Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/xP7gyPd69P1Cb_JM_o921nTxiuQ.roa
File: xP7gyPd69P1Cb_JM_o921nTxiuQ.roa (raw, json)
Hash identifier: jjQpDD6GRHEhEajuzHqX5TZiQiIqypi+80oQhywMQZY=
Subject key identifier: C4:FE:E0:C8:F7:7A:F4:FD:42:6F:F2:4C:FE:8F:76:D6:74:F1:8A:E4
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0BD6
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/xP7gyPd69P1Cb_JM_o921nTxiuQ.roa
Signing time: Mon 11 Mar 2024 07:49:23 +0000
ROA not before: Mon 11 Mar 2024 07:49:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131662
IP address blocks: 103.135.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3030 (0xbd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Mar 11 07:49:23 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C4FEE0C8F77AF4FD426FF24CFE8F76D674F18AE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:73:a8:26:fa:14:40:14:15:3b:76:2a:23:d3:
77:cd:83:11:b2:f5:e4:71:47:74:ac:e5:ff:be:cc:
49:01:86:3c:47:ed:e0:48:2e:d0:5d:a9:86:f8:43:
d5:6f:7e:ba:19:b7:c3:bb:4f:52:d1:29:41:af:7e:
d7:43:48:b8:c3:69:9c:dd:80:79:88:6e:8a:52:08:
2d:7b:64:6e:0b:0b:97:20:7d:cb:2f:d6:89:6f:d4:
37:9a:cf:d5:08:5a:c5:d0:24:cb:bd:fd:1c:82:06:
77:b0:bd:4a:1c:ed:21:80:37:08:e1:49:1f:13:13:
b0:44:5d:7c:98:4a:f6:b7:e9:e9:3d:12:a0:e4:b3:
19:f7:3c:0e:5e:72:d4:27:63:5e:07:64:e6:ca:df:
66:58:8b:88:b6:67:6f:04:dc:34:50:af:87:6b:c3:
f3:13:bc:8a:4f:d1:d9:f0:da:86:32:46:5b:03:d2:
a2:ea:23:60:64:42:8c:ad:81:8f:53:a1:a3:2d:6a:
da:93:aa:3b:5d:13:49:99:66:01:1d:90:4b:72:c4:
08:4c:72:fe:8a:06:53:8b:0d:88:a7:71:5a:47:6a:
60:fa:c6:29:f5:45:78:3c:ea:94:bc:c3:1d:15:9b:
09:bb:1e:01:11:ee:5f:7f:86:4a:28:9c:ef:a8:73:
f0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:FE:E0:C8:F7:7A:F4:FD:42:6F:F2:4C:FE:8F:76:D6:74:F1:8A:E4
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/xP7gyPd69P1Cb_JM_o921nTxiuQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.18.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:f4:bd:c0:5c:3f:24:aa:ab:ba:a6:f6:93:e8:ae:96:96:52:
72:6e:f8:c5:4c:e1:af:40:c5:92:f9:c1:29:c0:c5:ac:eb:11:
0d:5d:62:33:00:c6:52:c6:9f:a2:86:91:63:bb:34:07:fd:2d:
1a:ed:f7:b0:35:6c:21:19:12:26:dc:33:40:dd:bd:4e:7f:6a:
a8:f4:3c:21:d4:a0:f4:a0:23:77:11:8d:de:71:c4:38:0e:dc:
a3:68:1c:86:8f:32:a1:b9:b2:8f:01:99:dd:4d:76:cd:e5:a4:
d7:c6:b9:74:d7:28:f7:61:bb:1a:53:57:06:16:fe:de:86:b1:
01:ea:12:78:ab:a3:bb:e6:48:a7:15:9c:9a:38:99:1e:8f:14:
30:35:b5:fa:cd:98:c9:9a:d6:42:d9:bf:6d:25:d0:eb:f5:d8:
60:16:d5:9d:a9:93:ce:69:ac:55:af:50:ae:1a:11:c3:ce:be:
d9:8a:38:b3:01:fd:da:de:d9:f5:54:6c:ed:62:95:e5:9c:2f:
02:ac:80:cb:8e:a8:25:b7:dd:98:b0:d4:82:0c:45:c4:92:46:
70:2b:be:c4:ee:cf:c8:f9:4c:28:f7:5f:7e:e1:0b:cb:97:e7:
a6:ea:1d:72:a6:ff:24:04:2b:88:63:83:2c:1c:6c:f0:45:52:
50:9c:27:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org