Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa
File: zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa (raw, json)
Hash identifier: nbNRr9mC/NCh1L0lCg8JFqoMj2bN6JywlKbMwb8kDR4=
Subject key identifier: CC:6B:19:D1:04:2A:44:7D:C1:42:DE:4E:D8:C6:25:10:75:FD:9F:B1
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0B4D
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa
Signing time: Fri 01 Sep 2023 08:35:11 +0000
ROA not before: Fri 01 Sep 2023 08:35:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2893 (0xb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 1 08:35:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CC6B19D1042A447DC142DE4ED8C6251075FD9FB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:d2:79:51:b6:54:17:fb:19:f3:db:a8:5c:
d2:e3:0c:62:3f:0e:e7:61:33:a7:18:08:6e:fa:e7:
a3:d6:c6:06:d7:cf:95:e7:e2:55:c3:13:d9:85:c2:
40:6c:39:1c:c2:fa:63:3b:05:07:4f:9f:cd:72:0d:
7b:04:01:60:4f:a7:69:b1:6d:25:4d:f5:58:da:1e:
4f:f3:0a:af:d9:63:a1:ff:56:f8:e3:f2:15:77:8c:
8b:9f:5c:a7:08:2d:72:b5:28:a4:bb:56:82:60:41:
09:58:a5:89:7b:5d:ec:58:53:da:25:de:46:44:bc:
cd:a1:3e:9f:3c:7f:5d:50:44:1c:bf:b4:2b:0e:fc:
d0:20:53:f9:b9:7f:0a:7d:83:eb:a2:51:09:a6:04:
d7:ba:0b:a4:ee:8a:9d:25:9c:6d:4d:11:37:32:c2:
f6:63:35:5c:c4:51:eb:5c:e4:1a:bb:29:79:47:d9:
84:2b:de:fe:d0:ea:1d:a1:8a:e7:4e:11:c1:39:43:
5d:12:f0:76:6d:cd:2c:56:52:5a:24:64:3f:13:c5:
cf:7c:d1:2a:f3:b8:ad:b6:8d:2e:7b:6a:7d:a0:e0:
9f:8c:6c:ec:a9:10:08:35:2c:bf:b3:52:86:02:23:
e2:22:32:1f:6a:47:c8:d1:e4:b6:6f:34:94:a3:77:
2a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:6B:19:D1:04:2A:44:7D:C1:42:DE:4E:D8:C6:25:10:75:FD:9F:B1
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
d4:cd:e5:05:e4:ef:96:0f:97:91:58:80:55:e3:04:14:80:4c:
c8:a8:e4:57:61:8c:ec:a2:cf:9b:93:c5:c9:4e:ea:cb:29:ff:
c5:dc:c2:75:15:0c:63:1d:ad:90:52:3f:73:b1:fb:23:a7:0b:
69:3c:25:70:34:b0:cc:c5:45:9c:f1:d6:42:03:b6:61:71:21:
b7:54:17:9d:95:46:cf:ca:90:db:77:2b:70:7b:ab:8d:a0:9a:
bd:61:7c:9b:73:e4:8f:3f:86:83:da:23:80:d0:d2:9b:56:44:
b3:35:8c:b3:e3:3b:70:e6:9e:55:1d:0b:c4:42:71:19:70:da:
30:20:9d:dc:ba:cc:06:4e:59:75:60:65:fb:a0:72:df:f8:8d:
dc:4f:bb:1e:56:4d:d8:a1:1a:a9:d0:4e:58:62:e3:24:dc:ac:
c5:57:d4:b1:51:cd:23:9e:52:c3:0d:42:07:cc:34:c9:79:1c:
50:4f:b5:18:93:9e:90:6b:44:42:ba:f4:21:df:e1:e3:bb:56:
77:be:6f:30:7b:3d:72:17:96:88:67:a3:e8:65:c9:64:8a:d7:
79:a4:51:15:d3:8c:ec:e9:93:08:23:56:00:35:a5:2e:8c:c9:
e9:9d:34:35:79:36:7d:5c:d8:6c:b0:62:4e:37:5f:5b:fc:e2:
2f:a4:e5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org