Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa
File: k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa (raw, json)
Hash identifier: XxK1nu0Tt8n3o4Q6VZYZlsvUHVPSp7xCgkDjluIK6XI=
Subject key identifier: 93:E2:66:81:53:3C:30:B9:17:94:EC:19:AE:6A:CC:65:42:7F:F7:1F
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0439
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa
Signing time: Fri 01 Sep 2023 08:03:44 +0000
ROA not before: Fri 01 Sep 2023 08:03:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7480
IP address blocks: 103.156.184.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1081 (0x439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 1 08:03:44 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=93E26681533C30B91794EC19AE6ACC65427FF71F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:83:8a:d2:4f:e0:88:64:71:25:db:cc:61:
9d:d8:51:50:08:81:40:52:ba:7d:88:54:5d:f9:80:
b6:bf:ca:7a:97:ee:dd:fc:f3:d9:5d:2a:c4:f0:65:
73:7b:6b:49:ce:db:a8:24:6d:9c:4d:63:4f:69:27:
01:cc:d6:19:a6:b3:59:0b:41:12:d2:90:de:54:ac:
43:7e:27:9a:db:a6:ce:e9:40:d5:91:8b:30:0a:8d:
d8:ee:8f:6a:30:28:6d:1f:0c:47:4a:f5:61:f2:d2:
ce:91:d8:0d:14:3b:33:b9:12:b9:b2:b1:c4:ef:7a:
73:19:22:0a:5a:e4:60:7c:ef:db:d5:07:30:dc:a5:
56:56:8b:2b:ba:f2:51:fa:b6:03:da:dd:0e:7d:81:
e0:63:fc:49:f7:26:0e:36:2a:8c:3b:2b:f1:69:81:
32:c7:63:c0:e9:7e:83:aa:f1:35:8e:af:12:8e:4f:
f0:80:12:77:9b:4d:ce:ad:73:26:85:99:f9:33:9e:
56:66:e5:d9:0e:fc:6e:43:11:1a:8f:41:44:9e:e8:
87:64:fe:aa:43:8b:ca:b9:7c:9f:62:cf:d4:88:78:
22:4e:14:77:07:32:48:99:1b:47:59:04:52:b7:0d:
82:e6:59:1d:21:94:c5:aa:54:d5:73:ca:f8:8f:6f:
c5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E2:66:81:53:3C:30:B9:17:94:EC:19:AE:6A:CC:65:42:7F:F7:1F
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/23
Signature Algorithm: sha256WithRSAEncryption
67:e4:61:6b:c8:38:1e:98:1c:78:d3:87:19:70:ca:26:ee:02:
e1:24:1b:1a:cc:ef:91:3d:18:a8:34:4a:1b:17:2f:10:2d:dd:
ce:b8:bb:dc:0d:bc:fa:61:65:10:fe:ee:75:5d:98:0d:dd:e7:
8d:0e:91:fe:ed:db:6e:ae:2b:33:c5:2b:17:7e:ef:f6:10:89:
67:4e:ce:13:a9:5a:ed:4a:b0:7f:0b:90:b3:16:08:80:18:42:
ec:e9:04:8b:d8:79:28:ba:bd:c6:b9:bc:37:15:17:7e:9f:43:
69:d6:ea:24:21:d1:d4:16:d9:85:3b:61:ea:25:80:bb:fd:9f:
1a:d1:8c:17:b3:e9:4c:36:ed:a3:85:aa:86:68:a6:26:58:54:
2a:bb:1b:83:66:16:3f:ac:aa:05:ad:9f:fa:a1:52:73:dd:6a:
88:e8:92:fe:26:e3:ad:50:cd:38:37:f6:22:c8:b9:74:40:ce:
ec:8b:8f:e2:64:c7:50:07:a1:bb:a8:73:10:d0:13:d6:d2:5f:
97:da:c9:18:42:92:cb:bb:14:c4:fd:6f:3a:46:ad:e7:32:03:
4d:a7:06:49:9d:df:c7:4f:8d:41:33:4f:da:3a:87:0f:9c:b5:
eb:e2:c7:f1:9e:f2:77:af:04:14:7d:44:ad:2e:61:f5:5e:24:
a4:ff:f4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org