Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/BbDxCYsqJIwEgZgTMoQJFRfYO9o.roa
File: BbDxCYsqJIwEgZgTMoQJFRfYO9o.roa (raw, json)
Hash identifier: czy1dAzJ3jtGN0VduN0qLuWDhcgKyxMJ/0MxhikKD3g=
Subject key identifier: 05:B0:F1:09:8B:2A:24:8C:04:81:98:13:32:84:09:15:17:D8:3B:DA
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0E9B
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/BbDxCYsqJIwEgZgTMoQJFRfYO9o.roa
Signing time: Fri 01 Sep 2023 10:21:34 +0000
ROA not before: Fri 01 Sep 2023 10:21:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 138145
IP address blocks: 2404:4fc0:a022::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3739 (0xe9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Sep 1 10:21:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=05B0F1098B2A248C048198133284091517D83BDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:eb:b4:47:04:9e:c3:65:5a:35:fd:8a:b9:76:
3e:37:a2:9c:2c:49:81:65:1f:47:f2:0e:fe:52:e5:
d3:b0:ab:d1:ed:cd:d9:91:84:cf:12:4d:70:e1:07:
5a:d9:ec:45:a9:7c:97:a0:b4:da:8d:46:ce:c1:2d:
c6:8c:04:65:73:1a:9f:48:71:ad:7b:bc:a5:2a:87:
fc:74:3d:d3:29:3c:fb:a7:1f:2c:cf:6c:6e:0d:ed:
7f:06:e9:1f:d2:7c:20:50:ae:42:a3:62:bf:6e:df:
a5:72:54:85:f8:bc:15:3a:ca:f3:19:a9:26:5f:ac:
10:c5:4a:25:4a:84:1a:38:c9:cf:dd:d1:37:35:46:
ac:19:27:77:ed:73:7d:00:e2:96:e2:8c:19:0b:48:
9c:51:c5:d1:ba:74:4d:d7:5c:fc:f2:33:74:4e:33:
bb:86:f5:d9:60:40:24:23:c2:6f:b4:f3:a9:41:4a:
9b:bc:16:da:a1:f6:d4:53:39:ba:b6:45:48:2f:1a:
5c:17:55:9f:fc:a0:5e:0f:d2:a4:87:1d:f8:8d:09:
40:0d:f6:34:21:c8:16:d9:cd:09:03:7d:e1:79:14:
2a:0f:cf:6a:ef:63:13:49:60:8d:ba:a0:aa:bb:b0:
8b:2d:07:ba:68:82:25:fb:81:85:13:0d:fe:b5:9b:
79:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B0:F1:09:8B:2A:24:8C:04:81:98:13:32:84:09:15:17:D8:3B:DA
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/BbDxCYsqJIwEgZgTMoQJFRfYO9o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:4fc0:a022::/48
Signature Algorithm: sha256WithRSAEncryption
15:10:fc:e9:28:13:c7:84:85:65:e4:82:f8:1d:cf:29:6a:33:
04:c6:08:8d:d1:60:f5:2c:28:16:fb:ba:0e:95:54:d6:e6:93:
6c:07:c0:a4:ef:21:4f:a3:91:4f:1c:e4:34:16:5b:c5:5d:56:
1d:b1:c5:51:44:49:36:49:c7:2a:12:33:8a:08:a4:ee:26:02:
1e:1b:54:9f:8b:14:3d:c9:f1:97:6d:3c:66:9a:1c:31:9c:53:
95:d0:73:be:14:5b:cf:8f:c0:b4:3b:c4:a6:06:10:08:64:48:
5e:93:14:d6:08:cf:ba:db:8f:ea:64:35:65:5a:27:d2:4a:e2:
21:8c:4c:8d:19:5d:9d:99:ec:27:6b:10:fd:a8:21:16:89:fd:
b6:4a:2b:6a:48:87:a7:6e:b2:86:0e:18:38:5e:d8:52:08:de:
ee:8f:4d:24:41:eb:0e:18:f6:d5:25:23:9a:e5:54:f7:6a:f3:
ab:d1:f8:d1:e2:d3:3a:79:91:2e:72:1b:c7:d8:4d:15:fe:7c:
77:97:8e:ed:2f:fc:d1:cc:79:bb:c8:da:39:09:03:fe:75:ec:
e5:a3:4c:72:15:4b:9f:e1:31:d8:f9:15:75:67:a2:8f:e7:73:
50:c9:60:2a:f9:3d:05:f5:a2:ed:8d:a3:c8:91:96:9a:87:8e:
7e:0e:36:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org