Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/AWdovBdYLQASEU3WHvleuKIMnwE.roa
File: AWdovBdYLQASEU3WHvleuKIMnwE.roa (raw, json)
Hash identifier: 7RtXnGz4u1N1qtapOVbUmycXZKvAFLupApNXNqxE7Lg=
Subject key identifier: 01:67:68:BC:17:58:2D:00:12:11:4D:D6:1E:F9:5E:B8:A2:0C:9F:01
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 11A0
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/AWdovBdYLQASEU3WHvleuKIMnwE.roa
Signing time: Fri 01 Sep 2023 08:50:23 +0000
ROA not before: Fri 01 Sep 2023 08:50:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 103.124.42.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4512 (0x11a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Sep 1 08:50:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=016768BC17582D0012114DD61EF95EB8A20C9F01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:79:e7:a9:da:11:01:20:b3:02:3f:e6:b7:
2a:59:aa:a6:b6:44:00:2d:74:b0:8b:35:95:b2:a2:
ae:41:43:1b:cd:a7:aa:44:af:23:51:f8:78:0d:f6:
00:d5:45:54:d1:57:f5:5c:21:6d:76:b6:04:77:b7:
6f:d8:e5:d3:40:75:8d:09:e7:aa:7b:4b:0a:48:2d:
42:91:d5:61:dc:38:16:5b:11:37:ce:d3:3b:95:7c:
5e:87:d6:d9:8b:c5:b4:dc:b4:32:23:43:d2:97:d7:
1c:f1:32:22:18:8e:79:68:16:99:16:55:74:d8:bb:
33:3a:87:74:44:63:08:3f:71:4b:ef:72:26:d2:cc:
c1:b8:79:d0:8a:97:9f:03:34:91:96:f8:08:f9:3d:
7f:c6:bd:63:63:de:e9:db:8d:24:ba:48:54:b9:55:
00:8e:22:09:bc:f7:76:39:1d:ac:db:81:98:73:d0:
99:e0:92:c4:39:6d:89:e2:ba:30:38:ad:fe:73:8b:
c3:01:29:db:41:5c:f4:2f:65:ae:40:10:73:75:f5:
9b:21:44:b1:57:2a:af:b2:fe:67:70:df:f7:62:12:
73:ad:e9:b8:34:53:c5:e5:a5:c6:4a:51:6a:ee:b4:
16:ed:5f:59:51:00:a5:65:3a:37:df:76:ca:45:3b:
c5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:67:68:BC:17:58:2D:00:12:11:4D:D6:1E:F9:5E:B8:A2:0C:9F:01
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/AWdovBdYLQASEU3WHvleuKIMnwE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.42.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:a6:94:e0:be:e8:00:da:52:38:92:fb:5e:e1:bc:cc:40:2e:
0b:30:45:c7:e8:8f:87:f4:f9:5e:9a:f9:d5:90:07:58:f0:32:
29:a9:e5:a1:f9:6c:c8:d0:ba:b5:14:7a:dc:88:ed:aa:54:f9:
6e:b3:3e:55:f3:3b:25:83:29:a9:1a:44:63:cb:c1:c1:72:df:
8e:18:fe:be:28:be:26:ee:de:dd:7c:9e:f8:63:9b:96:ee:34:
47:ae:3f:35:ec:44:a2:c7:79:1c:9d:9f:94:7f:32:c4:14:27:
13:cb:3b:a7:1d:9c:b0:9c:6f:75:6e:8b:53:3a:aa:35:da:a1:
a3:61:af:5f:c3:35:3d:24:80:50:7c:74:e6:5c:35:c8:6c:a1:
6f:02:ca:4b:81:9b:ff:8a:05:a5:81:e6:df:5f:fe:0a:8e:ed:
5a:8c:dd:92:f9:48:ef:9a:e4:c9:fa:3f:3d:31:ba:7d:73:7e:
ac:b4:e4:ff:a2:51:c3:e2:80:e8:56:a2:27:6f:5f:be:92:05:
c5:af:7e:27:f8:56:d9:b1:32:ae:ed:44:1b:cb:ae:9a:33:c2:
c6:58:18:f3:64:24:c1:0f:c7:1b:1f:b6:6a:58:b5:a6:71:de:
4d:43:1a:25:21:4d:6f:e6:f8:b0:2d:a2:14:bb:4d:07:65:3e:
f1:d0:7e:09
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org