Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/WHdraKqyvdtNOCxghNzgVfw8mxc.roa
File: WHdraKqyvdtNOCxghNzgVfw8mxc.roa (raw, json)
Hash identifier: /aNnDt0S8ng1hkGFYQRTi/A2GWsm1uU9X6xx4u+ZZak=
Subject key identifier: 58:77:6B:68:AA:B2:BD:DB:4D:38:2C:60:84:DC:E0:55:FC:3C:9B:17
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0E09
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/WHdraKqyvdtNOCxghNzgVfw8mxc.roa
Signing time: Fri 01 Sep 2023 08:36:24 +0000
ROA not before: Fri 01 Sep 2023 08:36:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131641
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3593 (0xe09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 1 08:36:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=58776B68AAB2BDDB4D382C6084DCE055FC3C9B17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:1d:8a:f3:37:1e:fc:e5:e9:1a:24:c4:31:
71:6d:5e:02:43:c6:df:a5:1a:93:9c:8b:29:f2:b6:
d7:a1:d4:67:34:83:b7:f5:ee:04:2b:6e:6e:ea:bc:
f6:23:3a:29:ca:79:c0:0f:67:d1:29:a4:e2:cd:d5:
5c:f1:f6:fd:11:1f:82:78:44:5a:96:a8:1c:42:ae:
fe:8e:fe:02:38:f9:51:8e:3c:f2:f2:31:65:9e:4f:
c0:3b:9a:1e:31:61:64:29:fa:8f:c2:2a:3c:53:e4:
9d:5a:2c:88:bc:12:6e:6f:b6:6a:3c:12:d7:b8:06:
25:d6:0c:6f:b8:f5:b6:41:47:76:0d:0b:4e:0f:d2:
cd:a6:d2:17:87:6c:ed:d3:a0:51:c6:6c:10:ef:17:
4d:fa:86:6f:c0:ec:58:e2:b0:3c:b0:fe:4a:f5:bb:
dc:5f:15:34:3b:f1:92:46:b1:3a:99:23:18:71:29:
86:63:60:a3:c3:2f:15:87:89:5b:6f:a9:52:79:cf:
7e:00:2a:a7:c5:f5:07:d5:db:b3:3f:78:81:16:ea:
82:44:34:57:1e:26:f3:da:77:c6:a2:25:23:73:8d:
a3:b8:4a:90:cd:23:86:d3:ce:79:7c:8b:7d:dc:19:
db:cc:ec:42:45:86:f0:3d:2a:a1:d3:fe:a0:a4:7f:
62:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:77:6B:68:AA:B2:BD:DB:4D:38:2C:60:84:DC:E0:55:FC:3C:9B:17
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/WHdraKqyvdtNOCxghNzgVfw8mxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
83:16:69:01:42:4a:2a:e4:28:fd:d3:fb:8b:34:65:37:e8:f4:
66:07:ec:27:17:f3:05:31:d4:a1:1d:03:b2:bc:3d:61:09:2e:
67:f1:7a:10:27:b5:d8:b8:32:e8:df:69:fd:b5:52:a6:09:d0:
36:61:3d:ca:76:31:a9:4d:65:85:9f:df:c0:46:0e:a2:1d:ce:
7f:6a:48:2e:66:47:73:da:dd:24:cb:44:bf:50:ee:2f:0c:8c:
8c:a0:75:8f:6d:d3:0e:82:a1:7f:1f:85:14:32:a6:b1:fd:e4:
39:be:69:4a:4e:6a:9e:3e:9d:c2:f2:69:22:8f:42:50:f9:60:
fe:26:ab:3d:5c:42:da:bc:74:2b:a8:10:ec:fb:da:35:56:2e:
ba:75:26:b9:b0:6e:4f:59:18:bd:59:ea:07:e6:5d:a9:f5:50:
f4:82:80:9e:5c:a2:f6:30:cb:06:d1:7d:ca:55:92:19:ea:52:
6b:7c:b7:c2:c5:8b:fd:2c:9a:dc:d2:40:85:13:e8:6f:cb:b8:
52:e3:cf:d5:e0:d7:c0:58:57:f4:cd:d5:fb:76:de:90:67:2b:
6e:33:58:2e:a4:81:27:a6:a6:37:aa:47:88:4d:14:0c:95:4c:
7e:12:4b:a4:c8:be:b1:02:a7:b5:6b:6f:ef:f5:b5:ee:52:8d:
c9:89:4e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org