Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/H8DlGZFTDoRddHxKcanob_Z_X2Q.roa
File: H8DlGZFTDoRddHxKcanob_Z_X2Q.roa (raw, json)
Hash identifier: NR8NIdoujT6eMp576QYB2BklOx2Dtn9DsYKDAwTRetg=
Subject key identifier: 1F:C0:E5:19:91:53:0E:84:5D:74:7C:4A:71:A9:E8:6F:F6:7F:5F:64
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10A5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/H8DlGZFTDoRddHxKcanob_Z_X2Q.roa
Signing time: Tue 16 May 2023 08:36:26 +0000
ROA not before: Tue 16 May 2023 08:36:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 103.231.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4261 (0x10a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:26 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1FC0E51991530E845D747C4A71A9E86FF67F5F64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b8:79:a4:10:6f:82:bf:93:a1:44:21:8d:e5:
29:09:30:b5:42:7c:04:b0:c5:a4:b0:68:31:0a:97:
dd:cc:79:9e:4b:a8:35:1a:02:d3:fb:45:87:8c:90:
29:82:d5:be:4a:14:5c:a2:17:cb:5e:1b:8e:e6:11:
bf:6b:d4:84:7b:e4:b7:4a:4b:bd:a5:bd:e4:73:21:
ae:14:58:75:1f:61:46:df:dd:50:bb:3d:32:1a:d1:
fa:a1:fc:d4:27:a0:29:74:7d:ed:da:7d:dc:67:c3:
ee:49:f4:16:44:00:19:a0:1b:d7:30:68:cb:30:ba:
83:26:d2:11:f0:79:0a:1b:f4:6a:4f:b1:89:5a:9d:
c5:82:21:1e:a6:38:f5:43:80:40:f7:09:18:2c:25:
86:c2:1b:df:5f:c1:57:8f:ac:77:f9:50:7d:2d:fe:
9e:4d:b6:71:9c:a7:85:7c:a5:e1:e9:34:5e:c3:3d:
8f:13:50:8c:4b:98:c7:2f:6a:dd:10:4c:ec:de:15:
59:30:55:50:ed:e5:a5:fd:2b:89:21:a8:9c:85:91:
78:1c:e0:21:66:ec:d3:2b:e0:66:5e:f1:05:51:a7:
bf:43:bb:be:b3:08:ce:d0:f6:88:8e:11:a2:30:a9:
db:07:3f:e6:00:21:74:84:b4:a1:1e:a6:21:0b:57:
6c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C0:E5:19:91:53:0E:84:5D:74:7C:4A:71:A9:E8:6F:F6:7F:5F:64
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/H8DlGZFTDoRddHxKcanob_Z_X2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.231.48.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1e:ae:82:2c:5e:2d:f0:10:4c:c5:ff:7b:6d:48:86:c5:4a:
f4:1e:2e:e6:2f:99:38:83:bc:5d:36:98:c4:bd:33:90:3c:aa:
95:38:96:78:d1:fa:78:75:3b:3c:fe:fe:3c:dd:0a:8b:cc:cb:
12:5f:e4:ad:37:df:15:3d:3b:09:e7:be:5f:4b:3b:9d:09:6c:
d2:67:90:cf:f8:d9:dd:11:82:8c:22:36:f9:75:c5:5d:d5:20:
36:e1:99:57:30:0c:d0:cd:8b:d1:1d:7b:9a:b0:95:c0:b5:9b:
50:f5:81:4e:be:ed:e0:34:da:7c:83:af:12:30:30:e4:66:12:
07:ea:ad:fb:b5:f9:b3:7b:7c:7c:76:93:20:f0:ff:48:73:d6:
ba:0d:94:34:1f:c3:00:f3:20:8d:ac:60:5d:ca:f2:09:ea:2f:
0e:21:a8:b4:22:3c:4b:2e:74:e8:3a:19:e0:25:4a:c2:4f:f1:
2c:fd:68:eb:d6:23:c3:f9:cd:eb:fb:30:8d:f2:f5:c8:94:bf:
43:10:2d:6c:34:84:e6:9e:08:bb:12:b3:56:be:1a:de:54:c1:
cd:cb:d3:39:ab:2e:43:9c:c4:6b:85:48:f8:aa:9e:68:90:de:
69:b5:e8:48:84:1e:5c:b9:d7:18:7f:7c:1b:c4:c0:34:b4:d2:
cf:35:8b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:00 2024 by rpki-client on console-ams.rpki-client.org