Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/z2e1y6ZRud8qcZ3K2BGW6gKpS_I.roa
File: z2e1y6ZRud8qcZ3K2BGW6gKpS_I.roa (raw, json)
Hash identifier: QoT2ylhUIEY762F7EmcxwOr4tbAaIX5EwLzx0uy9wq8=
Subject key identifier: CF:67:B5:CB:A6:51:B9:DF:2A:71:9D:CA:D8:11:96:EA:02:A9:4B:F2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10DA
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/z2e1y6ZRud8qcZ3K2BGW6gKpS_I.roa
Signing time: Tue 16 May 2023 08:36:44 +0000
ROA not before: Tue 16 May 2023 08:36:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 103.231.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4314 (0x10da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:44 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CF67B5CBA651B9DF2A719DCAD81196EA02A94BF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7b:e6:91:24:fc:fd:3f:02:04:55:2d:1a:5f:
48:9f:e4:f1:12:5c:59:10:f0:99:41:3c:4c:62:9e:
af:e0:83:eb:36:83:c0:e6:1b:50:72:62:bb:bf:8d:
cb:97:0a:4c:1a:d4:38:6f:f0:48:98:8b:31:fc:88:
3a:6b:b8:60:81:a3:b3:81:33:64:36:27:cb:41:df:
b0:65:6c:ce:9d:a8:cc:08:d6:da:15:c2:4f:7b:f7:
b7:ac:c6:4e:74:f3:88:76:02:50:e2:df:c0:40:14:
d7:d0:cc:fc:27:a3:b4:62:81:68:be:41:1b:f3:18:
54:68:39:e3:46:41:af:d2:88:b2:01:64:54:35:ca:
c0:d5:b8:fd:bf:0e:ec:4d:cc:5c:d1:a8:93:52:43:
30:5b:74:c6:74:bc:40:e3:16:9f:76:ed:07:0d:64:
7d:b0:64:ee:0f:4a:08:5a:8e:bc:9f:3a:ac:96:da:
3d:d1:fd:5a:3c:e7:2b:5f:ed:59:90:2d:54:f0:48:
b8:0b:62:dd:d2:43:ed:13:81:5f:90:f9:ab:54:89:
00:c8:b5:7f:5c:85:33:28:7d:1a:82:c0:3a:58:26:
7b:1c:f8:ca:d7:60:a2:77:bc:95:2c:72:a6:10:a4:
fa:96:f9:1e:94:9d:55:cb:af:fd:9b:07:43:81:83:
c2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:67:B5:CB:A6:51:B9:DF:2A:71:9D:CA:D8:11:96:EA:02:A9:4B:F2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/z2e1y6ZRud8qcZ3K2BGW6gKpS_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.231.49.0/24
Signature Algorithm: sha256WithRSAEncryption
03:1f:27:35:13:f9:91:0a:1c:2b:88:3c:70:a1:4f:73:c4:ac:
6b:58:a2:4e:54:62:01:86:43:98:6c:7e:fa:1d:8a:d5:f4:8d:
7d:fa:56:af:8d:19:13:1f:24:2d:b3:df:ec:a1:c6:15:e6:e0:
ca:32:63:93:a4:ff:4d:20:fb:59:cd:bf:71:32:13:1b:b4:75:
b4:d4:f2:00:15:39:a8:7d:18:f7:f7:5b:cc:98:a7:90:ad:3f:
9a:b5:f2:01:30:f9:61:6e:ea:d0:26:c2:38:30:c3:1a:40:f1:
e9:b5:fb:5c:38:ed:7c:68:4a:ec:04:fb:23:0b:9d:b8:08:98:
c2:64:84:b7:34:58:73:ab:1e:a5:30:71:e8:84:ed:9d:34:ea:
4e:0f:19:54:57:8b:a4:21:a9:0e:ef:d8:47:7f:10:cb:04:36:
08:05:19:7f:a5:de:b7:d3:92:70:05:41:37:f4:61:0e:32:1f:
a4:c9:cc:78:2c:99:fb:ad:4d:21:1a:d6:45:06:15:74:67:ce:
b8:7b:ac:c4:ee:05:65:19:37:c4:49:33:9b:55:70:76:d3:b5:
a2:76:3a:2a:4d:fc:66:bf:b8:ad:20:5f:e7:03:c0:30:1c:1c:
96:ec:e4:12:51:41:61:8d:aa:e7:84:9e:bd:4c:a2:89:5c:b3:
c3:ce:5e:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:32 2024 by rpki-client on console-fra.rpki-client.org