Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AMZN/9lMjweJ5azeL5bKZ0H76RiuzM1A.roa
File: 9lMjweJ5azeL5bKZ0H76RiuzM1A.roa (raw, json)
Hash identifier: +BHCAxdl8qFpE5WWZkrBDU4pi1hwtLESa149e0EHGmA=
Subject key identifier: F6:53:23:C1:E2:79:6B:37:8B:E5:B2:99:D0:7E:FA:46:2B:B3:33:50
Certificate issuer: /CN=655679B564FF9DD15745A99C75189C02FC81258E
Certificate serial: F1
Authority key identifier: 65:56:79:B5:64:FF:9D:D1:57:45:A9:9C:75:18:9C:02:FC:81:25:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/9lMjweJ5azeL5bKZ0H76RiuzM1A.roa
Signing time: Thu 04 Jul 2024 15:34:12 +0000
ROA not before: Thu 04 Jul 2024 15:34:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7538
IP address blocks: 103.149.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=655679B564FF9DD15745A99C75189C02FC81258E
Validity
Not Before: Jul 4 15:34:12 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F65323C1E2796B378BE5B299D07EFA462BB33350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:22:7d:93:6c:fb:b0:16:34:67:c7:02:0e:
98:3c:d0:2a:55:f0:af:40:98:74:87:ef:a6:6f:23:
ef:77:94:38:b0:fb:05:79:b1:18:b3:b6:91:b7:f9:
b8:9b:41:34:50:35:be:82:28:85:b0:84:ef:62:95:
d0:9c:b4:22:59:bb:99:c7:27:bb:d3:ae:a7:d7:74:
62:c5:48:fa:92:e6:e4:2f:a0:d9:48:26:1d:27:b5:
7e:0a:fc:4f:72:3e:e5:f4:75:46:4f:17:fe:b2:0c:
82:7b:d1:75:c0:24:e3:90:b8:6c:b8:44:f1:2e:ba:
18:b5:d2:8b:6c:08:af:a5:c1:fa:3d:09:c9:dd:83:
b7:65:40:c5:8d:d3:40:88:70:38:cd:a8:fb:9d:7f:
1b:e8:75:91:8c:95:3c:2c:c4:da:48:a1:4c:0e:e4:
68:8d:d0:2d:97:0a:5e:bb:71:99:a2:51:a4:33:2e:
cd:4c:47:3d:de:f7:f6:11:67:6e:6d:f5:3d:92:fe:
50:de:ef:54:f2:b1:0b:2d:c0:63:cd:ae:01:8c:ea:
7e:84:1d:eb:c8:6a:4d:50:bb:42:74:e0:ac:da:9d:
0a:1a:34:a0:6f:53:f3:50:1e:36:ef:d7:20:dd:5a:
a3:4c:40:b0:01:71:80:f9:44:97:3c:69:7f:f0:fb:
49:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:53:23:C1:E2:79:6B:37:8B:E5:B2:99:D0:7E:FA:46:2B:B3:33:50
X509v3 Authority Key Identifier:
keyid:65:56:79:B5:64:FF:9D:D1:57:45:A9:9C:75:18:9C:02:FC:81:25:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/ZVZ5tWT_ndFXRamcdRicAvyBJY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZVZ5tWT_ndFXRamcdRicAvyBJY4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AMZN/9lMjweJ5azeL5bKZ0H76RiuzM1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.150.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:36:79:53:f3:95:7f:89:56:04:b9:dd:ab:79:39:15:92:88:
a1:12:26:eb:8e:58:28:9b:38:a8:01:42:13:ef:91:31:be:3c:
24:13:bc:e7:df:47:22:75:3b:07:24:63:cf:5b:68:64:e4:8b:
2f:e7:45:a6:69:c0:3c:3f:0b:1a:b2:76:b0:6f:3d:3c:0a:5f:
ac:18:e5:ba:e3:34:cf:a2:43:31:b6:3c:23:ea:47:bf:da:82:
34:9e:46:cb:99:9d:ed:94:ce:e4:e7:21:a3:77:cd:4e:ec:e3:
21:da:5c:f8:7c:e8:65:db:ac:aa:0d:4a:6a:dd:8e:90:f9:8b:
b5:3a:3b:4d:71:03:44:b7:a7:9f:33:e1:b2:ea:f0:61:e3:4c:
e1:9a:d6:31:9d:c9:ef:c9:92:93:40:40:78:a2:94:41:7b:24:
11:ad:e1:21:4e:86:b5:58:19:d5:1d:c8:f7:ab:b5:a0:ce:a5:
da:26:a5:0c:5a:4c:14:07:75:a2:bc:59:ec:e3:37:4b:45:37:
67:da:1e:d9:41:56:e0:66:6c:0d:c5:c3:f9:dc:ac:03:9f:36:
38:8b:e5:aa:1c:61:1d:a7:50:67:90:82:cb:fa:04:ca:df:ee:
89:be:df:a2:83:c3:13:f1:34:43:cf:99:18:d7:64:4c:5f:22:
d6:f8:98:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org