Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/CklaCqmGIPJP3mFbg0IjdF1LhTw.roa
File: CklaCqmGIPJP3mFbg0IjdF1LhTw.roa (raw, json)
Hash identifier: ulPbRr3On3nJFWp4QZqF85/snKCTIVItSoR+ZqBgwVw=
Subject key identifier: 0A:49:5A:0A:A9:86:20:F2:4F:DE:61:5B:83:42:23:74:5D:4B:85:3C
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0B5A
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/CklaCqmGIPJP3mFbg0IjdF1LhTw.roa
Signing time: Fri 01 Sep 2023 10:24:08 +0000
ROA not before: Fri 01 Sep 2023 10:24:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 43.254.16.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2906 (0xb5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 1 10:24:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0A495A0AA98620F24FDE615B834223745D4B853C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1d:d4:11:5c:ca:ea:a9:46:87:ca:98:9a:a9:
24:24:25:27:a7:21:ff:8a:02:03:27:e7:df:29:c0:
ce:fc:10:dc:74:02:d9:04:0a:eb:9b:0f:98:26:e4:
2d:90:34:9a:7b:34:23:49:74:4c:4f:25:13:a8:c0:
63:12:d6:c8:fb:e1:8b:bc:7e:b6:63:1a:ce:3f:d9:
40:db:32:e6:d9:85:74:27:18:69:e8:1c:87:18:1e:
b8:92:5f:4c:62:30:cb:0b:6b:0c:66:a9:00:68:49:
51:7e:ef:25:8c:8d:6e:b6:b7:6b:f0:36:a1:fe:35:
6b:76:33:3c:db:37:2d:8f:94:79:38:5d:3b:e7:85:
2a:e3:15:85:0b:db:d9:db:22:e7:6c:fe:24:7a:af:
16:0e:d5:67:89:ec:62:c7:64:92:6c:2a:93:30:a3:
f5:d0:a4:52:b2:ec:f3:e0:af:de:73:af:3c:9c:04:
12:80:0c:68:13:ce:75:ea:da:7f:b7:2d:8b:37:fb:
f1:03:c6:f1:d7:84:bb:9a:5c:a4:1d:f3:d9:c6:4f:
06:ed:24:8f:02:7c:e5:76:7c:e5:06:37:4c:ac:4b:
c0:67:92:35:67:e8:2c:db:5f:10:ad:61:15:e3:21:
0c:c9:e7:2c:3a:5d:f7:6a:e5:01:80:15:24:c7:99:
4e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:49:5A:0A:A9:86:20:F2:4F:DE:61:5B:83:42:23:74:5D:4B:85:3C
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/CklaCqmGIPJP3mFbg0IjdF1LhTw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.16.0/22
Signature Algorithm: sha256WithRSAEncryption
42:fb:f4:f3:ca:97:c1:e5:bd:82:0e:aa:37:c4:35:85:b1:e4:
65:85:fd:3c:f9:6e:9c:1c:d6:fe:bc:07:fe:19:ee:f9:7b:ee:
f6:23:a3:44:ef:d6:c4:bd:6f:82:e6:c5:b7:71:51:e0:40:4b:
bd:71:28:d2:39:18:49:12:9f:56:df:b7:3c:e9:25:59:82:23:
99:1e:13:62:08:d5:e2:cf:86:02:65:4e:7e:cb:b1:7d:a0:b9:
41:17:f6:d4:c7:3f:1f:58:c3:c5:7c:f2:74:0e:5c:d0:23:12:
11:7f:79:59:53:fc:70:a2:12:d7:ef:7b:b6:a4:27:5f:5f:cb:
e8:44:7b:c1:a7:06:54:8c:ef:c0:93:8e:53:b9:b7:c7:47:65:
6b:99:a7:66:fa:6e:3b:a4:b8:b4:dc:a4:9b:7e:a0:84:e9:19:
39:67:12:7a:80:9e:c4:1a:65:af:e2:ee:0d:fb:99:2b:51:6c:
d4:5c:ba:84:cd:10:cb:00:79:1f:f3:86:cb:a9:29:bf:af:a8:
fe:8c:e7:77:29:6c:91:30:e6:21:e5:62:74:be:ef:b7:6b:f5:
4d:7f:ed:df:a3:b9:7b:6f:18:21:92:98:c6:fb:53:aa:ae:d6:
0b:c6:04:7e:d8:f5:f6:f8:f7:a7:49:fb:9b:c6:33:05:1f:2d:
ae:60:a8:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org