b:d7:46:82:df:a7:2f:9b:99:16:61:63:40:
58:88:b4:9b:14:c8:0c:6c:57:5c:98:34:cf:64:13:
88:28:df:1f:26:72:d4:29:62:ea:54:15:a0:ee:0b:
57:26:21:43:b7:48:ee:a6:98:16:06:cf:66:ac:2b:
ae:88:5d:00:1f:80:98:8e:55:26:12:6c:f8:cf:e5:
78:46:87:a1:de:2a:22:96:a1:c4:98:6c:33:39:21:
6a:cf:d2:18:c6:49:43:28:d4:31:42:27:76:6a:49:
10:09:99:aa:5f:f3:94:ab:f6:2e:71:d4:de:22:58:
39:1c:f6:d3:86:8e:27:9e:26:43:01:52:9d:25:8e:
ad:c3:fc:2f:a1:78:8c:1e:62:c5:3e:d7:52:7b:1c:
18:e6:27:17:d7:86:2e:e1:aa:c0:cc:e4:57:4a:82:
00:be:24:5c:21:d0:25:59:4c:88:66:d6:83:1c:79:
9c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:31:AD:0E:E5:3D:38:F4:71:CC:5A:00:BB:B2:1B:6E:CD:AB:D8:64
X509v3 Authority Key Identifier:
keyid:9F:E2:6A:E5:E0:DA:56:EC:49:EC:99:86:B9:C8:94:D5:B8:98:A1:53
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TNET/n-Jq5eDaVuxJ7JmGuciU1biYoVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/n-Jq5eDaVuxJ7JmGuciU1biYoVM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TNET/KTGtDuU9OPRxzFoAu7Ibbs2r2GQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.227.24.0/22
Signature Algorithm: sha256WithRSAEncryption
70:e1:b1:41:44:b9:d0:1a:b3:12:07:24:b6:da:1c:87:4e:57:
f7:a3:f0:a9:f8:f5:b7:5c:0f:86:0b:bd:e2:0e:82:a1:5c:e5:
f8:22:b5:8a:cf:58:58:ac:b9:a7:5b:a6:9a:43:73:94:9c:76:
73:43:d1:f3:98:8e:0e:86:18:b9:0f:f9:9e:f7:a1:32:8f:29:
db:e8:1a:a5:d1:f5:42:9d:d8:70:67:7c:c2:cd:1a:af:a1:9e:
b3:19:20:fa:df:d9:4d:4f:a1:b2:1b:6a:3c:dd:30:d7:44:cb:
71:41:5b:1a:28:bc:1e:1b:35:30:89:19:2e:ec:fb:4d:41:03:
57:51:17:03:b4:00:c3:57:61:4f:76:d5:b2:3a:2f:5d:03:db:
09:b6:af:ed:04:aa:02:a1:bd:12:c0:5c:8e:30:dd:12:e9:7f:
00:09:77:6e:70:4e:b6:7c:5a:d0:89:51:8e:5b:02:06:87:13:
f6:35:18:b3:73:3c:72:b0:4c:f6:04:1d:6e:74:a1:8a:c9:3a:
a2:87:d5:ce:02:6f:35:1d:cf:e7:e7:46:9a:c0:cb:7c:38:50:
51:fc:90:f9:15:85:94:3d:97:38:bf:9a:14:1c:12:25:86:a8:
7a:41:96:ee:4d:a6:33:b6:bc:18:7b:40:e5:5e:88:0c:1a:39:
ff:81:ea:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org