Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/_16--vw8gOPMhqefpWH3I8LUrjE.roa
File: _16--vw8gOPMhqefpWH3I8LUrjE.roa (raw, json)
Hash identifier: sgUPUxBpqYQXojawfEfGy9EgQz/XjuOiWVWgWjmJOiA=
Subject key identifier: FF:5E:BE:FA:FC:3C:80:E3:CC:86:A7:9F:A5:61:F7:23:C2:D4:AE:31
Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Certificate serial: 0AF2
Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/_16--vw8gOPMhqefpWH3I8LUrjE.roa
Signing time: Fri 01 Sep 2023 08:25:07 +0000
ROA not before: Fri 01 Sep 2023 08:25:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131618
IP address blocks: 103.103.80.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2802 (0xaf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Validity
Not Before: Sep 1 08:25:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FF5EBEFAFC3C80E3CC86A79FA561F723C2D4AE31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:69:a0:51:80:3b:35:e6:7b:4f:5c:bd:eb:b9:
17:ef:5e:29:66:7e:11:1f:c1:6d:11:c6:dd:db:33:
58:70:cc:85:1b:32:dd:4b:4a:13:b7:79:29:25:40:
98:b1:8b:17:83:ae:34:0c:34:ae:cb:8f:02:b2:57:
8e:87:09:8b:3e:ec:88:ac:7f:14:5b:77:71:ec:f1:
54:08:54:16:b9:f7:6d:fd:63:6f:03:23:61:84:65:
1c:4d:3c:b0:34:c9:b8:a6:b0:44:5a:2e:74:41:13:
4f:bd:b4:8a:e9:44:b5:ee:e7:40:ef:16:b3:41:9c:
7a:62:45:64:e5:7b:bf:ac:b6:95:9d:32:48:ea:82:
aa:fd:dd:11:3a:75:af:fd:29:a2:b5:0d:76:af:be:
75:90:33:cc:55:99:03:cc:cf:4b:0b:92:89:cf:0b:
cf:2b:70:3a:67:d1:b1:ad:84:b6:1d:49:20:ee:b8:
76:8d:fb:a2:cc:06:3f:6d:e7:a0:db:fb:a7:3b:8d:
a7:c9:72:5c:7e:4b:06:3c:7a:03:82:53:5d:8f:cc:
fe:24:29:34:64:57:d9:9d:ae:fd:ae:36:28:d1:e4:
0d:c8:c2:87:d4:12:32:c6:99:1b:6e:f6:5a:69:63:
88:12:0f:d1:6c:30:27:a6:a5:7a:f2:a2:85:75:7f:
2a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:5E:BE:FA:FC:3C:80:E3:CC:86:A7:9F:A5:61:F7:23:C2:D4:AE:31
X509v3 Authority Key Identifier:
keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/_16--vw8gOPMhqefpWH3I8LUrjE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.80.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:b7:16:73:f9:f7:bf:99:79:dc:43:49:f4:b7:dc:a4:c1:3e:
d2:82:7c:6a:34:ef:50:3d:25:52:b3:26:b6:29:a7:94:2e:b5:
c0:02:66:41:52:8e:93:45:10:9d:7b:d8:06:86:6a:75:61:96:
ad:a1:dd:60:2c:d3:74:7f:ac:21:42:51:c2:3c:3a:64:e5:a0:
73:8d:1f:f9:4a:7d:7f:ce:c1:98:38:cd:d0:06:8f:45:1a:9e:
5d:7d:15:53:dc:d9:40:98:ef:9d:50:7a:03:7a:19:6a:dd:1f:
7f:52:c3:1a:51:c7:a5:1b:ae:b6:80:d2:81:47:36:09:e9:08:
6f:1c:61:7e:22:17:54:d1:3a:ce:7a:e5:d4:d0:55:aa:1d:b9:
97:bb:a4:11:54:85:41:ff:c2:a8:01:f8:02:8b:44:ab:87:88:
16:48:2a:35:c4:5f:e3:49:ed:24:de:15:99:e1:1d:0c:a6:dc:
5c:94:49:85:93:c8:80:25:f2:7a:1c:e4:25:a3:9c:53:60:d5:
b9:75:0b:48:56:eb:45:cb:bc:51:66:c4:7e:38:4c:db:fd:c7:
20:f1:1a:86:6f:47:1a:ae:16:c9:fe:06:ae:8a:37:0a:67:00:
36:ff:a4:e8:0c:76:e0:09:15:ff:37:92:27:f0:58:6b:c4:89:
cf:58:17:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org