Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/-FxfWKbPZPJcwcsmPcQxssgw9eA.roa
File: -FxfWKbPZPJcwcsmPcQxssgw9eA.roa (raw, json)
Hash identifier: nK8isc1l734PXlbZ2Mdto9K+F9LM87+cSoksLToeydQ=
Subject key identifier: F8:5C:5F:58:A6:CF:64:F2:5C:C1:CB:26:3D:C4:31:B2:C8:30:F5:E0
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 0AE1
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/-FxfWKbPZPJcwcsmPcQxssgw9eA.roa
Signing time: Fri 01 Sep 2023 08:30:16 +0000
ROA not before: Fri 01 Sep 2023 08:30:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131143
IP address blocks: 103.126.164.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2785 (0xae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 1 08:30:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F85C5F58A6CF64F25CC1CB263DC431B2C830F5E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1b:6c:39:62:0c:27:e4:28:d2:9d:5b:34:45:
19:a8:28:1f:b6:d3:01:13:fd:85:be:b3:f7:65:95:
65:f6:20:be:fa:1d:bf:ed:c0:91:64:ce:37:de:fa:
80:0c:a0:0e:fd:cd:da:3c:f5:ce:6d:4f:6d:1a:81:
ca:f1:fd:06:16:5e:12:a2:de:41:a4:ed:90:73:e9:
6e:a7:21:72:81:8f:89:2e:e6:83:4a:9d:28:92:77:
06:fc:b1:07:60:e9:1f:2c:1f:b8:77:10:c5:d3:51:
05:de:dc:49:ec:4d:3f:14:c1:c1:81:77:88:d3:1d:
b2:3f:58:d1:07:1b:f4:37:01:5c:5d:ed:97:eb:0b:
8c:ea:93:a9:41:05:6a:dd:89:70:7e:dc:6f:90:cc:
a0:af:aa:54:7a:a6:45:f0:9a:cc:fb:b5:de:ad:48:
17:2c:5f:fc:e0:22:9b:ef:1e:97:80:93:cb:4d:f2:
8e:22:aa:df:a4:49:2b:c5:c8:fd:2d:c6:6a:5d:6e:
a6:2d:7f:34:cf:70:f2:1a:05:1f:1f:82:1b:2e:8a:
65:70:4a:6a:79:f3:c9:4a:70:b5:72:91:03:f8:e8:
c4:fa:7d:9a:b1:3f:31:12:2f:61:fc:44:71:52:ae:
0d:5d:6c:d8:80:27:32:ec:98:30:0a:89:b2:94:d6:
e4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5C:5F:58:A6:CF:64:F2:5C:C1:CB:26:3D:C4:31:B2:C8:30:F5:E0
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/-FxfWKbPZPJcwcsmPcQxssgw9eA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.164.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:3e:a1:0d:7a:e8:da:47:b9:f4:d7:5a:c9:e4:f5:1a:56:df:
3d:67:37:60:0e:d8:8e:aa:a0:43:14:9a:0c:9f:fe:68:75:6c:
82:6b:73:65:cb:a9:4e:d3:29:ae:55:b8:60:46:4a:0f:aa:f2:
5f:82:35:d4:53:79:eb:1e:10:aa:db:6b:dd:c4:f9:a9:b3:f1:
58:5f:51:b9:56:e7:fe:c9:e3:2a:c0:b3:a1:94:ff:bc:4e:d0:
56:67:b3:a9:64:e7:2c:eb:d7:60:68:c9:2c:d4:d5:d2:dd:68:
c2:3a:c0:ae:aa:fc:5a:40:f9:ff:0c:10:68:4d:a3:72:d1:6c:
fd:af:8c:e6:a6:34:26:f1:fe:bf:7b:3c:44:48:86:20:94:cb:
ad:0f:96:22:21:b7:5b:cb:3f:17:52:f7:87:b4:fa:ba:4c:a6:
a5:93:bf:8d:4c:1b:ee:2e:8a:1a:d0:aa:7d:6e:b3:6b:8c:8a:
5e:20:30:03:f9:ab:45:59:94:75:c2:03:28:5a:28:00:d9:c0:
fe:b4:80:87:aa:8f:36:82:8c:24:35:f0:95:20:23:0b:3d:4a:
46:9b:6a:91:ea:d4:44:d3:b6:ee:5e:47:3e:13:17:04:ee:2a:
5c:79:01:c9:6d:76:af:05:e3:ad:46:ab:9c:aa:3e:f8:68:53:
df:62:22:f7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org