Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/cF-Y6fQaMg1ow-IwIHH7RhReiho.roa
File: cF-Y6fQaMg1ow-IwIHH7RhReiho.roa (raw, json)
Hash identifier: 8lZBxX3UNvASxsdlVifvCkyU5RgNerG7TgN3yRiW37c=
Subject key identifier: 70:5F:98:E9:F4:1A:32:0D:68:C3:E2:30:20:71:FB:46:14:5E:8A:1A
Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Certificate serial: 0216
Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/cF-Y6fQaMg1ow-IwIHH7RhReiho.roa
Signing time: Fri 01 Sep 2023 08:54:18 +0000
ROA not before: Fri 01 Sep 2023 08:54:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7483
IP address blocks: 103.170.14.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 534 (0x216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Validity
Not Before: Sep 1 08:54:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=705F98E9F41A320D68C3E2302071FB46145E8A1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:40:bd:1c:bd:ae:8c:64:b6:e6:c7:ed:fb:4c:
99:5b:2d:0e:59:3f:d1:11:94:89:e2:c8:7f:7d:3f:
86:05:4b:2a:5c:2e:a2:b7:21:35:a5:2c:47:8b:86:
f5:d5:17:e7:60:f3:b8:7c:d7:0d:37:11:04:1c:1d:
e0:15:9f:c3:94:80:5c:11:b2:4c:80:6b:fd:80:80:
e8:b1:7c:7e:e0:32:f0:0e:43:8f:9b:1e:43:06:4f:
ae:1d:b1:db:3b:93:fb:3e:db:87:bf:fb:b5:3c:99:
e1:9e:c4:cd:d0:b8:a2:3a:ab:d8:76:58:83:f3:3d:
ee:a7:66:99:1d:5b:c2:a1:17:80:a7:bf:d7:55:00:
79:57:c5:44:0e:78:4f:66:9a:00:20:c8:55:e0:07:
0d:da:ba:78:54:9c:e6:a1:07:bc:c4:8a:da:b5:af:
e6:33:25:e6:c6:4b:b8:fa:45:c8:0c:7b:4e:8f:2f:
dc:76:5a:4a:0d:d8:0a:9b:66:c7:ff:32:0d:2c:7c:
89:1d:16:42:f9:ae:33:f0:c0:4f:6d:3e:da:be:09:
24:a0:99:a6:50:29:39:72:c0:d8:a3:8f:47:fc:5c:
68:1a:fb:31:1e:40:4d:ca:e6:aa:39:e0:dc:a3:b1:
b2:11:78:30:32:cc:86:1a:40:33:f1:59:04:8e:17:
46:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:5F:98:E9:F4:1A:32:0D:68:C3:E2:30:20:71:FB:46:14:5E:8A:1A
X509v3 Authority Key Identifier:
keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/cF-Y6fQaMg1ow-IwIHH7RhReiho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.170.14.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:a7:22:1b:72:bc:f1:be:4e:e5:be:67:bb:a2:79:6e:1b:44:
ba:f6:2c:e5:39:8b:78:23:40:b2:ce:f8:94:a3:82:46:ac:f4:
d6:44:3e:1d:dd:20:87:5d:92:a1:7b:8f:cb:c2:44:a5:67:fc:
b7:6f:f0:e1:5b:79:cb:1e:28:92:94:c9:15:40:23:99:ea:52:
0f:9b:41:cd:5e:de:75:d8:bd:26:7a:85:45:30:8b:0d:22:05:
3f:f2:d1:b2:61:25:f7:29:56:c6:1b:2b:b7:a4:39:60:10:89:
4a:3c:a4:7d:3d:6b:40:a6:87:d2:0e:a0:69:7b:f7:13:53:ff:
5d:5f:da:5c:4d:4b:8f:29:09:ed:fd:8c:f5:b4:aa:f9:c0:70:
d9:dc:d4:5f:18:03:df:d1:5d:0e:f1:eb:6d:e2:69:82:0d:d7:
15:ef:d1:91:03:6f:fd:78:e2:1c:e1:2b:a2:f3:b6:de:aa:79:
1f:5e:ce:f1:1f:3e:c3:4a:e7:f1:c0:4d:f8:16:47:b8:30:39:
5f:75:16:b8:c2:30:9b:9b:de:e7:c9:40:f4:63:b2:ad:32:e3:
44:a9:ac:57:67:5a:43:ab:b6:22:5c:9a:e2:7b:ee:d2:17:53:
9e:1f:d1:a3:c5:8e:75:21:79:b8:d0:a6:05:26:dc:18:52:be:
5e:4d:fe:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org