Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/c0yiDKdsWsvnmkET03G4Si67Gt8.roa
File: c0yiDKdsWsvnmkET03G4Si67Gt8.roa (raw, json)
Hash identifier: LJ1AdrSTobitmcHLJFU7Ldp6k+jb5DdIBmI6+FFk0Lk=
Subject key identifier: 73:4C:A2:0C:A7:6C:5A:CB:E7:9A:41:13:D3:71:B8:4A:2E:BB:1A:DF
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0E02
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/c0yiDKdsWsvnmkET03G4Si67Gt8.roa
Signing time: Fri 01 Sep 2023 08:36:22 +0000
ROA not before: Fri 01 Sep 2023 08:36:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18424
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3586 (0xe02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 1 08:36:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=734CA20CA76C5ACBE79A4113D371B84A2EBB1ADF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:73:a6:f9:63:e1:13:19:f2:22:3c:62:5a:aa:
74:3d:21:eb:89:64:c4:38:86:ee:fa:29:5a:f8:99:
61:ac:09:c3:7f:15:49:e8:5d:1e:ee:46:f7:fa:ab:
90:e3:c4:40:b4:ba:0e:ca:43:60:2c:37:75:d4:e5:
cc:c1:00:90:2d:7b:4d:bc:8e:0f:33:08:2c:45:e6:
17:e9:70:ce:8a:f3:bb:ff:0f:cf:58:0d:9a:df:d8:
31:ef:cf:08:77:ab:74:c8:25:83:97:b8:bb:5b:b0:
24:14:99:f0:f9:66:a3:94:dc:5c:28:77:91:e9:4d:
b6:5b:2e:61:2d:24:5c:9c:fa:c1:8b:33:5e:87:bf:
d1:ef:50:bf:2d:b8:13:67:16:7f:f2:cc:31:d6:07:
88:f1:48:b7:56:f2:0b:fa:06:c7:1e:1d:f6:d9:fa:
53:9a:53:63:a0:93:08:23:76:a2:f0:3f:0f:4a:1e:
e6:6b:25:59:9e:9a:cd:1e:e9:c7:cc:f0:a3:f4:32:
4f:9e:9a:e1:9a:e9:1e:fb:c7:ba:b0:94:94:80:7b:
af:1b:73:fe:cb:5b:c7:fa:82:2d:76:e6:f5:7c:3a:
fd:80:2b:85:38:80:68:e3:3d:50:96:da:37:65:80:
2d:a3:d1:36:3b:89:c2:72:77:c0:7c:32:2e:71:68:
1e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4C:A2:0C:A7:6C:5A:CB:E7:9A:41:13:D3:71:B8:4A:2E:BB:1A:DF
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/c0yiDKdsWsvnmkET03G4Si67Gt8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:f8:cf:35:7d:9c:25:5b:48:bf:b3:e2:72:03:a1:3c:5e:19:
70:76:14:20:90:32:29:0b:61:eb:c8:20:3b:34:f7:95:db:2a:
c4:6d:80:33:2a:3a:51:1b:64:13:ad:b2:f8:ab:22:c7:80:f3:
fa:ae:e8:63:cb:30:dd:28:23:c0:82:fb:55:d9:04:d5:86:12:
90:e5:07:4b:dd:a9:19:88:8e:64:92:00:df:e6:43:68:a7:13:
41:a1:eb:8f:c4:1a:1d:5f:dc:f3:b6:a9:65:b8:1d:71:0a:4c:
d4:74:76:15:85:09:86:81:df:5b:6f:48:c8:92:8a:f7:8c:e6:
17:38:22:f5:07:f2:d7:56:07:03:ee:26:69:da:0c:63:d5:ab:
0d:83:1a:0e:96:fa:d3:a1:d2:b0:78:f3:84:01:14:5d:64:b0:
6b:d9:e6:82:91:cf:d4:4d:30:b1:65:3a:86:40:fd:19:b7:f2:
71:20:d5:7c:8c:92:9a:84:01:db:99:eb:74:24:ec:65:d4:00:
b0:3d:60:13:b3:42:e3:1d:6f:36:12:53:fa:f6:e4:32:21:91:
c6:8c:e7:63:d2:8d:1f:2a:e2:05:aa:19:a6:96:19:f8:92:49:
ce:f1:29:bf:bd:48:49:c9:0c:32:13:f7:d0:7e:ec:b8:49:89:
88:1c:2c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org