Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/BGaBngElXVFRpkNipALknaZd7iw.roa
File: BGaBngElXVFRpkNipALknaZd7iw.roa (raw, json)
Hash identifier: wzFkirHIRmUTeP2/SzdQjzFFw7NTZ4KCLU2Qys9Bfp4=
Subject key identifier: 04:66:81:9E:01:25:5D:51:51:A6:43:62:A4:02:E4:9D:A6:5D:EE:2C
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0B6F
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/BGaBngElXVFRpkNipALknaZd7iw.roa
Signing time: Fri 01 Sep 2023 10:13:56 +0000
ROA not before: Fri 01 Sep 2023 10:13:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 2914
IP address blocks: 122.255.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2927 (0xb6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 1 10:13:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0466819E01255D5151A64362A402E49DA65DEE2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:aa:e1:59:84:97:83:0b:2a:4d:1d:02:3b:de:
b4:85:d2:c4:31:30:54:1b:cf:56:8f:c5:62:b5:ff:
6b:59:84:b6:99:c2:56:2b:37:fe:b9:4f:f0:95:e9:
de:84:c4:7a:7b:99:5b:60:61:c9:fa:e0:55:0a:f2:
0f:f0:cb:03:22:22:60:02:0f:18:7e:7c:a3:47:0e:
ea:c2:6c:a0:26:25:fb:e7:2d:86:f2:38:ff:a5:9c:
e7:71:41:07:31:cc:83:1e:49:cc:a9:e7:fa:77:c4:
03:2b:3d:77:fb:77:b6:cc:40:e1:5e:f3:5a:10:1a:
ef:af:1d:d6:ce:70:32:b2:88:c4:bf:9c:28:a0:43:
4c:3f:a8:8f:7d:24:52:d2:17:19:43:73:84:fc:3b:
e6:4d:c8:0b:8e:58:5c:3d:7c:3a:11:8e:75:1b:28:
33:cb:b4:08:2d:b7:17:b6:bc:87:ce:5f:a0:d4:9b:
db:bc:88:af:e3:34:85:ca:02:0f:73:fa:f4:d3:ea:
01:ae:e2:ba:9e:ca:a6:8f:f8:b7:f4:07:0b:6d:40:
93:ed:3f:5d:81:a5:fb:24:7d:76:0e:af:3c:20:6e:
f8:a2:cb:18:50:e3:79:b0:42:6d:c1:a1:6c:90:35:
6d:94:28:bf:55:7a:2e:81:af:2c:80:0b:75:a9:db:
a2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:66:81:9E:01:25:5D:51:51:A6:43:62:A4:02:E4:9D:A6:5D:EE:2C
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/BGaBngElXVFRpkNipALknaZd7iw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.80.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:a9:72:90:3a:53:4c:73:ef:08:66:0c:1c:89:6b:94:77:56:
26:fc:8c:62:a8:8d:96:ce:85:21:bb:12:04:d0:6d:bd:21:63:
19:9b:ad:1a:8d:09:d0:8b:d0:38:bd:6e:a7:31:fb:7c:20:94:
2a:58:36:29:3d:52:49:20:9a:f7:de:42:3f:65:07:8f:1d:d0:
b0:d8:2e:0a:d7:30:e1:0f:50:7a:23:3a:82:e9:3b:18:70:ca:
01:d3:a1:54:84:1a:36:00:6f:77:b2:d8:3f:3f:10:13:d7:81:
68:6f:ae:ab:86:17:0d:9f:93:26:88:c7:10:bf:9d:a5:30:0d:
4d:97:fb:0c:01:b4:90:0e:af:07:c2:c5:7d:2d:2a:47:5b:c0:
10:7d:ea:f9:97:50:0b:b1:74:81:db:04:28:75:fa:fd:11:40:
26:6f:d7:d3:d5:a8:09:3f:ff:31:2f:f3:92:29:94:95:7f:cd:
39:57:e6:76:85:05:a1:10:71:8f:c0:e0:f7:3a:11:f2:c7:e7:
2d:85:58:5c:e1:56:4e:fb:ad:f8:55:5c:20:5e:34:33:53:2f:
6c:74:1e:79:e7:3b:5d:ad:df:cb:84:36:35:8f:48:5e:ce:43:
3f:06:0f:c6:e3:37:fe:f0:e9:b8:b6:a4:86:e9:41:b2:53:fd:
e1:ae:71:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org