Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/9yp_kLhg6PhVwihxGrzQ33cGMM4.roa
File: 9yp_kLhg6PhVwihxGrzQ33cGMM4.roa (raw, json)
Hash identifier: xSE7CECpxR4cUqSuhLsO/fkZWcSSny0dfTCaNXkN7oo=
Subject key identifier: F7:2A:7F:90:B8:60:E8:F8:55:C2:28:71:1A:BC:D0:DF:77:06:30:CE
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0AE6
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/9yp_kLhg6PhVwihxGrzQ33cGMM4.roa
Signing time: Fri 01 Sep 2023 10:11:11 +0000
ROA not before: Fri 01 Sep 2023 10:11:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 133955
IP address blocks: 223.165.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2790 (0xae6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Sep 1 10:11:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F72A7F90B860E8F855C228711ABCD0DF770630CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:46:7b:a4:0e:2b:97:b8:fa:07:2a:09:cc:
aa:a8:e5:81:32:df:3b:30:a6:09:b1:38:f1:b9:80:
48:96:a3:c4:77:bb:be:78:84:da:2c:2d:f6:8e:d2:
d2:cd:c7:e7:4b:bb:b5:71:29:43:d4:e7:a0:8d:f5:
21:36:48:f1:57:2a:96:93:27:c1:00:d9:49:f8:aa:
e4:8e:f1:bd:e9:d7:ea:a8:de:66:20:58:cd:7c:b1:
f2:87:ec:b7:d0:73:67:2e:55:f4:ad:e0:e9:64:9a:
80:b7:5a:71:f4:9e:6f:91:64:a4:6c:f9:94:4e:91:
ce:c5:f8:be:53:a9:38:41:c7:47:50:49:28:82:23:
7a:19:8f:ce:49:47:51:ed:e3:8e:15:54:8c:54:56:
4b:c5:e5:81:c4:79:e8:84:a9:f7:86:75:48:dc:b1:
19:cd:83:68:50:94:70:dd:2f:0a:94:d9:fa:2a:9a:
e0:64:14:26:12:d2:07:34:72:c1:bb:d8:df:68:35:
15:f0:89:94:ea:69:fa:3f:1c:56:6e:d6:9e:c7:1c:
c5:50:ca:15:c7:30:61:61:2b:db:c9:80:7e:4c:a2:
cb:11:c4:f5:6b:81:82:86:7f:c3:9c:c8:c2:b4:b4:
78:f3:19:91:f4:0e:66:5c:85:51:6e:e9:f7:7a:df:
90:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:2A:7F:90:B8:60:E8:F8:55:C2:28:71:1A:BC:D0:DF:77:06:30:CE
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/9yp_kLhg6PhVwihxGrzQ33cGMM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.8.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5d:c0:14:e7:e8:95:94:00:51:e1:87:3c:8d:88:ed:21:b1:
fa:72:78:10:69:33:42:5d:8a:08:8b:e2:3b:c0:73:80:30:98:
4a:3d:2b:50:34:ce:20:3f:b1:9b:f8:91:8e:c2:c2:b8:b5:f0:
09:f0:e2:b1:64:a5:40:bf:bc:e7:4b:22:11:7b:84:16:50:ca:
d9:34:a0:fb:6e:16:8b:c7:f7:3c:34:be:e0:68:fc:98:07:da:
53:0e:49:78:f7:35:bf:2a:a8:c7:d4:bb:43:1d:2a:ad:87:c3:
67:66:5a:64:34:1a:87:03:71:72:5a:0e:fc:fc:82:c4:17:51:
03:4c:93:65:9c:7e:72:2d:e4:d4:54:ef:bd:83:82:ee:84:3c:
7a:dc:31:61:b4:0b:3c:51:61:b3:f8:11:8c:24:69:ea:aa:43:
a1:04:a6:23:77:f8:e7:1e:8d:92:2d:f3:90:f4:ca:90:52:29:
21:24:e6:4b:3b:ad:22:9b:3b:db:b9:45:c5:35:e3:b6:1c:1e:
25:6b:ec:d2:83:f0:67:df:13:53:dd:04:24:b2:24:58:86:5c:
79:0e:8f:01:c9:6e:7d:4f:7d:fa:a7:bf:49:43:6c:eb:5e:9c:
00:e0:01:04:6a:9c:28:3e:67:2c:eb:16:5f:54:64:38:df:61:
fa:91:80:d7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org