Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/7zUnTvTIVJD5III4XmZnnSF0sQk.roa
File: 7zUnTvTIVJD5III4XmZnnSF0sQk.roa (raw, json)
Hash identifier: SgTxV17VhpN26F+PNk/2hJecGDVp/w5FcM53IsOoiuc=
Subject key identifier: EF:35:27:4E:F4:C8:54:90:F9:20:82:38:5E:66:67:9D:21:74:B1:09
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C55
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7zUnTvTIVJD5III4XmZnnSF0sQk.roa
Signing time: Fri 01 Sep 2023 08:26:26 +0000
ROA not before: Fri 01 Sep 2023 08:26:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 103.224.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3157 (0xc55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EF35274EF4C85490F92082385E66679D2174B109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:9c:1d:87:21:66:67:5d:3e:dc:af:c0:80:
7b:8b:36:09:7c:c5:49:67:4f:b0:bb:c8:62:21:bf:
6b:45:08:73:7d:09:03:8c:35:af:54:e3:2c:76:d4:
53:e8:74:3a:84:00:2b:8e:ae:66:e1:ef:0b:c0:75:
2d:f6:86:f1:c8:89:40:d6:bb:b7:99:a6:18:c6:65:
56:65:42:53:4a:da:ff:5d:f0:94:31:cf:d6:83:d4:
e2:09:58:8d:78:29:48:56:05:9b:9a:c5:e6:dc:8a:
9e:0e:d7:ce:7f:76:5f:cc:f6:c9:90:86:5d:e7:70:
23:fc:db:63:06:9b:cf:85:c8:75:e4:74:d8:b3:4f:
2f:65:47:7e:1b:34:dd:9d:a5:cf:6b:d9:dd:7b:16:
0e:cb:c7:f6:6e:f8:b1:dc:9b:08:50:7e:73:ea:e5:
b3:40:64:61:32:7c:92:80:3b:bc:29:e8:59:d4:a6:
43:ca:46:8f:5d:74:87:71:f0:5c:51:56:4c:11:4d:
cb:92:9d:45:d0:d0:cf:6c:6b:33:8f:28:c8:f1:57:
9d:8b:eb:91:ca:2a:50:ab:6c:2a:62:79:04:8c:5b:
a6:42:5f:a9:10:3e:d8:0f:c0:f3:b3:bb:24:b4:38:
3f:46:3d:ab:e6:dd:1f:bf:86:51:9b:6c:8c:45:21:
e8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:35:27:4E:F4:C8:54:90:F9:20:82:38:5E:66:67:9D:21:74:B1:09
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7zUnTvTIVJD5III4XmZnnSF0sQk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.200.0/22
Signature Algorithm: sha256WithRSAEncryption
85:fa:d7:4a:ef:10:6c:3e:fd:34:cb:8e:fa:e0:23:49:5f:00:
ff:d5:a9:1d:60:78:f7:06:f3:9f:59:65:2a:26:0e:0c:ab:14:
49:73:a2:94:ab:ef:be:4a:4a:5e:db:0f:73:74:96:00:2e:49:
d5:58:bc:8f:2b:e9:68:03:36:5b:33:6f:c3:1e:1f:73:4f:f2:
b2:78:64:9e:c0:57:c7:14:da:08:60:2d:cf:30:fa:6c:f8:9d:
d0:0f:e7:12:ac:ab:44:5a:5b:a9:07:eb:b5:7c:f9:01:5e:18:
7e:bc:f8:c0:f1:49:83:1e:02:47:28:8a:55:18:85:0d:c1:9f:
1c:db:cd:e7:e7:2f:39:1f:1d:fb:b5:30:93:20:18:31:0f:fa:
ac:c9:62:8a:19:98:7a:40:99:85:e6:ab:25:7e:36:58:df:22:
b9:49:47:ba:d8:a0:5b:ae:3f:04:3d:63:87:e2:9b:d9:4b:c1:
db:08:80:84:10:3c:17:53:f3:4a:c0:05:c5:2e:76:01:03:d7:
5c:ca:0b:61:fa:56:a2:f0:d3:f4:de:64:bb:f9:ae:18:56:36:
ce:63:d5:fc:9f:ce:d0:b7:1e:ed:ff:2b:88:b4:e6:57:7e:39:
f0:92:0d:ee:c9:f2:67:3e:18:37:f3:19:f1:fb:47:66:9e:25:
8d:90:c0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org