Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jjC2JQrUKm2JThp9pM-6cCksxpE.roa
File: jjC2JQrUKm2JThp9pM-6cCksxpE.roa (raw, json)
Hash identifier: Oa9YkmxQK7LcgKH5Z/zzujiHSOfRBnsXSr9BpKQ7EQE=
Subject key identifier: 8E:30:B6:25:0A:D4:2A:6D:89:4E:1A:7D:A4:CF:BA:70:29:2C:C6:91
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0B6E
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jjC2JQrUKm2JThp9pM-6cCksxpE.roa
Signing time: Fri 01 Sep 2023 10:13:55 +0000
ROA not before: Fri 01 Sep 2023 10:13:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3949
IP address blocks: 122.255.94.16/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2926 (0xb6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Sep 1 10:13:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8E30B6250AD42A6D894E1A7DA4CFBA70292CC691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7d:db:f5:01:09:4b:0d:29:97:dc:c8:1c:f5:
c9:de:6a:08:ef:de:e6:a4:46:41:c9:99:84:1a:01:
55:18:b5:4f:95:50:bb:d7:f2:28:89:c8:34:44:48:
3b:33:0a:e2:a1:62:51:2a:ba:00:f7:24:15:cd:8f:
23:bd:fb:20:7b:ca:c6:9c:c4:36:2d:a8:f0:fb:04:
1a:4a:a8:c6:d2:48:c2:00:a3:71:a0:67:33:37:5b:
5e:ce:45:57:d6:73:b0:10:2c:21:5b:0a:c0:c4:33:
be:77:a2:2c:30:cc:5e:ea:9e:45:03:55:62:e6:93:
50:2c:a5:37:79:b5:0e:6b:65:1b:c7:6e:35:c0:52:
b1:11:c4:6e:93:c5:f3:0d:0a:a6:0e:a7:6b:0d:f8:
5b:87:64:d0:f0:7d:b3:98:17:d4:fb:18:04:89:ef:
72:9d:79:09:ae:da:43:1a:7e:d0:7f:e5:08:29:a0:
d6:ed:74:cf:af:c2:f3:09:10:55:b4:00:92:b0:c7:
d5:37:e3:31:1a:5e:fa:0a:28:e9:6c:79:d0:ca:59:
31:c3:74:1c:61:b4:c6:bd:7a:3a:de:08:e7:e3:41:
2b:9a:7c:5b:d0:6c:a3:5d:26:ab:6b:e7:a0:76:bd:
db:3a:28:b2:92:f3:fd:3e:78:7b:9b:9f:28:76:bd:
53:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:30:B6:25:0A:D4:2A:6D:89:4E:1A:7D:A4:CF:BA:70:29:2C:C6:91
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jjC2JQrUKm2JThp9pM-6cCksxpE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.16/28
Signature Algorithm: sha256WithRSAEncryption
ca:9e:73:f4:19:64:80:0d:10:94:0b:88:10:c3:c4:73:3d:fc:
ce:94:e8:84:26:ad:b0:1b:38:7a:b0:a3:f2:81:43:8a:37:c4:
8c:f5:1f:ed:72:dd:e7:41:de:ce:2e:c6:ef:3e:aa:ca:48:ed:
95:a4:41:17:b2:9c:c0:62:88:2b:99:5e:c2:36:b7:64:37:15:
17:ce:ad:da:cd:ab:d1:0b:66:e5:38:04:2f:25:c0:8c:66:47:
9b:9b:51:b3:8b:31:7a:54:9c:4b:1d:13:69:1c:8f:6c:30:fc:
1a:88:8a:33:17:03:3b:f0:cd:96:83:07:52:28:8f:21:cb:ec:
63:87:57:0e:f5:ba:2e:e9:13:11:76:46:d5:f5:0c:96:99:18:
b2:44:5d:73:42:39:70:c7:4c:85:ea:bb:35:2c:bc:8e:48:46:
d5:00:db:8e:02:71:89:98:61:2c:c5:59:10:77:a9:6b:e8:5e:
6b:2b:ba:91:41:2a:76:be:87:2b:08:30:f0:7f:5b:c4:62:49:
6b:84:68:11:37:9e:ba:cb:69:6e:d6:6e:1c:69:f6:b7:54:75:
a3:e3:c8:93:d3:d0:bf:16:79:63:0f:48:61:f8:49:38:bd:f8:
80:52:2f:c1:1d:5b:1a:f6:62:de:3d:4f:a4:51:82:a7:67:4a:
db:a4:f6:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org