Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TTC/pBvfhiI1D7TYSnaMxWEpdn45UGk.roa
File: pBvfhiI1D7TYSnaMxWEpdn45UGk.roa (raw, json)
Hash identifier: pNLgf8SzMlbh2vygIB1+v2aGXsNSeP88PhUiQ5E8Dxc=
Subject key identifier: A4:1B:DF:86:22:35:0F:B4:D8:4A:76:8C:C5:61:29:76:7E:39:50:69
Certificate issuer: /CN=623B7714A03827FDE7D232BD8F4E01A29FB471DE
Certificate serial: 0AE0
Authority key identifier: 62:3B:77:14:A0:38:27:FD:E7:D2:32:BD:8F:4E:01:A2:9F:B4:71:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yjt3FKA4J_3n0jK9j04Bop-0cd4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TTC/pBvfhiI1D7TYSnaMxWEpdn45UGk.roa
Signing time: Fri 01 Sep 2023 10:03:52 +0000
ROA not before: Fri 01 Sep 2023 10:03:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63900
IP address blocks: 115.42.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2784 (0xae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=623B7714A03827FDE7D232BD8F4E01A29FB471DE
Validity
Not Before: Sep 1 10:03:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A41BDF8622350FB4D84A768CC56129767E395069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:06:da:36:d4:26:66:8c:0e:2a:5a:a3:ab:3e:
eb:d7:7a:df:d9:03:41:4a:20:45:c9:0a:59:c3:91:
4e:35:7f:94:89:81:86:6b:e6:0d:a8:c4:aa:8b:e6:
b6:b4:29:62:a2:9a:af:e8:bf:bf:92:c9:3b:8d:37:
e1:e6:ff:7a:14:bf:87:04:0b:75:6c:32:a5:e3:2f:
08:f2:15:6b:f5:25:c4:b3:65:5c:72:96:b7:27:74:
1a:98:ea:1f:cb:b4:61:ad:4b:38:bb:02:60:68:0b:
a9:19:ac:bb:73:05:d0:26:fd:27:ab:52:53:e2:ac:
a3:73:5c:1d:1b:59:80:00:47:96:dd:10:29:ab:ce:
0d:fd:1b:d8:20:cd:10:4c:f2:74:4c:a4:64:04:4c:
a4:f5:70:fa:be:af:1e:f2:3d:a5:62:ff:81:32:de:
7a:f3:b3:ec:1b:33:83:a0:50:a2:d8:7c:b3:84:19:
e0:c9:fd:06:b3:cc:61:1a:3d:21:af:60:21:37:47:
4b:0d:22:8d:18:b4:5e:8f:f5:51:3a:1d:b1:70:45:
e4:24:13:84:55:6a:5f:33:b4:78:50:c0:5b:ac:c8:
69:7e:de:ae:d6:f2:f6:78:92:88:0d:bf:7a:55:97:
d5:ba:b0:2c:10:c8:39:9b:18:b0:39:52:1f:0d:b8:
44:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1B:DF:86:22:35:0F:B4:D8:4A:76:8C:C5:61:29:76:7E:39:50:69
X509v3 Authority Key Identifier:
keyid:62:3B:77:14:A0:38:27:FD:E7:D2:32:BD:8F:4E:01:A2:9F:B4:71:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TTC/Yjt3FKA4J_3n0jK9j04Bop-0cd4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yjt3FKA4J_3n0jK9j04Bop-0cd4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TTC/pBvfhiI1D7TYSnaMxWEpdn45UGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.42.119.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f6:be:32:80:3c:af:4b:79:e5:32:4f:e8:9d:5c:15:41:ad:
fa:d3:de:c1:ec:3e:87:7c:ef:5d:db:6f:c9:59:d5:d6:dc:55:
75:64:8a:3e:54:0e:6f:d8:de:16:b1:f3:9d:77:9c:ed:2e:7c:
d3:dd:7e:e1:e2:49:2d:42:e6:12:7e:9f:c4:16:b0:af:7b:2a:
d1:89:6d:1c:8e:87:0a:b6:5e:34:85:10:de:27:59:0e:7d:70:
c4:14:fb:7a:d7:6e:bb:63:40:41:2b:16:57:8f:f9:53:11:ff:
01:19:78:e3:8c:67:c9:25:c8:dd:8e:44:51:5e:26:c2:c1:24:
7f:8b:49:4b:f1:12:88:8f:0d:77:82:12:1e:b9:33:c4:94:27:
15:f1:1e:4e:a0:b9:18:87:c5:df:3f:a6:e1:a0:d6:74:35:7f:
26:c2:9f:49:bb:ed:48:92:bb:3a:58:03:ab:46:04:23:ff:1b:
01:3e:aa:f7:63:49:06:84:3e:55:d6:a6:15:3f:c3:50:61:72:
62:52:94:c9:4d:84:d9:11:4d:87:cb:f7:75:9e:82:06:fb:83:
18:13:8a:46:fe:25:84:23:a8:ba:04:c7:f8:96:9b:09:43:a9:
83:51:59:19:e0:49:99:91:47:4d:d6:03:c7:37:8b:a9:8a:36:
9e:84:dc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org