Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/1aN0rjqgMD4a0aGGQpPZagFI65I.roa
File: 1aN0rjqgMD4a0aGGQpPZagFI65I.roa (raw, json)
Hash identifier: WFo5KewO6Fj+lTfI3R5NlbPgVwnd13g84UVuTD7OFKM=
Subject key identifier: D5:A3:74:AE:3A:A0:30:3E:1A:D1:A1:86:42:93:D9:6A:01:48:EB:92
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0B2E
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/1aN0rjqgMD4a0aGGQpPZagFI65I.roa
Signing time: Fri 01 Sep 2023 08:29:48 +0000
ROA not before: Fri 01 Sep 2023 08:29:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 103.123.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2862 (0xb2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 1 08:29:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D5A374AE3AA0303E1AD1A1864293D96A0148EB92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:68:79:54:b2:c3:4e:28:35:03:93:f9:0c:
59:a7:09:a9:82:00:38:bc:89:40:d2:89:20:ef:84:
56:07:eb:f8:5e:47:d3:17:00:32:9f:ed:41:fe:85:
c6:b7:7f:e1:fb:fd:d8:76:67:13:0a:24:03:c0:e6:
f4:cd:c9:e7:8b:c9:77:3d:57:48:36:51:17:fe:ca:
e8:d0:1f:7a:5d:6a:da:89:db:5f:cf:38:f4:7f:d2:
4b:5b:dc:0f:07:d4:4b:2e:01:80:49:5e:b0:e8:3e:
df:3e:67:19:6f:fc:d3:f3:32:5e:45:d1:f2:9f:1f:
5c:4d:af:e6:a1:62:e2:22:67:fb:7a:50:70:02:3e:
7a:87:19:50:98:18:19:bf:4c:ae:3d:3d:4e:75:53:
00:9f:0d:bd:58:d2:70:8f:4d:20:33:10:e0:df:c6:
3c:0c:02:e7:94:8a:50:ab:f8:25:d8:03:21:32:cf:
eb:59:08:3f:ce:d5:de:93:eb:c6:b9:54:99:7c:22:
ab:e7:f8:82:ec:bd:c5:4c:2a:3a:8d:f1:1b:53:4f:
ed:69:16:38:bc:b1:c3:64:2d:94:3b:71:e3:2f:89:
6a:8d:b3:6d:1c:78:33:70:2a:e3:2f:fc:56:db:81:
3c:f7:34:29:fb:18:e5:be:78:18:48:f1:2c:47:bb:
3c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A3:74:AE:3A:A0:30:3E:1A:D1:A1:86:42:93:D9:6A:01:48:EB:92
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/1aN0rjqgMD4a0aGGQpPZagFI65I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.188.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:73:df:75:a6:76:37:e8:f3:20:49:64:bd:88:ca:47:f1:a4:
ec:32:d8:50:cc:5e:98:08:ec:97:05:81:87:84:ff:cc:32:37:
ed:47:da:a2:97:51:aa:23:1b:9b:44:6f:6f:26:fc:9d:93:63:
60:f8:fb:b2:4b:a9:79:e0:43:79:ef:57:d5:cb:a0:65:f1:dd:
c3:d6:29:bd:90:59:e0:e4:94:c8:56:1e:16:ff:50:c1:ca:1c:
68:80:79:41:58:20:6f:3e:b8:d7:ba:1f:ba:4e:63:fe:c4:e3:
ff:0b:9c:ff:6f:29:b1:33:2d:5c:7e:40:f2:92:4c:2f:47:af:
0c:97:a7:5d:bb:4d:29:c1:cc:7b:c1:aa:8f:9d:4e:1c:78:20:
f2:2e:3f:4e:df:aa:cd:6d:31:76:a3:ab:12:a1:da:cc:97:6f:
b1:df:6a:7e:06:3a:8b:0e:93:b2:f3:6b:54:f3:c7:d0:81:d2:
89:09:4b:2e:6d:0a:94:ec:3e:75:12:87:da:74:2c:bd:90:8a:
5a:44:f5:f3:f2:06:2f:5f:87:22:28:d0:97:60:a1:70:62:64:
c9:66:a7:63:a8:76:f6:22:b1:0d:16:ab:0b:12:79:0d:4e:a8:
6f:41:23:fb:60:71:3e:b3:df:7d:39:b0:16:c0:ba:31:3d:39:
32:77:63:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org