Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa
File: ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa (raw, json)
Hash identifier: 6DngasE/4Kpt6U9hWuKZd5CQRPPwzeZisiJfQfelfxc=
Subject key identifier: 67:18:15:C8:A9:64:08:3D:DB:A5:4F:D1:BF:CE:90:92:3A:DE:D4:5E
Certificate issuer: /CN=93D96B0699BEBA157D50548029BC117929AD20E7
Certificate serial: DB
Authority key identifier: 93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa
Signing time: Sat 24 Feb 2024 15:33:02 +0000
ROA not before: Sat 24 Feb 2024 15:33:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.118.148.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 219 (0xdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93D96B0699BEBA157D50548029BC117929AD20E7
Validity
Not Before: Feb 24 15:33:02 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=671815C8A964083DDBA54FD1BFCE90923ADED45E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:da:b4:ed:a8:93:15:0b:40:b0:b7:62:5e:f0:
f6:9c:ff:fc:f2:e1:24:fb:49:09:a7:e2:cd:8a:3d:
c0:95:8a:7e:44:40:67:62:1c:ec:ed:75:bf:26:c8:
34:86:00:b1:36:eb:ef:04:6d:97:2a:ca:05:67:31:
4f:19:39:a5:9f:7d:fc:0d:24:26:d9:13:27:b9:13:
57:61:47:1b:90:1d:88:79:5a:f1:7d:8b:7b:6e:1a:
29:19:2f:6a:49:5f:7f:f5:ad:3e:fc:41:01:4c:06:
45:9d:6f:1f:cd:1a:9b:33:76:ed:fe:98:7a:2d:7a:
a7:f3:6d:6c:cc:64:61:74:f5:41:58:c5:d4:fa:79:
9b:2d:ef:16:ca:54:e8:7e:98:ad:7f:ec:97:fb:2f:
3b:fc:8b:11:aa:44:0e:60:f4:69:f0:91:d0:2f:30:
9c:f5:09:2d:9a:ca:92:43:68:2d:fc:8c:2c:01:f4:
88:a5:3a:4e:31:15:4b:d2:43:eb:b4:df:ba:e0:fe:
99:70:5e:f3:85:64:d6:d7:54:95:53:fe:27:0c:22:
4b:a4:d1:95:48:03:d7:5d:ec:98:33:66:73:bc:23:
65:3b:8f:f4:78:0b:0a:dc:87:98:02:76:51:5a:e1:
e8:6e:99:c8:59:76:06:2b:78:1f:d6:dc:56:34:56:
4d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:18:15:C8:A9:64:08:3D:DB:A5:4F:D1:BF:CE:90:92:3A:DE:D4:5E
X509v3 Authority Key Identifier:
keyid:93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.118.148.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:de:2b:24:80:ba:c2:4b:da:33:2f:87:ce:2e:1a:82:c2:f7:
df:e7:09:bf:d9:2a:db:f7:88:6e:d5:8f:f0:e5:31:e3:f7:e2:
e6:a2:d3:d1:03:45:9e:00:2f:4e:13:e3:fa:26:37:be:11:73:
0a:a0:b2:19:d2:14:a4:77:90:53:95:10:e1:28:8d:c4:42:da:
0a:c9:67:de:c5:a7:7b:3b:e7:90:58:58:00:ef:9c:f3:55:60:
6a:35:4a:e8:7e:95:c1:a1:41:40:02:bb:f8:dd:31:dd:de:32:
e3:e7:01:70:1f:80:08:2c:56:f4:90:de:58:31:33:bc:ee:cc:
a7:47:fb:28:ae:a7:3e:6c:b7:ab:98:d7:e7:d3:1b:a8:8a:98:
32:f8:28:4f:20:85:39:77:22:9a:e8:ae:d7:fd:f9:52:90:96:
2b:d7:97:94:3e:cb:af:fc:97:9c:c1:56:bd:e6:e9:ac:09:1a:
47:26:d7:f7:72:70:81:cb:24:4e:90:d7:93:7b:fd:3a:d3:73:
53:a2:e4:98:ec:11:0d:bf:a6:a1:66:79:2a:d5:0f:3d:91:a0:
5d:44:78:f7:36:c8:8d:8e:17:a6:51:03:c2:0e:6e:d5:29:d6:
9a:62:d4:ae:25:17:b8:69:1a:81:72:e1:15:9e:87:a3:f0:7f:
46:76:7a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org