Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/rax1yDHN29XVjocMqxj_MH9zoU0.roa
File: rax1yDHN29XVjocMqxj_MH9zoU0.roa (raw, json)
Hash identifier: kKMg+MTP+2eAVTZ7xJi3gTpjSxqmBXw/IA+BWtl5sqw=
Subject key identifier: AD:AC:75:C8:31:CD:DB:D5:D5:8E:87:0C:AB:18:FF:30:7F:73:A1:4D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1172
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/rax1yDHN29XVjocMqxj_MH9zoU0.roa
Signing time: Fri 01 Sep 2023 03:14:21 +0000
ROA not before: Fri 01 Sep 2023 03:14:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131644
IP address blocks: 182.173.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4466 (0x1172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 03:14:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ADAC75C831CDDBD5D58E870CAB18FF307F73A14D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3f:7a:18:eb:c9:f4:d3:ed:bc:ca:4f:94:03:
3d:96:67:8b:82:d3:e6:70:9d:6b:0a:81:3f:7e:f1:
87:e8:a9:b3:40:17:06:76:e2:f9:32:76:22:eb:45:
5b:9c:73:a7:6c:74:d7:cb:9d:97:79:cf:42:7a:dd:
da:56:95:9f:f7:99:9f:dd:7a:2a:23:ce:ff:0f:ca:
b9:b4:8f:60:eb:e9:f3:54:f3:58:3e:dd:5d:40:8c:
e1:29:2d:bb:a6:8e:57:68:7d:ea:a7:8d:87:49:66:
54:f8:3d:69:91:f3:94:1d:dc:d4:3c:21:42:d9:7a:
26:f8:51:40:e6:b8:70:14:8d:e5:24:bd:48:01:15:
7b:d2:ae:a6:49:a2:dc:41:5e:58:28:e2:c4:12:8e:
61:ff:d4:48:ae:63:dc:f6:a0:5b:5d:ee:bd:c2:47:
4b:61:cd:fc:50:c4:83:18:43:5b:0a:73:87:d1:28:
d0:da:3b:7e:fd:66:e2:3d:72:57:3f:fd:8a:34:fb:
d4:7e:33:b0:8a:b3:1a:2e:ef:dd:9f:0f:be:e7:a1:
50:8e:b4:89:f1:bf:17:50:57:e2:7d:ba:3e:d2:4b:
7a:68:cb:22:5e:e0:e4:1c:7e:8b:99:25:bd:b8:59:
04:01:8d:93:bd:e8:ae:ec:f8:ae:56:ab:57:23:4b:
ec:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AC:75:C8:31:CD:DB:D5:D5:8E:87:0C:AB:18:FF:30:7F:73:A1:4D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/rax1yDHN29XVjocMqxj_MH9zoU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.0.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:0e:6b:24:13:7f:a5:c5:16:0f:8d:b8:63:45:19:12:9a:09:
0a:28:7b:ef:b8:66:f0:e1:f2:54:fd:f1:9c:81:f8:94:b3:8d:
12:d1:ab:5a:ed:75:41:43:0a:1c:88:e7:84:0e:da:92:7e:bc:
0d:72:76:e1:3a:9f:cf:a5:52:9b:dc:8e:35:21:e3:44:ee:af:
4a:3d:42:3c:89:d3:b6:96:e2:c6:dc:6a:83:80:da:62:d1:db:
ee:b1:fb:31:01:8e:c4:66:2e:3c:09:72:a6:6f:79:4a:a6:d5:
0c:53:94:92:49:d4:fc:ae:bb:ed:09:1d:c3:3a:a1:f1:05:9f:
3f:6a:0d:a1:71:66:90:1b:01:3e:7d:b3:2e:f2:ce:93:75:4a:
e1:64:7d:fc:6b:2b:ce:7b:6a:3e:35:66:26:5e:ae:41:2f:6d:
79:d0:0e:43:96:07:4a:22:ad:ec:d7:6f:8e:bc:d5:22:07:b6:
fd:35:49:87:17:b5:db:16:40:41:a2:05:66:30:6f:02:16:39:
f0:30:e6:05:80:d1:ed:88:8f:2d:1c:0c:8d:0e:e2:20:40:bc:
b2:7d:04:f4:cc:bd:9c:69:c4:a6:e3:9d:29:26:76:e4:f1:6a:
2f:5d:70:e6:72:f8:91:0f:4a:f7:a4:83:5e:66:01:a2:e0:f0:
95:44:cc:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org