Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jfS0LU5Io-Pdp9yq21AJe4Stxik.roa
File: jfS0LU5Io-Pdp9yq21AJe4Stxik.roa (raw, json)
Hash identifier: 03LHSjJcbLcjtHpbpLkbtw5rTbortuSXjllfn+Eba9w=
Subject key identifier: 8D:F4:B4:2D:4E:48:A3:E3:DD:A7:DC:AA:DB:50:09:7B:84:AD:C6:29
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0C14
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jfS0LU5Io-Pdp9yq21AJe4Stxik.roa
Signing time: Fri 03 May 2024 07:44:03 +0000
ROA not before: Fri 03 May 2024 07:44:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 2914
IP address blocks: 2001:d40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3092 (0xc14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: May 3 07:44:03 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8DF4B42D4E48A3E3DDA7DCAADB50097B84ADC629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:66:82:c8:6e:5d:8a:c8:ee:d9:8a:ed:5a:d0:
fe:9d:79:f7:a9:31:9c:8e:7b:98:e5:35:bf:e6:de:
12:09:a8:21:ab:aa:69:5d:ba:1c:99:97:a3:c8:a2:
50:93:10:f7:72:37:80:32:1c:a6:39:90:2b:49:d0:
55:d3:ec:55:d1:41:a8:29:4d:32:4f:4c:e7:4f:17:
c4:84:17:bd:f1:27:4f:c3:f7:ac:fb:d3:66:e9:b3:
b7:48:73:6a:37:2c:41:de:a8:79:13:20:07:4e:a8:
00:c1:95:0b:46:8c:de:47:89:08:ae:90:ee:f1:c8:
aa:d1:ea:49:d4:c7:17:f2:df:69:dc:44:47:15:bd:
4c:31:a5:83:85:56:06:7a:97:3e:c1:54:cf:ab:ac:
6c:e9:99:a9:9e:4a:81:97:cd:0d:11:d0:d0:d3:47:
a5:0f:6b:27:d0:3c:77:7b:02:7c:f2:77:3a:3d:fb:
21:59:3f:f6:f3:c6:1c:4b:07:30:6d:09:0a:81:0b:
0f:43:f6:dd:57:8c:97:8f:ac:a8:44:7e:ed:2b:c0:
08:71:b7:4d:e6:b1:7d:30:c3:54:7c:aa:af:36:e4:
bf:8f:27:a1:b4:fd:72:a2:0d:6d:af:98:93:df:db:
87:42:3d:19:f8:54:0a:46:6b:05:67:2a:eb:86:e5:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F4:B4:2D:4E:48:A3:E3:DD:A7:DC:AA:DB:50:09:7B:84:AD:C6:29
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jfS0LU5Io-Pdp9yq21AJe4Stxik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:d40::/32
Signature Algorithm: sha256WithRSAEncryption
45:df:a0:ae:50:74:09:3c:a1:8c:03:c6:12:59:b0:cc:6d:8f:
06:f2:00:3d:e7:0a:b9:7f:98:33:20:bf:92:ef:c0:09:f7:88:
0a:40:0b:43:95:36:5f:23:b5:9f:2a:dc:57:dc:ca:b2:59:57:
82:59:53:fd:65:06:29:36:71:a1:78:5a:04:55:d4:18:9b:b6:
a1:91:9c:b3:8e:1c:58:5e:73:0c:e0:b9:40:a4:e0:aa:b8:2f:
bb:4d:92:a5:6f:f8:65:f8:85:9c:53:20:44:10:00:e9:bc:13:
aa:39:a2:e3:ac:2f:10:98:06:e6:12:bd:52:05:91:7b:59:c7:
97:8a:5c:04:05:46:86:df:f3:76:91:43:12:61:91:1d:0e:ca:
31:fd:f4:53:59:fb:df:53:38:5b:94:1a:c1:9e:e9:69:06:92:
75:18:ef:64:03:0e:1f:43:08:1c:a0:b9:7a:2c:1c:23:e9:f6:
2f:b5:cb:12:0f:c6:30:dc:cb:b2:b6:65:d6:fa:f2:ac:2b:1c:
e5:7a:11:be:86:3b:33:a4:43:e7:ef:48:9a:96:d6:77:13:b3:
cb:e3:6b:02:57:ae:12:ee:f4:98:ec:f1:0b:4e:9f:64:10:43:
a6:0e:9e:f1:d5:4b:0d:db:ef:df:a1:c2:7d:04:26:ac:3e:fc:
1c:95:a3:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org