Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VIBO/XIcdJpzxfk9lxmAKotandNWct5o.roa
File: XIcdJpzxfk9lxmAKotandNWct5o.roa (raw, json)
Hash identifier: YnfB+9CrqIBRt6oIe12cmC1fY0D0ApW1nwKG38wf2Pc=
Subject key identifier: 5C:87:1D:26:9C:F1:7E:4F:65:C6:60:0A:A2:D6:A7:74:D5:9C:B7:9A
Certificate issuer: /CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Certificate serial: 098F
Authority key identifier: 52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/XIcdJpzxfk9lxmAKotandNWct5o.roa
Signing time: Wed 29 Sep 2021 02:36:57 +0000
ROA not before: Wed 29 Sep 2021 02:36:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24157
IP address blocks: 180.217.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447 (0x98f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Validity
Not Before: Sep 29 02:36:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5C871D269CF17E4F65C6600AA2D6A774D59CB79A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d5:5a:c9:6b:d9:dd:c5:29:88:f5:f8:6c:24:
6c:d9:f5:b6:cb:36:c6:89:1b:04:60:24:90:52:c8:
7d:c0:ab:e4:4d:1f:2e:d1:0e:4e:62:16:bc:9a:d5:
27:42:ef:64:69:f5:20:cf:5a:60:e4:a3:eb:7c:23:
88:19:e8:54:75:d9:dd:15:b1:88:d4:2b:32:ae:8d:
6d:26:6f:aa:da:63:34:a6:8e:d4:df:7d:d4:72:ae:
2a:10:4f:d2:f7:14:a2:31:83:89:25:4f:d4:bd:fc:
70:a9:82:2b:f9:b6:47:a9:a9:71:0d:74:38:b1:bc:
ad:9a:7a:ed:88:10:75:c6:cc:42:34:ae:1a:61:ef:
22:db:23:43:48:61:fc:56:07:30:1f:cf:bd:71:b2:
97:9a:11:3f:6b:9c:12:0f:b2:9f:3c:c5:a4:44:ab:
53:45:4c:f2:f5:d9:03:9a:cf:fe:06:9e:a9:e5:37:
31:79:82:7f:7a:db:77:03:ba:37:f8:53:3c:1e:37:
8e:f6:8a:e9:e0:77:8e:b2:dc:19:d2:e4:83:79:98:
34:26:19:61:13:99:0e:4f:2c:2d:2e:19:4a:c5:c8:
75:07:1d:cb:e2:9a:50:a3:da:14:34:42:9c:fb:db:
ff:4a:ae:fa:01:7c:75:c9:79:18:9d:1f:5e:96:3b:
9a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:87:1D:26:9C:F1:7E:4F:65:C6:60:0A:A2:D6:A7:74:D5:9C:B7:9A
X509v3 Authority Key Identifier:
keyid:52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/XIcdJpzxfk9lxmAKotandNWct5o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
15:8c:e7:0e:5c:80:5b:17:b1:c8:73:5b:7e:0d:43:f9:bf:2a:
ea:7c:9c:7c:99:6c:bf:9a:7e:75:a2:d3:28:e8:1d:bb:24:9d:
b8:e2:13:78:6b:77:50:44:86:17:30:ad:33:ba:08:d2:2a:83:
ea:2a:70:e8:c1:32:10:4a:b3:80:4f:8b:8c:d7:57:98:0d:6f:
37:f6:eb:f6:36:f0:f8:6d:3e:0c:60:45:78:e6:42:99:b1:af:
0f:c6:e2:16:88:fc:56:13:51:be:77:cc:3e:51:d1:45:c6:69:
48:f8:c5:80:1c:f2:9f:d9:8f:2e:eb:3a:a2:07:7e:79:65:39:
7b:82:77:06:71:5e:ab:f9:ad:7f:49:03:60:d6:36:ae:5f:3f:
1b:dc:1b:62:6f:81:e1:e5:5f:aa:93:d6:e8:1d:c7:ab:8f:2f:
a7:a2:5a:b1:02:91:80:df:e9:25:86:b8:64:8c:4b:76:85:55:
0d:27:64:c7:98:a7:3c:33:96:5f:d6:4f:46:3f:0b:f1:5d:12:
a3:b4:80:84:11:dc:ef:99:b5:90:01:9b:fd:78:85:4d:86:b7:
d5:47:8a:35:7d:fd:53:bd:56:bc:d2:f8:31:ad:8a:7a:a5:f3:
67:0a:73:fa:67:8e:bb:9a:5b:32:54:31:00:ef:9d:ee:96:9e:
6a:35:c7:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org