Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/17jyJ6NC0IBFiVFCmUdZBe4V9Oo.roa
File: 17jyJ6NC0IBFiVFCmUdZBe4V9Oo.roa (raw, json)
Hash identifier: 4nbvy979H4yWUfkR36nFkZOipdipqFRaEU/CR3uC0Ko=
Subject key identifier: D7:B8:F2:27:A3:42:D0:80:45:89:51:42:99:47:59:05:EE:15:F4:EA
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 01AD
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/17jyJ6NC0IBFiVFCmUdZBe4V9Oo.roa
Signing time: Mon 24 Jun 2024 12:47:53 +0000
ROA not before: Mon 24 Jun 2024 12:47:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38042
IP address blocks: 103.14.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 429 (0x1ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Jun 24 12:47:53 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D7B8F227A342D0804589514299475905EE15F4EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:58:6e:05:2b:60:23:36:ee:8a:a0:4f:4b:
f4:49:7a:7c:d8:f4:41:af:01:11:9f:41:7e:a5:fe:
47:95:5b:5b:f7:39:ac:01:ce:f7:9e:0c:9f:19:6b:
e6:0d:0a:f0:79:7b:78:e0:12:76:c4:7a:fd:c2:97:
3c:71:91:c7:22:42:7f:fc:ce:05:32:90:c2:2d:a0:
f2:0f:a3:56:3d:d4:68:8b:dd:3b:b4:d4:e9:e4:3c:
c5:58:99:a5:df:46:b5:20:a7:f5:4e:50:ae:e0:35:
70:6b:de:bf:e3:b9:97:ac:59:0b:b9:f1:a3:ac:dd:
90:27:15:84:4e:bf:51:0d:8f:f6:46:c0:33:78:fa:
0a:b7:c4:ea:89:cd:a8:b1:d1:78:62:52:b6:af:65:
5d:17:b2:e4:45:ce:ec:4c:81:2b:b9:16:43:19:81:
36:ad:73:c1:29:1b:ca:44:6c:d8:91:10:55:4c:71:
ea:e6:92:73:90:1c:74:f9:12:bd:da:33:c7:2f:ec:
cd:c4:2b:18:76:8c:ff:5e:bc:5e:ff:bf:84:99:d6:
36:d7:6c:ee:7e:1a:98:87:c0:49:5c:f6:c9:39:a9:
55:9b:aa:68:75:e6:1e:40:fa:55:ea:f5:b8:63:2f:
64:46:59:9b:6c:c6:ac:42:b6:72:35:b3:d3:da:f5:
50:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B8:F2:27:A3:42:D0:80:45:89:51:42:99:47:59:05:EE:15:F4:EA
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/17jyJ6NC0IBFiVFCmUdZBe4V9Oo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.170.0/23
Signature Algorithm: sha256WithRSAEncryption
74:f8:4e:96:8e:15:88:a8:3a:f5:c2:e4:23:44:79:cb:65:9a:
77:fa:11:ce:59:86:d0:40:f0:b3:3c:99:04:c8:02:0b:45:51:
0f:9a:60:e8:d1:31:8a:f8:14:f4:c4:8b:10:12:fd:91:1f:46:
01:94:bd:ef:14:8c:c5:01:93:05:21:6c:c8:7e:4b:6d:7d:a4:
7b:49:9b:7b:47:6d:89:b0:0c:6a:d5:1c:b1:6d:25:3f:b4:e8:
81:83:34:23:61:a6:65:30:40:2f:21:a5:61:9b:dd:be:88:7c:
2f:bc:94:c1:08:4a:9f:ef:ed:7f:20:d5:c6:2e:8b:9e:f9:85:
4b:fe:81:7b:5d:8f:65:15:98:9c:28:98:fe:d7:ad:7e:0f:e1:
e4:c9:7d:db:85:16:7f:88:83:03:e5:31:e2:97:7a:51:ef:a8:
be:0c:03:3b:71:7f:98:ea:1a:f4:04:70:b5:c9:71:1d:96:af:
67:cc:a1:84:5b:38:a0:39:6f:dd:6f:32:bc:b4:c1:69:61:46:
b7:a1:a4:2a:50:27:13:7f:dd:0f:e0:b2:be:70:68:0b:12:65:
fb:aa:e7:0d:47:36:b7:6d:9c:9e:2a:9e:28:ad:52:9e:6e:20:
fc:e0:de:82:b6:ee:0f:77:8c:dc:85:8a:f5:b5:95:b4:f0:51:
00:74:34:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org