Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/vZmo3-WO0bNshJZIcRp09gDu6No.roa
File: vZmo3-WO0bNshJZIcRp09gDu6No.roa (raw, json)
Hash identifier: A53ootDEC7KFBB0l1S8bN80+Lg2cQCCQsrrqL1HnZSo=
Subject key identifier: BD:99:A8:DF:E5:8E:D1:B3:6C:84:96:48:71:1A:74:F6:00:EE:E8:DA
Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial: 0AF2
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/vZmo3-WO0bNshJZIcRp09gDu6No.roa
Signing time: Fri 01 Sep 2023 08:26:11 +0000
ROA not before: Fri 01 Sep 2023 08:26:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131618
IP address blocks: 103.104.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2802 (0xaf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Validity
Not Before: Sep 1 08:26:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BD99A8DFE58ED1B36C849648711A74F600EEE8DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:fd:b2:2f:b7:7a:6d:69:36:60:24:f7:c2:cb:
47:d5:c7:58:e9:9f:bb:da:a7:ec:6d:17:ea:59:34:
01:3a:40:36:89:34:13:6f:af:79:17:46:b8:89:9f:
74:07:ad:3c:32:ca:37:5c:3b:fa:50:69:ef:5c:b3:
0a:3d:5c:14:25:6d:b0:c9:3f:5b:8b:ad:04:fc:8f:
0e:37:a6:63:d7:22:f9:d3:6f:e6:38:71:cd:a7:93:
de:b8:10:d9:ca:64:25:8e:71:80:f2:37:66:2e:e2:
1b:d7:2f:54:82:2b:72:4b:4a:03:c0:01:4e:0d:2e:
88:87:38:a6:cc:10:e9:b0:61:2f:87:0b:b8:6f:39:
a7:f6:6d:19:57:8c:63:a8:06:66:b4:9b:a5:5d:b5:
19:cb:1e:ee:ee:0b:0a:2b:fd:3b:fd:70:6e:d8:cd:
25:f2:7e:ac:17:40:a4:5e:2d:fd:2d:3c:e8:b1:a7:
59:a7:f0:e1:05:4d:4c:0d:8a:a3:cf:87:44:93:fb:
63:81:90:2c:49:cb:ba:b6:b1:65:d2:6f:cd:c0:d2:
fc:4e:64:b8:9a:85:0c:ca:62:06:69:ce:4b:ad:60:
0e:17:82:47:32:73:58:b3:2c:86:4a:09:08:91:d8:
2d:70:09:99:14:25:5f:b2:7b:e6:d9:e9:bb:93:d6:
b0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:99:A8:DF:E5:8E:D1:B3:6C:84:96:48:71:1A:74:F6:00:EE:E8:DA
X509v3 Authority Key Identifier:
keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/vZmo3-WO0bNshJZIcRp09gDu6No.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.151.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:6a:21:50:bc:4e:41:a7:be:ed:0e:83:9f:eb:a5:31:cd:0c:
c4:fc:55:77:00:f6:0e:da:64:af:6f:36:a5:57:02:93:bb:b4:
e4:55:01:d2:d3:e1:e0:67:8c:03:97:50:3f:19:45:2e:cc:b6:
22:6c:ab:47:04:d0:71:c8:1f:ed:86:cf:e9:61:e8:2a:e5:45:
47:dd:c6:53:24:f9:a8:d1:cc:99:62:86:89:99:e9:7c:2b:6c:
12:70:27:40:8e:5a:de:f1:05:31:c6:f6:3e:6f:16:a3:70:b7:
66:28:1c:24:17:9d:8c:b1:87:70:25:43:a6:d0:e9:61:27:ca:
a8:f9:fa:55:5a:45:ba:96:9e:b8:c0:09:be:f0:ae:d1:1f:5e:
e1:13:c6:5d:08:d9:f2:f4:66:90:08:ea:6c:9d:70:d9:b5:16:
e0:d2:d8:b1:6f:22:68:ab:9f:50:b1:9f:06:c1:15:a1:a4:5f:
76:98:1d:39:21:67:3f:bc:14:69:73:05:92:26:6c:38:97:a2:
25:b8:90:38:dc:04:fd:12:a3:26:ca:33:d5:7b:c4:8f:53:1a:
c3:77:97:45:62:19:c9:c1:20:07:56:55:79:be:38:ee:e3:19:
27:6a:af:a1:49:8a:07:2e:8b:64:27:20:43:9e:61:13:6d:52:
3b:5a:37:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org