Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yeThpwhYz9dK_ZnKc-djJ3gMQYQ.roa
File: yeThpwhYz9dK_ZnKc-djJ3gMQYQ.roa (raw, json)
Hash identifier: zAaosOVkVW6xHousWCGLeWUkg52tR7o+TBw/R6RgClQ=
Subject key identifier: C9:E4:E1:A7:08:58:CF:D7:4A:FD:99:CA:73:E7:63:27:78:0C:41:84
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 05AB
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yeThpwhYz9dK_ZnKc-djJ3gMQYQ.roa
Signing time: Thu 12 Oct 2023 08:26:05 +0000
ROA not before: Thu 12 Oct 2023 08:26:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.122.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1451 (0x5ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Oct 12 08:26:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C9E4E1A70858CFD74AFD99CA73E76327780C4184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:40:2c:37:0a:85:b5:fe:98:3d:68:49:9b:e1:
78:24:c8:57:6e:ff:3c:91:6e:47:9a:65:90:70:93:
0a:56:98:10:a3:81:b3:3c:83:ae:42:7f:67:50:a1:
f4:df:22:c0:17:7f:f4:8a:38:6a:07:b0:b8:c7:70:
1a:b8:30:e4:e3:81:86:be:5e:1d:d8:6f:47:cc:3a:
38:05:85:6a:a3:48:c0:a1:47:99:26:37:f1:12:09:
c6:56:df:06:79:67:b5:15:af:56:eb:23:67:34:ab:
c0:be:a9:bc:33:42:95:70:83:73:29:5b:4d:ec:e9:
20:ab:5b:47:32:af:5f:b2:0e:bc:95:2d:27:09:f7:
14:d1:65:2e:a6:44:90:e6:c0:82:64:91:9d:17:63:
a3:09:0a:cc:96:20:c7:06:c9:07:21:16:2e:9c:d3:
c4:12:91:be:52:c2:2e:aa:75:18:78:e1:53:1a:dc:
54:b6:60:50:76:f8:97:a4:c9:75:39:dc:40:4a:89:
b2:66:b9:f9:8a:35:bd:ca:de:e4:ad:ce:01:bf:ba:
84:ea:4a:97:a0:31:13:82:42:78:1d:12:b5:d9:2f:
77:ca:67:f6:c2:2d:e8:87:4b:b1:a0:92:9a:8c:50:
06:d6:00:0d:54:f9:4e:71:f3:46:cc:62:86:bc:30:
12:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E4:E1:A7:08:58:CF:D7:4A:FD:99:CA:73:E7:63:27:78:0C:41:84
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yeThpwhYz9dK_ZnKc-djJ3gMQYQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.189.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:7f:ed:91:84:d1:7e:b5:f2:80:ca:9d:a9:3a:39:ee:86:be:
00:f2:2e:ca:41:68:97:7b:3e:a6:76:3f:73:90:19:5a:4e:fd:
19:8f:47:b1:69:9f:08:d6:1b:d2:5c:b0:0b:85:cb:11:8f:d4:
09:3d:99:33:36:2e:94:8c:da:b0:cf:63:f9:0c:e6:b3:c9:c1:
9e:64:3f:67:ab:8a:b4:67:69:91:cf:0d:c5:f2:88:ee:07:96:
62:a2:5f:4d:a4:58:79:83:89:c7:26:91:9f:65:5d:43:3e:5c:
5d:bd:d6:ca:9f:41:8f:ec:e4:81:f0:a9:d3:6f:fc:c1:d8:92:
0e:eb:1a:a5:49:dc:c9:d8:84:36:e5:4d:38:a5:89:a6:81:5c:
c2:19:de:67:65:ff:f6:17:8a:eb:eb:06:14:33:14:48:70:84:
8c:05:96:b6:fa:99:1e:93:f2:a6:75:55:fa:9a:fc:48:ff:65:
48:1c:07:ac:6e:9f:1f:81:e3:1b:9e:41:01:3b:c6:92:28:59:
a3:59:e4:77:e5:e9:4e:ff:f9:74:04:f9:de:7c:80:a4:ab:03:
f9:41:b2:19:bc:f1:1b:48:d4:bd:b1:60:1a:54:a5:df:cf:39:
a0:3c:a3:93:2e:12:85:7c:e5:7b:a5:8f:29:6d:de:12:0e:31:
44:23:16:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org