Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/qTgC4LpcWQtLMFQ4z_krGhLjsgI.roa
File: qTgC4LpcWQtLMFQ4z_krGhLjsgI.roa (raw, json)
Hash identifier: 1+jKjcSmmLH+nJcy/5rotBr1yNa4K8FKGPXIZjYgpz4=
Subject key identifier: A9:38:02:E0:BA:5C:59:0B:4B:30:54:38:CF:F9:2B:1A:12:E3:B2:02
Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Certificate serial: 015F
Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/qTgC4LpcWQtLMFQ4z_krGhLjsgI.roa
Signing time: Fri 01 Sep 2023 08:28:34 +0000
ROA not before: Fri 01 Sep 2023 08:28:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63895
IP address blocks: 103.185.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351 (0x15f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Validity
Not Before: Sep 1 08:28:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A93802E0BA5C590B4B305438CFF92B1A12E3B202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:79:ef:87:00:cc:e3:8e:70:6e:9e:0d:a2:4a:
c8:09:f5:73:be:72:6f:e4:50:a9:2d:9d:f1:82:79:
07:6b:ce:c5:39:f5:2b:f1:93:b5:12:3d:14:83:3a:
d3:af:98:a2:9d:c2:3f:5f:63:31:37:8f:e3:b5:1c:
c1:3a:22:03:32:ab:e3:39:54:8e:05:a7:49:41:4c:
14:cd:c1:ba:a5:e5:65:4e:04:73:98:a4:36:e2:0e:
2c:8a:a6:ca:66:c7:61:18:6e:9e:8f:c5:55:ef:83:
87:5d:27:3c:ae:d4:82:4d:b5:af:e3:30:d5:8f:7e:
cc:17:02:34:7d:1f:93:37:14:74:07:2b:50:31:52:
58:13:9d:b7:b1:c6:b2:37:eb:f9:b7:6c:34:48:71:
1a:41:e0:ca:66:dd:1d:43:89:e3:7b:47:a3:11:7f:
12:aa:85:fb:56:6a:63:85:10:0f:d0:e9:b0:50:23:
aa:8b:24:f1:bd:eb:7d:00:00:f0:25:71:18:4a:c7:
f5:d6:28:0d:6c:9a:c1:4e:44:a9:62:c5:7f:e9:e5:
32:f9:86:bc:14:a6:96:5e:c6:22:78:07:87:e9:be:
72:63:49:e4:a2:fa:b6:c6:b5:a3:b1:57:f7:34:82:
ed:59:1e:46:21:27:db:4a:43:70:74:fd:af:1b:b6:
ae:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:38:02:E0:BA:5C:59:0B:4B:30:54:38:CF:F9:2B:1A:12:E3:B2:02
X509v3 Authority Key Identifier:
keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/qTgC4LpcWQtLMFQ4z_krGhLjsgI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.28.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b6:7c:bb:bc:ac:cb:f6:ad:5d:af:2d:2f:c2:ed:ea:be:23:
a9:65:e7:28:33:2e:11:ae:7f:c1:ff:7e:2c:01:0b:13:20:3a:
94:29:27:5c:16:24:65:24:50:f7:ea:c9:f0:d9:5d:00:cc:e3:
d6:f3:6e:e7:05:6e:b2:41:1f:84:dc:c6:e9:b9:66:40:4e:6b:
d1:2e:b3:73:93:c7:b2:f0:f1:7e:70:4b:be:da:b3:35:fe:68:
49:b1:13:0d:25:62:57:f8:2d:6f:f8:9e:44:2c:a3:89:c6:9d:
26:80:93:5e:30:4c:1e:ea:8f:e7:a3:97:9b:ef:cd:61:ea:c0:
17:76:08:24:ae:9c:3a:22:cd:7c:b8:13:9c:23:d3:ef:f9:57:
95:fb:87:9b:78:17:2a:2a:9f:30:49:f2:e3:c0:e7:62:40:a1:
9b:f3:d6:44:b9:06:10:53:69:54:4e:55:e3:4c:ea:24:a7:ee:
6b:6b:0c:4d:0e:23:d4:3b:cb:9f:f2:41:38:17:c7:6a:80:55:
f3:36:03:09:ed:55:a2:6d:d1:a0:3f:e7:c2:6f:f7:b3:e1:3f:
61:e6:4d:fa:ae:24:9f:85:8b:35:bc:ed:b6:3d:17:3e:e5:cf:
9f:16:de:24:ae:be:8e:b1:6d:9a:e2:23:23:ba:5e:8d:a2:db:
df:7b:97:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org