Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/ciOxCBS9b127DyTK45z1blSfUkI.roa
File: ciOxCBS9b127DyTK45z1blSfUkI.roa (raw, json)
Hash identifier: gtSXYWaJb2zgIjTraVAUhsfbHT87EyHmS+ZM101hzmE=
Subject key identifier: 72:23:B1:08:14:BD:6F:5D:BB:0F:24:CA:E3:9C:F5:6E:54:9F:52:42
Certificate issuer: /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial: 0875
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/ciOxCBS9b127DyTK45z1blSfUkI.roa
Signing time: Sun 07 Feb 2021 06:13:35 +0000
ROA not before: Sun 07 Feb 2021 06:13:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2165 (0x875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Validity
Not Before: Feb 7 06:13:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7223B10814BD6F5DBB0F24CAE39CF56E549F5242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:19:41:15:64:ff:be:ae:c7:29:89:31:c6:04:
b4:47:ff:e6:e1:e7:30:98:3e:0d:27:bc:1d:a7:41:
68:ec:b4:72:81:51:df:0f:6b:43:f4:c2:11:0f:c4:
45:f5:33:35:c2:48:20:60:a5:5c:6d:d2:aa:7a:90:
bd:22:62:a5:ce:2d:41:9f:12:5f:78:83:ee:25:c2:
fa:c4:d0:e3:dd:ab:6a:12:9f:fc:95:b4:b1:47:e0:
0e:5c:c0:20:6a:f0:42:f5:7a:26:0e:a9:6f:5e:8e:
ae:22:f4:4d:44:12:a2:20:fe:53:16:b6:80:af:05:
50:d9:1b:18:6c:2b:92:e0:5b:e6:08:17:b7:3c:d7:
3a:0e:5c:c2:9a:bf:ac:16:f0:dc:36:cc:dd:aa:88:
f0:27:f1:b9:aa:fc:c1:aa:3c:ce:dd:b3:f7:4a:48:
b4:bb:0a:f3:16:a1:0f:cb:d1:23:d1:8d:2c:f6:99:
93:eb:09:15:fa:34:88:65:01:92:ed:cf:cd:93:4f:
87:0b:15:ea:3e:c4:7e:f2:b3:a2:c1:d0:e5:de:7c:
74:cb:7a:7b:cb:6b:07:dc:c5:b4:85:ad:dd:f2:07:
2f:83:6c:52:c3:64:e6:00:90:44:fd:99:70:f3:8a:
01:b6:a0:68:a2:4a:bc:4f:ee:fb:fb:8e:90:0b:9e:
13:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:23:B1:08:14:BD:6F:5D:BB:0F:24:CA:E3:9C:F5:6E:54:9F:52:42
X509v3 Authority Key Identifier:
keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/ciOxCBS9b127DyTK45z1blSfUkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:df:28:12:f4:b1:8c:e0:83:39:44:29:e1:dd:08:45:7b:7a:
e4:d3:8d:68:21:4e:24:95:d5:07:fe:e6:a6:fd:4f:da:dc:06:
f3:aa:fe:9d:e5:e3:72:b0:7f:82:1e:0f:6b:bf:ac:4d:74:5f:
fe:05:8e:ce:76:ba:1c:59:62:58:53:3c:3c:fc:11:57:08:1b:
a1:09:18:72:b2:5f:f9:8b:be:9c:4f:78:b5:14:d5:fb:5d:c3:
25:95:c8:17:78:9b:06:23:3f:43:b9:3f:9f:3b:b8:b0:78:3a:
18:0b:cd:e7:55:46:ae:57:84:36:a9:15:ac:ea:32:d9:56:4b:
7f:8f:9f:2d:23:6c:72:40:5d:17:9e:0c:dd:06:ef:fd:ca:72:
49:42:d1:b7:cb:96:5e:0b:90:28:cd:8b:53:23:1a:22:a7:1b:
6d:3d:72:4d:49:55:7a:91:bc:b8:2b:2c:31:e7:17:cd:c7:3f:
47:20:05:14:a9:aa:03:c6:0c:b6:73:ee:f9:6b:fb:d0:f6:ef:
56:3c:4d:94:6d:f6:95:97:80:5d:50:e1:13:58:b3:e7:c5:85:
69:19:6b:e7:c0:ce:70:3b:88:5c:c5:d0:17:25:b3:62:8c:32:
1e:c5:f6:d5:3d:36:42:20:95:18:bd:35:7e:43:cc:b3:bc:3b:
9e:a5:3d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org