Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VIBO/68Raa6ElHGliLVt1Ihu5Y2PIlE4.roa
File: 68Raa6ElHGliLVt1Ihu5Y2PIlE4.roa (raw, json)
Hash identifier: ZKA4h1dp5TH8G1eZVob9A+2bTjV76R5lWb+dOvjmURY=
Subject key identifier: EB:C4:5A:6B:A1:25:1C:69:62:2D:5B:75:22:1B:B9:63:63:C8:94:4E
Certificate issuer: /CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Certificate serial: 0B7F
Authority key identifier: 52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/68Raa6ElHGliLVt1Ihu5Y2PIlE4.roa
Signing time: Fri 01 Sep 2023 10:19:13 +0000
ROA not before: Fri 01 Sep 2023 10:19:13 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24157
IP address blocks: 43.255.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2943 (0xb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Validity
Not Before: Sep 1 10:19:13 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EBC45A6BA1251C69622D5B75221BB96363C8944E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:18:af:3e:12:9e:1c:01:c9:8a:8e:83:fb:a3:
5a:0b:52:03:35:fa:0f:78:c0:bd:ba:f0:6f:d2:3a:
f6:33:8a:fe:49:ba:5c:47:7a:c0:26:b0:47:56:72:
b0:04:9d:43:8d:c0:ba:87:d8:b7:83:0f:b6:a2:d7:
29:f2:a8:1b:1b:e7:a2:44:59:2b:1c:9a:47:6b:d4:
8a:45:55:c9:eb:a9:b1:3f:24:43:fa:a4:7a:51:44:
41:d8:8b:25:39:02:65:99:eb:ae:dd:4f:5e:4f:12:
aa:6e:09:25:b0:88:a9:a4:28:56:bb:a8:97:78:48:
2e:1b:17:a1:38:12:94:58:4f:93:38:2d:15:97:c6:
f0:88:f6:d8:9c:99:77:b5:0c:af:bf:3d:2d:fb:41:
c4:48:dd:bd:dd:62:ed:ba:1f:ae:8a:df:de:92:0f:
8b:13:36:52:fc:04:55:0c:02:72:6e:bc:f2:59:ee:
8d:b1:eb:67:d8:48:94:3c:ae:cb:af:fe:f1:4f:11:
51:6d:37:ad:80:31:4e:3c:5b:c5:c2:54:7a:41:ac:
78:e3:1b:44:a2:c7:7c:98:0a:c5:68:80:fe:a7:64:
a1:90:22:fe:43:81:c7:28:53:b1:6b:a8:0d:31:08:
35:c2:7f:37:e0:98:c5:78:df:40:04:a0:6d:30:e6:
ee:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C4:5A:6B:A1:25:1C:69:62:2D:5B:75:22:1B:B9:63:63:C8:94:4E
X509v3 Authority Key Identifier:
keyid:52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/68Raa6ElHGliLVt1Ihu5Y2PIlE4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.88.0/22
Signature Algorithm: sha256WithRSAEncryption
17:3f:15:2b:86:7a:0f:74:69:05:13:ea:4d:30:32:cb:64:bb:
6f:34:df:e2:82:93:2a:89:5e:3d:7a:b3:f2:ba:6b:2b:8b:5b:
66:55:3c:ec:b1:06:96:c5:29:36:21:91:3b:48:90:40:78:5c:
4b:31:ee:4c:44:0f:be:ce:8d:1b:77:0f:f5:e5:4f:aa:88:49:
fc:d0:e6:3d:18:e6:cf:f9:01:74:f9:ee:1e:56:7e:85:e3:24:
4a:e1:2e:ab:3e:02:bc:0a:0e:bf:0a:15:fe:50:ec:3b:03:c0:
b0:8f:61:e1:1d:8d:7f:b4:47:42:6d:9a:04:c6:f7:89:95:53:
90:b3:5a:fd:a3:95:06:bb:82:5e:20:73:d5:23:55:c8:ce:50:
5c:0d:6d:8b:c6:d6:10:c8:7b:19:46:85:40:30:e3:29:4c:a1:
ca:92:36:63:ed:98:c7:64:16:7f:0d:ca:90:a3:95:6d:31:5e:
c9:51:c3:42:3e:f9:9a:d1:8b:18:ad:bc:06:c6:4e:c9:75:5f:
3b:ce:43:24:11:49:ea:f2:ef:9b:4f:1e:1a:9d:e7:b3:8e:a4:
21:78:64:27:0d:0d:73:ea:6a:75:15:d4:02:2a:a5:4d:2d:94:
85:61:e9:f6:7b:de:74:75:3c:ce:87:1e:98:46:36:78:c0:d6:
8b:95:dc:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org