Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/jbf2p0olJ15CMuQFm073dVTcFdo.roa
File: jbf2p0olJ15CMuQFm073dVTcFdo.roa (raw, json)
Hash identifier: YyKU2HulXi+goIGs2eFJ/hKKtslVibVIxBWBy3E7BVQ=
Subject key identifier: 8D:B7:F6:A7:4A:25:27:5E:42:32:E4:05:9B:4E:F7:75:54:DC:15:DA
Certificate issuer: /CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Certificate serial: 095C
Authority key identifier: 1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/jbf2p0olJ15CMuQFm073dVTcFdo.roa
Signing time: Wed 29 Sep 2021 02:42:06 +0000
ROA not before: Wed 29 Sep 2021 02:42:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131603
IP address blocks: 43.251.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2396 (0x95c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Validity
Not Before: Sep 29 02:42:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8DB7F6A74A25275E4232E4059B4EF77554DC15DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:45:19:26:b0:5a:2e:28:71:79:50:ee:db:77:
69:71:19:82:c6:7a:e7:3d:fb:3c:7c:b4:40:85:fd:
07:26:f3:69:7a:c2:3a:ec:e6:d1:6d:6c:4d:a5:1b:
15:2f:fa:52:c1:52:7a:56:24:df:16:71:96:08:22:
6d:be:69:17:27:55:be:ab:f7:98:a3:96:a7:a5:5c:
ae:d0:df:20:73:a9:37:d7:bf:f3:59:7c:c3:fe:ee:
7a:9a:b5:5f:bc:8f:01:c0:9e:8c:bd:9a:04:48:19:
57:0a:05:5c:2b:63:35:b9:85:12:42:ae:c0:31:f7:
61:84:1e:bb:be:88:a2:05:74:fd:a5:52:c4:cb:de:
f4:eb:c6:84:98:82:11:5c:f8:bd:6c:be:f6:94:ec:
80:b5:29:37:f9:c3:bd:35:f3:03:2e:d1:46:e7:8b:
a0:88:7b:e3:a4:2f:d6:10:0f:8d:4c:4d:39:76:db:
55:f8:8e:34:f6:b6:4c:29:ec:d4:ff:54:a5:e4:9a:
47:8b:32:1d:d3:f5:3e:2d:6e:3d:39:e0:9e:c1:36:
72:e0:de:74:4e:f4:07:e6:1a:93:a7:3e:f8:8d:01:
e6:9a:a4:03:1b:13:ee:6e:64:34:26:5f:52:1d:f9:
83:b0:e6:2f:b7:af:18:5f:87:29:68:59:9a:18:84:
30:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B7:F6:A7:4A:25:27:5E:42:32:E4:05:9B:4E:F7:75:54:DC:15:DA
X509v3 Authority Key Identifier:
keyid:1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/HLHKcKMySPs9rui_QeLap2p9z9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/jbf2p0olJ15CMuQFm073dVTcFdo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.56.0/22
Signature Algorithm: sha256WithRSAEncryption
96:6b:66:c8:cc:35:2f:73:d8:8b:62:ca:a2:bf:ce:ec:e5:5b:
13:76:56:3f:16:f0:1e:bb:f0:89:5e:85:08:4a:f3:c7:55:f2:
0f:61:cf:25:50:a7:83:08:52:d4:2d:a3:8c:04:4a:ea:a6:90:
36:1d:71:d9:86:23:81:8b:c6:bb:ca:62:7f:01:73:fd:76:d7:
63:36:d1:c7:e4:0c:ea:a9:bc:81:8a:9b:f7:8e:78:c1:96:a9:
53:55:51:af:04:81:a4:66:89:cd:cd:80:a0:f9:a9:e0:5f:f3:
a9:ea:ae:08:c1:d2:cc:fe:96:82:56:46:24:fe:9b:fe:9d:a6:
e8:80:95:e3:c1:eb:78:81:69:14:eb:2f:07:d5:5e:c1:cd:0b:
82:96:e9:0a:68:5c:e8:18:2e:b9:31:21:8e:a3:10:26:38:51:
4f:c9:bd:8c:00:5f:63:26:79:b4:41:c0:2e:16:4f:61:30:9e:
85:7e:da:cd:52:45:46:3a:4f:ef:ac:2f:8d:14:b1:63:1f:d4:
e8:3d:e3:a6:ca:1c:0e:8b:1e:d0:35:4c:f0:cb:c2:09:10:da:
7d:27:eb:18:26:0e:1a:98:27:a8:18:b5:a0:c2:df:c7:de:eb:
a7:4e:4b:da:83:84:b1:71:c2:af:bd:1b:e6:4c:64:68:3a:fc:
26:b4:90:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org