Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/eajR2APuXT_RVq-59vNEUw1D6OU.roa
File: eajR2APuXT_RVq-59vNEUw1D6OU.roa (raw, json)
Hash identifier: EakUG8loO6c7RbW8hX6Rj4h9166iGRdiMNSASwVphkU=
Subject key identifier: 79:A8:D1:D8:03:EE:5D:3F:D1:56:AF:B9:F6:F3:44:53:0D:43:E8:E5
Certificate issuer: /CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Certificate serial: 0C88
Authority key identifier: 36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/eajR2APuXT_RVq-59vNEUw1D6OU.roa
Signing time: Wed 14 Sep 2022 23:49:38 +0000
ROA not before: Wed 14 Sep 2022 23:49:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131670
IP address blocks: 103.140.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3208 (0xc88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Validity
Not Before: Sep 14 23:49:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=79A8D1D803EE5D3FD156AFB9F6F344530D43E8E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:d4:1f:b3:53:28:96:0b:c7:34:a6:a9:1c:
3d:7e:b7:d2:48:3b:d4:1a:20:72:5d:d9:43:17:e4:
e1:74:93:9b:0f:e4:67:69:30:c6:6c:d4:dd:46:a8:
5c:44:23:55:3c:ae:0f:0e:0c:b2:9d:81:b6:f1:b9:
0e:3d:a7:5f:c4:4f:50:ef:1b:c3:57:0b:8a:89:7f:
34:cb:ac:5e:dc:c0:89:ec:d2:fa:5f:68:1a:e3:ab:
0b:62:24:df:17:d7:95:10:f9:30:26:67:2c:95:3f:
46:4c:e1:03:3d:b6:bd:75:4e:35:3c:5f:7b:8f:66:
58:e1:df:71:a0:12:db:15:f2:e7:d6:f1:36:77:77:
61:75:f3:7e:19:cd:d3:5c:15:45:f1:6f:5e:e7:f4:
e2:2f:54:92:b4:ea:e3:6e:24:82:e7:23:8b:1b:3f:
9b:4e:82:f5:c6:20:83:1f:d3:f3:e2:ba:d1:d3:f2:
2b:ec:e4:8b:b7:6a:9e:63:b2:2d:ed:84:2a:ef:39:
41:21:06:17:ca:3b:b3:36:d9:3a:7f:7d:ad:5f:04:
97:19:6d:3f:94:f8:9f:4e:bd:36:94:b4:09:7a:0c:
4b:80:9d:3a:39:46:ab:7b:02:37:f2:b7:4e:65:5f:
56:c9:07:db:f0:6c:ae:12:23:96:26:37:f1:05:cb:
c1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A8:D1:D8:03:EE:5D:3F:D1:56:AF:B9:F6:F3:44:53:0D:43:E8:E5
X509v3 Authority Key Identifier:
keyid:36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/Nkd2xo-bbNyggOJrAfMYfgcvXJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/eajR2APuXT_RVq-59vNEUw1D6OU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.111.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:39:12:f7:d9:7a:fb:46:61:39:2b:c8:f8:97:10:53:27:36:
0a:8a:fc:79:ca:df:3d:4e:de:91:03:0e:4a:f5:58:87:44:c7:
a5:b6:7e:fc:10:8a:55:5f:02:32:dd:9e:6c:5c:94:57:ed:06:
48:62:26:42:cc:f8:a0:e7:8a:ad:ec:7e:06:64:4e:b1:c1:86:
ca:c7:ac:16:aa:d5:1e:69:c4:8f:3c:74:d5:22:15:e7:42:8c:
ce:78:95:7c:8c:79:e3:b2:fb:85:67:c7:df:b7:ae:01:50:2c:
69:f7:19:50:4b:57:3b:76:e9:2d:34:43:7d:ab:61:8e:73:39:
64:87:c3:67:d5:99:c1:d7:d9:7e:db:f0:56:47:fc:18:12:74:
1f:91:5a:5c:04:4b:c7:a6:25:a5:a4:eb:49:21:76:83:a7:c1:
ff:f3:e3:1f:8c:07:2e:cb:14:ba:bb:cb:c2:18:13:8c:f7:5e:
eb:31:4f:1c:2a:9a:ca:5a:46:68:a0:6b:e7:0d:1d:51:43:dc:
75:42:b7:de:b6:36:5c:0f:da:4a:27:aa:1c:de:1d:24:e9:ee:
05:93:d8:da:f3:95:ec:c1:cd:5a:29:ae:67:84:24:84:c8:b6:
77:2d:19:78:0c:c2:d0:19:4a:d8:7c:22:d9:ef:85:69:8f:84:
e6:f9:00:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org