Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa
File: 9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa (raw, json)
Hash identifier: 2Lhlq1A3r0KN3Zh4tmEjI6g9FT4MW2PxyDDLOnU76Zk=
Subject key identifier: F5:D2:FA:26:31:08:45:7C:58:74:04:37:64:B5:13:79:3E:0B:FC:3B
Certificate issuer: /CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D
Certificate serial: 020E
Authority key identifier: 00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa
Signing time: Fri 01 Sep 2023 08:55:54 +0000
ROA not before: Fri 01 Sep 2023 08:55:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38852
IP address blocks: 103.169.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 526 (0x20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D
Validity
Not Before: Sep 1 08:55:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F5D2FA263108457C5874043764B513793E0BFC3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:06:91:97:89:14:ed:ea:8e:96:b5:52:2b:2a:
e8:12:88:8f:8b:78:b2:71:a1:fe:57:fc:1e:a5:20:
58:8f:40:74:cb:af:0a:63:22:49:e6:b3:a3:15:a4:
2f:d0:c2:1b:3b:e1:35:e5:66:88:bc:9c:25:58:67:
6b:fd:d6:11:85:9a:90:73:61:1f:0a:61:b2:b9:f1:
63:ae:4a:44:a6:e7:16:bf:09:1f:52:47:46:e7:f2:
39:2c:fd:20:4b:81:a3:40:cf:f1:ca:90:e4:11:43:
1e:66:66:25:4d:75:db:7a:6e:0a:e5:66:74:7d:0a:
73:3a:af:4d:72:16:d9:c9:c6:21:b7:70:eb:54:42:
3d:41:71:cc:7d:d6:54:69:b1:41:82:fd:bc:f1:23:
e1:39:4a:7d:65:84:e2:e4:6a:46:d1:b2:fc:c7:28:
56:ea:61:42:fe:34:3e:a7:a6:59:94:7b:15:43:a1:
78:89:fe:f7:cc:68:28:91:86:9c:05:79:f2:42:52:
0d:9b:83:b3:60:dc:69:a9:73:69:fb:7a:27:3d:70:
3c:3a:ce:63:fe:8c:f9:3c:62:41:66:a2:3d:26:7d:
7b:d9:3d:aa:f4:86:3a:93:30:26:28:74:3d:a1:5e:
43:a1:f0:f1:c8:14:f7:25:5b:4a:75:65:33:93:5a:
45:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D2:FA:26:31:08:45:7C:58:74:04:37:64:B5:13:79:3E:0B:FC:3B
X509v3 Authority Key Identifier:
keyid:00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.169.212.0/24
Signature Algorithm: sha256WithRSAEncryption
41:0a:81:7d:06:5e:e8:bc:bc:0a:df:f2:b9:b2:7f:dd:16:db:
6a:b9:18:ea:4c:5e:18:e0:5d:21:d9:fb:b8:a3:1d:59:15:e8:
df:f5:86:b1:c5:10:33:a5:95:63:6c:f3:af:6f:d2:7e:b8:cc:
ed:ee:32:ba:93:ac:7d:44:2d:53:a2:73:52:26:36:75:09:a4:
85:30:67:cf:f0:d1:db:ac:54:f3:d3:34:cf:35:75:80:40:f9:
d6:fc:d6:2c:09:a2:48:e3:59:94:b4:33:4d:eb:c8:50:68:c4:
f7:0f:cc:2e:d9:1a:fd:4c:3f:06:ad:18:cb:2f:19:74:db:f4:
6d:9a:94:16:a6:a9:ad:b4:1f:a3:d5:de:92:be:df:18:03:ff:
82:92:a9:9a:d7:88:22:f1:24:55:bf:d0:67:e4:a6:75:f8:79:
35:ff:57:05:19:1b:9f:44:32:38:fe:c1:3b:60:ca:50:53:68:
ae:55:f0:f7:bf:57:10:2d:bb:d2:59:8d:ef:23:ac:5f:a6:9e:
f5:48:05:2d:17:aa:0c:fd:44:c5:40:fa:fe:9e:7d:95:b0:fe:
59:0a:33:23:42:1a:c3:b7:94:37:5d:c7:6c:95:22:98:20:a4:
77:a2:ab:83:4b:14:87:90:e7:e1:65:d5:9e:79:08:89:bf:15:
57:2c:59:28
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org