Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARADISE/JzEYkv4NZlf6qbEgsSGFrZmVeH8.roa
File: JzEYkv4NZlf6qbEgsSGFrZmVeH8.roa (raw, json)
Hash identifier: qmPEAcyTVoUTiZtYWCEhlD0+RO2CzCW89S6N2LDjmWE=
Subject key identifier: 27:31:18:92:FE:0D:66:57:FA:A9:B1:20:B1:21:85:AD:99:95:78:7F
Certificate issuer: /CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Certificate serial: 01D0
Authority key identifier: E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/JzEYkv4NZlf6qbEgsSGFrZmVeH8.roa
Signing time: Fri 01 Sep 2023 09:34:59 +0000
ROA not before: Fri 01 Sep 2023 09:34:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 396982
IP address blocks: 103.175.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464 (0x1d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Validity
Not Before: Sep 1 09:34:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=27311892FE0D6657FAA9B120B12185AD9995787F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3c:98:25:0c:30:a3:12:76:62:2a:b3:54:0b:
0b:0b:f8:7f:87:42:94:3e:70:c0:24:0d:20:6c:77:
02:02:15:e5:95:73:98:d2:cb:6f:f8:a1:19:f8:45:
09:fa:95:ab:8d:53:73:45:ca:b6:b3:31:60:44:d8:
16:76:4c:05:3e:6f:b0:96:95:ce:6f:dd:e0:56:2e:
2c:57:b0:a9:eb:a5:59:45:5f:41:be:52:b9:78:00:
d0:fa:1c:5b:d5:47:9d:a1:09:d8:b6:df:a2:2b:0e:
aa:78:0e:e8:50:fc:15:c6:04:dc:72:83:89:21:c1:
10:25:5b:8b:62:d0:b7:78:84:36:f3:77:8b:7b:25:
cd:8c:f2:8e:bc:a5:ff:b5:ae:23:82:fd:13:51:5c:
f8:ff:57:18:56:c0:c8:fc:e3:d5:ee:e2:ef:58:8c:
fc:1c:d6:c3:5f:4e:0e:e6:b6:6d:9c:3c:43:b6:73:
9b:1f:05:f5:d2:77:4d:2f:9e:45:66:fa:2e:fd:01:
98:8b:94:18:c5:3d:b3:06:db:27:a2:fc:45:9a:2e:
cd:ec:ef:e0:3f:0c:ea:6f:b6:2b:d0:55:c4:4c:f0:
b8:85:e0:61:4d:d1:d2:b2:8b:60:f7:66:95:31:fe:
c5:7e:d1:60:c4:15:27:a5:43:ae:36:6b:a4:ff:40:
97:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:31:18:92:FE:0D:66:57:FA:A9:B1:20:B1:21:85:AD:99:95:78:7F
X509v3 Authority Key Identifier:
keyid:E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/4ndJ6qVXvKVkWidePeCjr1NH98M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/JzEYkv4NZlf6qbEgsSGFrZmVeH8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.153.0/24
Signature Algorithm: sha256WithRSAEncryption
55:8c:78:3b:65:fd:e4:51:b9:3e:25:e3:69:38:4a:40:ee:ed:
bd:6f:34:12:33:96:fa:e9:11:43:ab:68:41:62:1d:eb:4d:9e:
d8:89:fe:f5:29:1c:95:52:23:f7:2f:61:a4:8d:90:0f:03:15:
70:70:b4:1b:0a:76:a4:bb:f8:9a:98:b4:77:b4:fc:3c:07:ce:
95:e9:a2:00:fb:7c:1d:79:dd:ba:55:34:ee:bf:b0:40:f1:96:
b3:1b:61:80:96:30:d0:c6:31:43:5b:68:bd:11:a9:8f:63:37:
70:30:2b:12:59:dc:38:34:79:df:bc:60:09:e0:76:c3:50:1f:
ba:f4:d3:12:18:ac:9f:e1:1c:87:44:5a:6d:7b:25:3c:63:d6:
1a:c2:a8:e1:ce:fd:ad:17:c1:f1:df:2b:95:6b:ac:cb:f6:c3:
f5:9e:64:8b:9f:54:11:75:0c:74:27:08:4c:fb:64:c7:67:df:
a5:10:06:f5:d0:0a:1b:f1:fa:58:4f:d9:2c:d2:1b:33:e8:81:
fd:c9:04:b4:86:e1:a0:6b:77:18:2f:7c:32:fd:4d:9b:2b:11:
a5:35:2c:c5:3c:5b:1e:cd:c5:18:64:fd:75:89:c0:1c:db:76:
9a:5a:32:77:cb:d2:d1:c5:90:a6:02:6f:8e:19:16:27:4f:9d:
73:26:bd:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org