Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/ZVVmWWnlzvYDKi5TadGabFENpAk.roa
File: ZVVmWWnlzvYDKi5TadGabFENpAk.roa (raw, json)
Hash identifier: kl0MAfu0v7XqbLkVq98IHvBQupx7k97GfOgp2lx1Kps=
Subject key identifier: 65:55:66:59:69:E5:CE:F6:03:2A:2E:53:69:D1:9A:6C:51:0D:A4:09
Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial: 0AF1
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/ZVVmWWnlzvYDKi5TadGabFENpAk.roa
Signing time: Fri 01 Sep 2023 08:26:10 +0000
ROA not before: Fri 01 Sep 2023 08:26:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 135293
IP address blocks: 103.104.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2801 (0xaf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Validity
Not Before: Sep 1 08:26:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6555665969E5CEF6032A2E5369D19A6C510DA409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f0:62:74:43:9d:7a:80:3d:23:5d:16:a9:91:
ca:02:c7:78:2b:27:55:5c:d7:26:d7:59:13:eb:82:
d8:94:27:4e:53:66:e6:e1:82:4d:46:0e:17:b0:4b:
60:e6:bd:32:3d:05:34:2f:aa:79:18:2b:47:36:a5:
ed:39:86:78:14:e1:46:28:c8:cc:34:c2:b9:22:77:
d1:a9:2f:80:ad:ba:00:46:79:fb:43:d8:93:9d:ad:
79:37:f4:30:4b:77:9a:43:61:23:ef:77:0f:91:d8:
3c:03:d7:f1:66:61:fb:c8:5d:e2:61:99:19:f3:ac:
f7:3c:94:e6:01:d3:01:ee:db:6b:c3:6d:1f:1f:0e:
11:4b:b4:a1:2b:cc:a1:49:3a:b8:db:09:86:8d:11:
34:40:64:ba:56:61:fe:2d:c9:66:1f:4b:e2:e1:a7:
fc:25:55:36:2a:9e:80:7e:e8:a6:e4:af:ea:1a:8e:
bf:69:a4:64:01:da:f3:6e:ba:08:a2:46:cf:46:7c:
15:5b:21:cb:f9:b0:78:62:9e:09:c5:fb:61:98:94:
52:f8:73:4c:85:0e:86:8c:8d:dd:35:36:60:30:e6:
34:89:d6:03:88:e2:30:e8:16:4c:88:8c:c1:17:f5:
95:3e:e6:9a:f1:84:4b:2e:7d:c4:49:9e:aa:b4:fd:
8b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:55:66:59:69:E5:CE:F6:03:2A:2E:53:69:D1:9A:6C:51:0D:A4:09
X509v3 Authority Key Identifier:
keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/ZVVmWWnlzvYDKi5TadGabFENpAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.150.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:58:11:02:14:bc:8d:fd:4a:21:8a:5a:ad:e6:26:60:06:3a:
24:45:e2:c5:c9:5f:1e:06:33:f7:d0:ac:06:55:c0:94:39:74:
08:75:e7:a6:0e:4f:9f:9f:9a:9a:c0:72:7a:e5:31:ad:9d:57:
88:de:d4:e0:cc:59:17:9e:c4:f5:98:e9:70:da:e6:2e:54:7e:
7e:8d:06:18:38:a2:3c:bd:d4:00:76:0d:72:48:bf:38:5d:ca:
cb:85:59:e3:5a:86:58:33:8e:99:58:37:64:14:a1:4b:d5:74:
9b:a5:0b:e7:01:4c:f3:0f:e0:d3:78:bc:35:33:ca:64:83:48:
0d:08:6f:1f:b2:d1:9e:fd:e2:77:aa:41:9f:03:12:46:f9:fc:
84:e3:90:dd:8c:7b:05:31:c3:ce:a7:56:aa:2b:23:da:58:a5:
7d:a0:3f:8f:06:94:db:63:5c:db:5d:37:e9:04:4f:ed:36:70:
d1:27:e4:96:98:1a:5d:cc:0a:f2:c1:ae:b8:45:c0:0b:b2:93:
db:47:75:2a:fd:65:b7:1d:aa:8a:ca:03:88:e9:9c:0f:ef:dc:
03:58:ad:d2:79:e8:dd:da:18:1f:94:0c:64:25:46:33:bd:50:
7c:4a:40:f1:73:18:63:5d:0e:5c:e9:00:40:58:29:cc:eb:2b:
e8:45:f8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org