Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/ytOlwH_gsvio2-8K0DQucOBnVtI.roa
File: ytOlwH_gsvio2-8K0DQucOBnVtI.roa (raw, json)
Hash identifier: Mrm7vIec+q6TAuNEsvBeaVmrUbf9Pi1ru3KiHM9owuk=
Subject key identifier: CA:D3:A5:C0:7F:E0:B2:F8:A8:DB:EF:0A:D0:34:2E:70:E0:67:56:D2
Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Certificate serial: 0AD6
Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/ytOlwH_gsvio2-8K0DQucOBnVtI.roa
Signing time: Fri 01 Sep 2023 08:25:33 +0000
ROA not before: Fri 01 Sep 2023 08:25:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 103.233.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2774 (0xad6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Validity
Not Before: Sep 1 08:25:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CAD3A5C07FE0B2F8A8DBEF0AD0342E70E06756D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8c:ec:fd:dd:55:1f:06:51:7f:fe:83:52:98:
89:55:04:08:5f:bb:5f:26:f3:b5:1d:3a:ec:fb:0c:
bf:49:af:ad:c6:c3:0a:31:a2:ca:8a:37:eb:62:6e:
9f:43:e8:93:54:eb:d9:f5:9e:d2:2f:e2:44:f5:c0:
a8:1c:d9:e1:00:df:4c:b5:a1:67:ee:3f:37:d0:1f:
59:08:9e:61:45:2a:4f:56:ff:14:4a:24:51:d4:fc:
39:c4:e9:16:ff:06:7f:67:65:8a:b8:bb:86:a6:55:
61:12:15:c4:30:58:01:11:91:f5:6a:72:74:d4:0e:
9f:18:6b:28:4f:83:ed:ab:27:66:51:d8:86:c3:4a:
51:54:19:1d:89:55:27:90:bd:3f:f3:25:88:10:77:
c2:4b:20:49:9d:1c:97:45:03:a1:55:db:4a:6a:8e:
46:51:de:2d:c0:7d:79:5c:b2:66:ce:94:ce:ef:e2:
fb:a6:23:f5:49:9a:ad:98:38:13:84:dd:d4:b8:b5:
fa:59:1e:a7:31:1d:63:1d:76:2a:f0:35:f7:a7:3d:
62:d7:5c:c8:98:38:02:09:75:81:23:ef:b0:9a:d2:
a7:bd:c2:60:d8:ad:22:b6:4e:48:23:6c:b9:b9:12:
84:50:76:0f:ef:72:d9:09:77:c7:eb:fb:cd:3f:9d:
f7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D3:A5:C0:7F:E0:B2:F8:A8:DB:EF:0A:D0:34:2E:70:E0:67:56:D2
X509v3 Authority Key Identifier:
keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/ytOlwH_gsvio2-8K0DQucOBnVtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.233.68.0/22
Signature Algorithm: sha256WithRSAEncryption
00:51:94:50:48:0f:45:ca:4e:66:22:c0:a2:79:38:99:b9:4e:
ec:7b:68:9c:43:14:db:71:6c:18:b1:dc:66:e4:45:99:70:82:
28:28:d8:7e:8c:46:69:89:80:e9:c3:93:7f:20:24:eb:5d:3f:
aa:51:28:2a:ab:a6:3e:f5:50:0c:36:c4:63:04:95:74:81:00:
5e:da:11:9c:aa:4b:b0:11:aa:b1:93:16:98:9e:51:ca:ae:63:
d9:43:79:e7:92:00:75:a9:b4:ab:1c:eb:9a:71:b5:19:5c:8c:
28:13:da:b5:a5:30:71:e0:a5:77:99:90:38:0f:8d:1f:ad:16:
d4:cc:0c:0c:70:e7:b6:51:eb:fa:82:7d:82:7c:4d:50:46:14:
bc:19:54:db:ab:6b:19:03:7b:f1:2e:53:9e:84:ca:62:8e:a0:
ac:99:23:7c:7e:d7:55:f1:00:74:d9:37:df:c0:c9:c3:b6:d7:
bc:6e:f2:81:78:49:9d:5b:3b:7f:8e:d5:f2:67:b7:17:7b:50:
ac:ab:f0:1d:94:20:93:90:61:cb:1a:30:28:ae:63:f5:12:cc:
00:e6:33:21:7d:77:cb:5c:42:03:f6:a5:5e:e1:40:18:94:77:
a3:5b:92:cd:88:78:de:67:0f:68:9c:c4:de:f0:56:4d:77:96:
ef:34:c2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org