Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/935ovYW6JYoDaeGQ3ZAYSBnoITs.roa
File: 935ovYW6JYoDaeGQ3ZAYSBnoITs.roa (raw, json)
Hash identifier: YuDXiikEZbpa+2t2CJLyXr3l5Szr/tVbxtGUoMJfbgk=
Subject key identifier: F7:7E:68:BD:85:BA:25:8A:03:69:E1:90:DD:90:18:48:19:E8:21:3B
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 056F
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/935ovYW6JYoDaeGQ3ZAYSBnoITs.roa
Signing time: Fri 01 Sep 2023 08:59:48 +0000
ROA not before: Fri 01 Sep 2023 08:59:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 20473
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1391 (0x56f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 1 08:59:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F77E68BD85BA258A0369E190DD90184819E8213B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1c:55:1c:2a:f6:76:a6:ca:3d:f1:b0:3c:f0:
db:fd:7f:6d:0c:c1:7a:c7:6c:b9:b3:69:3f:c2:0d:
84:33:f3:ad:70:0c:9f:0a:77:e4:d1:37:20:f6:eb:
b2:93:bc:46:2a:66:34:16:2f:ff:66:f1:a7:34:20:
5a:30:d2:89:4d:b4:48:11:62:85:53:d7:a3:be:63:
6f:4f:0a:2a:39:2c:d4:ef:93:dd:5d:25:0e:80:70:
c9:35:ab:92:0c:76:4d:50:1e:0c:1c:65:b9:a5:0e:
17:bf:97:e6:ff:01:f1:70:ac:68:a3:ba:7a:79:27:
e2:98:d6:d9:13:29:d6:74:a3:f7:cb:15:62:f5:5c:
c9:a7:8c:d9:20:98:23:e3:55:4d:9b:7a:d2:5c:b4:
a0:6b:37:23:3d:e5:c2:f2:dd:fd:24:0a:7e:9c:5f:
e0:1e:12:d4:b3:df:a9:95:f5:cb:e6:41:20:aa:bd:
35:1e:4f:91:0c:36:a7:32:fc:29:c0:93:52:e3:5a:
22:a3:37:64:0b:20:4e:bb:82:1f:db:f2:0b:2e:80:
73:c1:52:be:e9:32:44:a8:7e:94:98:95:cd:10:d9:
40:88:2e:e4:bb:43:45:16:62:33:75:0d:35:49:12:
2d:7a:20:ae:0c:f8:33:87:06:46:d1:70:a4:53:65:
6e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:7E:68:BD:85:BA:25:8A:03:69:E1:90:DD:90:18:48:19:E8:21:3B
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/935ovYW6JYoDaeGQ3ZAYSBnoITs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
58:2d:a8:61:37:eb:4c:4f:e2:28:22:ba:30:83:1f:09:d0:69:
ba:09:3b:af:bd:3b:54:45:11:d3:8c:08:e7:59:4e:61:ad:0a:
50:7c:03:91:47:92:a5:3c:92:f9:eb:ad:ce:7d:69:3f:39:88:
2f:88:04:43:36:ef:40:4b:f1:a9:c6:71:26:32:b5:14:78:6d:
4e:c4:95:17:dd:d6:da:11:21:27:6d:5a:fc:70:48:4f:65:88:
ea:70:ac:0c:d1:99:c1:47:a6:0c:1a:f6:75:3a:93:3d:a3:ff:
df:05:fc:9a:11:8b:dc:56:18:c0:a0:71:db:6d:cc:84:70:0a:
09:0d:1e:34:43:40:fc:46:01:b8:3d:e4:22:91:ed:86:8c:c7:
0a:88:53:4f:db:a7:91:16:65:ec:22:55:d9:5e:95:d8:cb:9e:
46:27:2c:1d:3f:2b:39:24:7e:ab:34:25:45:c7:b5:cb:37:6a:
c0:78:81:46:13:42:87:c6:cb:a7:d8:53:be:95:8e:4c:ca:a9:
d7:51:6e:8a:6d:0f:52:c5:9d:59:ba:0f:a4:14:68:50:bf:12:
83:43:9f:3a:76:a1:7f:ae:bc:7a:c6:7c:03:cb:43:19:92:7a:
36:1e:26:5f:bd:aa:1d:e9:28:7a:15:0e:ce:bb:c7:be:bf:a7:
0d:4f:6b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org