Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EHHKY/yLWt4hd9qCwA4ixHawtsdZzUNQw.roa
File: yLWt4hd9qCwA4ixHawtsdZzUNQw.roa (raw, json)
Hash identifier: phdqnklUixftCuOy+3QroxPwRv9aBeq/5mvCAKFM0xk=
Subject key identifier: C8:B5:AD:E2:17:7D:A8:2C:00:E2:2C:47:6B:0B:6C:75:9C:D4:35:0C
Certificate issuer: /CN=8302DE193598EDC36222D929FAD6678367D62E21
Certificate serial: 1146
Authority key identifier: 83:02:DE:19:35:98:ED:C3:62:22:D9:29:FA:D6:67:83:67:D6:2E:21
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/yLWt4hd9qCwA4ixHawtsdZzUNQw.roa
Signing time: Fri 01 Sep 2023 08:49:01 +0000
ROA not before: Fri 01 Sep 2023 08:49:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 103.130.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4422 (0x1146)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8302DE193598EDC36222D929FAD6678367D62E21
Validity
Not Before: Sep 1 08:49:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C8B5ADE2177DA82C00E22C476B0B6C759CD4350C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:cd:69:1f:c6:d0:b0:6d:46:c9:5c:ee:9f:
7a:0f:31:65:70:13:38:af:73:a3:35:4a:0b:d5:e2:
15:d5:36:93:de:8d:68:07:47:2d:0d:6f:28:18:fb:
ef:24:86:d0:77:28:30:77:a5:45:25:d4:ef:7f:5f:
4f:ae:fa:4b:37:c0:89:9c:36:0d:c0:88:3b:8a:e7:
43:d7:b3:49:ef:7e:4a:a1:76:9b:6c:e4:8c:62:df:
e7:67:65:00:05:47:4b:1a:93:f6:17:cd:ee:a1:f0:
d3:13:c1:08:f9:f3:28:b7:a2:5c:3d:21:1c:5d:97:
b7:ba:bc:9d:95:28:ee:a8:54:a3:68:6c:ae:5c:b3:
8e:0f:b2:1e:d8:9d:a7:0d:bb:c3:67:bb:cc:6d:4e:
3e:d5:23:01:7d:6a:d1:2c:68:aa:81:c9:5d:ad:6d:
a5:b8:cb:96:c9:7f:74:7e:14:58:df:90:fe:6e:9b:
66:50:db:41:ba:ff:b0:b9:1e:67:11:ee:00:26:09:
aa:70:23:0c:1a:f4:f0:b3:58:a8:13:e0:d4:8f:9b:
8a:c8:19:5a:54:a5:12:d5:fc:ed:e1:4f:e5:df:91:
e4:5f:49:88:3b:6b:e6:a9:e9:ff:70:f9:c6:a8:1e:
b4:cd:6e:77:f4:ce:52:3c:07:cc:dc:0b:4a:15:64:
f0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B5:AD:E2:17:7D:A8:2C:00:E2:2C:47:6B:0B:6C:75:9C:D4:35:0C
X509v3 Authority Key Identifier:
keyid:83:02:DE:19:35:98:ED:C3:62:22:D9:29:FA:D6:67:83:67:D6:2E:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/gwLeGTWY7cNiItkp-tZng2fWLiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/yLWt4hd9qCwA4ixHawtsdZzUNQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.84.0/22
Signature Algorithm: sha256WithRSAEncryption
60:cd:63:bc:40:cc:ef:2d:39:50:99:81:ba:51:68:09:4a:0f:
60:54:91:74:68:f1:bf:27:a5:27:f1:3c:cf:2a:f7:e4:6d:3e:
94:65:bf:d6:be:c3:73:35:a7:3a:70:33:c8:c2:d5:5f:c3:7c:
67:0a:6e:13:1b:a9:4d:f9:ab:30:dc:07:87:81:8b:1c:7b:95:
b1:fd:f3:f7:48:6a:ad:76:6f:82:a9:07:2e:12:61:22:b7:12:
3d:72:f3:d7:12:dc:7d:a8:47:2b:08:a9:f0:11:2f:05:c2:bc:
ed:b7:c1:a4:59:d0:3e:4e:8f:96:2a:10:04:0f:2c:04:ee:dc:
3e:12:0a:95:e6:bb:82:41:df:2e:c2:34:91:2e:28:6b:1c:73:
72:72:99:66:a2:cd:3a:15:df:62:71:e9:5f:0f:98:26:49:fc:
39:56:ad:00:cb:2c:19:f4:d0:a2:78:7e:5c:e5:ec:1f:33:20:
9d:41:85:d9:f6:d4:53:54:39:5d:61:3b:93:8c:95:33:a8:31:
08:be:03:13:89:44:c5:f4:3e:db:8c:e3:95:e2:9b:11:92:31:
49:68:80:0f:d7:b8:51:c4:59:d6:70:04:9e:a1:a3:a4:fb:b5:
4f:66:3f:03:0e:4a:28:1a:64:cd:4d:fb:a3:2f:43:8e:f4:85:
bc:21:aa:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org