Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa
File: oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa (raw, json)
Hash identifier: 4eUDS+iSgpLLWZhpVHi6wjjDi1oUEDPNJopxiTcw76M=
Subject key identifier: A1:32:D1:06:76:69:52:A8:48:CD:66:DB:5F:A0:E8:56:64:43:E6:9F
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: 0183
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa
Signing time: Fri 01 Sep 2023 08:30:02 +0000
ROA not before: Fri 01 Sep 2023 08:30:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38047
IP address blocks: 103.183.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 387 (0x183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Sep 1 08:30:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A132D106766952A848CD66DB5FA0E8566443E69F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:68:4d:2a:c6:95:40:d7:3b:97:96:00:c1:f7:
ee:54:6f:7f:e3:08:f7:40:99:31:7b:60:77:c6:cd:
f0:92:39:70:06:29:d5:b2:f4:6b:98:f4:cf:1e:86:
c4:d3:ea:a9:ac:99:f3:c3:3b:5f:47:be:b8:d5:54:
2e:7b:8b:0b:89:4e:af:7d:3f:8b:38:fb:2d:34:ed:
75:69:f3:e4:fa:d4:15:6b:67:0a:65:bb:ad:27:a2:
eb:30:75:3c:a2:93:0e:4b:b2:79:61:43:ff:b1:ab:
c6:76:27:34:1f:9c:19:60:d4:d3:66:c1:02:05:c1:
b3:aa:1a:2d:c5:65:7a:30:47:51:09:13:c2:48:8a:
5d:35:a1:05:1c:97:06:6a:70:79:86:ab:39:70:85:
1b:71:52:e8:75:a1:a4:cf:75:b8:fa:5b:be:33:b9:
ad:7d:85:bd:a0:05:d5:da:ea:58:07:fa:3d:9e:7d:
1b:50:f3:46:98:20:90:29:7a:be:81:e1:27:71:9f:
fc:f9:98:09:19:cf:dd:4e:87:92:fc:a4:05:91:74:
f7:d1:85:a7:d0:8d:2d:27:86:56:48:3e:8f:1d:84:
4e:91:c6:64:ed:2b:57:69:1f:d2:70:e1:44:d7:14:
9c:26:d1:55:e8:5e:a2:9a:e9:bc:72:f9:04:8a:0d:
17:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:32:D1:06:76:69:52:A8:48:CD:66:DB:5F:A0:E8:56:64:43:E6:9F
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/oTLRBnZpUqhIzWbbX6DoVmRD5p8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.183.79.0/24
Signature Algorithm: sha256WithRSAEncryption
95:e4:06:b7:63:44:13:8c:a4:0e:64:47:81:5a:a6:18:68:05:
45:9e:c7:b3:a0:87:38:c5:72:55:1e:6b:d1:b8:22:f2:a2:76:
dc:0e:3d:f0:d5:1d:8e:1c:fe:c7:57:7e:d6:02:f8:f4:d4:a3:
56:88:d7:e9:9e:b2:3f:5d:8b:cf:9d:48:4f:be:7e:89:09:76:
31:17:0a:e5:f6:d7:f1:10:eb:5c:ed:26:e0:1d:d2:ed:ce:02:
7f:6f:03:c7:6d:ca:f6:09:5a:9a:e4:bc:55:92:a3:c8:d0:f6:
0f:03:65:e9:28:f0:df:15:7c:7b:12:3b:fb:22:df:33:0d:5b:
27:33:4c:0e:17:25:81:b0:b9:3f:2e:52:4c:12:46:93:f2:ee:
52:67:32:26:53:b7:9e:11:84:4b:ca:31:36:9a:9c:4f:bd:01:
bb:72:34:ba:49:f2:c3:01:fd:1f:f5:fa:f1:45:e1:a0:ca:d4:
4a:e7:9e:e7:33:3a:25:a4:0c:94:55:6f:d3:88:8d:70:56:6e:
40:04:0e:94:69:5b:cd:30:cc:be:38:17:b3:bb:44:02:a5:b7:
da:29:80:70:3f:66:e8:98:ad:b9:22:70:19:5f:53:14:82:28:
d1:99:f2:7e:b8:bb:d5:48:a2:fb:c2:4c:81:b3:f2:00:aa:e5:
53:cd:00:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org