Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa
File: 42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa (raw, json)
Hash identifier: EDcqMEDhEN4AvRT09laa6zV4KWOE3BfXznZ12TCe/Uw=
Subject key identifier: E3:63:73:52:57:08:C2:71:B9:2A:97:BB:0E:4C:4A:0C:6C:43:A1:A0
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 0137
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa
Signing time: Fri 01 Sep 2023 08:49:57 +0000
ROA not before: Fri 01 Sep 2023 08:49:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38136
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311 (0x137)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Sep 1 08:49:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E36373525708C271B92A97BB0E4C4A0C6C43A1A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a2:f9:46:0b:d8:20:3b:8e:68:a9:b2:b8:3c:
ba:8e:a9:d5:8b:00:26:3c:0c:98:1a:0e:e2:ff:68:
c7:8a:45:ca:d0:7c:81:68:4d:d5:dd:ca:1a:ab:71:
bb:57:10:4a:1b:7e:70:c9:d6:74:00:78:c9:c4:32:
da:94:07:8d:2c:38:a8:9b:8e:05:89:e4:b6:78:a0:
ec:66:ef:f6:eb:77:54:6c:4b:0b:64:00:b8:d1:54:
78:53:37:b2:07:53:af:70:87:5e:3d:96:92:e2:07:
36:38:df:14:27:d5:78:87:0e:cb:b7:8d:69:3c:2a:
3e:54:6e:a8:35:e6:fe:1a:48:36:cc:0f:3a:7f:9b:
8c:06:0e:43:54:66:ce:f8:46:15:8a:8a:7b:80:9f:
f8:77:2f:bf:3e:99:b6:e0:a1:3d:96:45:b9:25:79:
20:06:cc:96:ed:fc:07:75:0c:b2:cb:bd:aa:6c:50:
72:dc:47:c9:86:fe:99:e3:16:06:50:81:7c:09:ab:
51:7c:00:dd:68:45:62:37:2e:b9:55:c1:12:6c:cd:
17:c6:c4:0c:42:83:7d:f1:f9:4d:33:b8:a2:53:0c:
df:6e:e4:ee:2d:cd:76:89:70:c7:c3:24:34:29:73:
2a:6c:49:46:c7:71:8b:0f:5d:36:12:a7:43:f4:ba:
cc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:63:73:52:57:08:C2:71:B9:2A:97:BB:0E:4C:4A:0C:6C:43:A1:A0
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:10:88:2f:33:62:8d:e1:30:64:19:20:e7:a7:98:5e:c3:bf:
0d:8e:f9:1a:72:9f:fd:b6:d1:a2:98:9f:bf:ce:27:16:a8:1a:
a7:eb:4d:c4:17:e5:24:92:27:ae:5d:3b:fc:e1:e0:de:86:67:
68:26:ff:8c:fe:80:ad:dd:fd:73:d0:ef:e9:d0:af:89:57:d2:
6b:1b:3b:e5:8b:30:29:78:d1:47:63:20:8a:66:e3:34:48:f0:
1d:ff:96:93:cb:f7:75:43:b2:00:e9:22:d8:08:59:60:52:29:
b4:65:4f:e9:5d:08:73:b1:24:d0:e2:46:04:1c:a5:3c:14:37:
d2:46:60:63:b7:9b:66:21:68:f3:e4:9f:0a:fd:e8:8e:b2:c6:
e6:3b:b9:28:8d:84:1e:28:58:d0:f4:bb:eb:4b:35:0a:9c:f1:
27:87:d8:de:61:d2:3f:4c:c8:ce:25:f6:b9:cf:aa:e8:cf:08:
cf:71:88:88:73:83:e9:ae:13:f6:9a:63:21:26:a5:51:46:dc:
35:cb:f3:c3:b3:c9:c2:1a:32:e7:53:ae:8d:4d:45:04:0c:76:
ce:9a:18:8a:22:7b:71:ab:7a:e0:06:48:1d:12:64:90:1c:9c:
e7:70:63:2e:40:e5:7e:d6:fb:96:3d:c5:e4:01:e8:c6:a1:33:
97:f7:e5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org