Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/bdm8V6dlKQLSAHXMWb2TC3NbtrU.roa
File: bdm8V6dlKQLSAHXMWb2TC3NbtrU.roa (raw, json)
Hash identifier: 9tRF51JsquUt5wXpj4gRZkBGKq64PCCrkstNu0KpJgU=
Subject key identifier: 6D:D9:BC:57:A7:65:29:02:D2:00:75:CC:59:BD:93:0B:73:5B:B6:B5
Certificate issuer: /CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Certificate serial: 0E8D
Authority key identifier: 61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/bdm8V6dlKQLSAHXMWb2TC3NbtrU.roa
Signing time: Mon 26 Aug 2024 05:18:58 +0000
ROA not before: Mon 26 Aug 2024 05:18:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.137.22.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3725 (0xe8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Validity
Not Before: Aug 26 05:18:58 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6DD9BC57A7652902D20075CC59BD930B735BB6B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7f:2a:15:2c:fc:e5:0f:63:0f:11:db:9e:98:
5e:49:1d:93:85:b8:81:85:54:3c:0f:a6:72:5e:7c:
97:12:a2:ed:82:4a:5e:2e:ed:69:e2:f7:48:46:0d:
1b:42:a4:8d:ca:77:1f:66:6d:1e:c0:d0:1f:69:19:
81:28:2e:55:fd:87:75:a0:f6:41:dc:70:53:d7:89:
d0:5b:b4:7b:a2:b0:04:b4:2c:29:d0:3e:fb:98:b2:
27:88:5d:c5:b8:ac:05:ce:8d:89:11:d5:9f:8a:61:
79:c5:18:a5:9f:9e:75:34:0e:02:34:a8:76:41:94:
5f:e8:4b:f1:73:ca:18:99:65:a0:18:7e:60:85:29:
30:06:11:71:3f:51:c1:3a:da:ab:8c:a2:b9:79:3d:
db:e9:1a:5e:70:d4:d7:7f:c5:f4:cd:60:82:04:ae:
73:4c:51:20:f5:ba:ae:7f:67:a0:b9:c5:f2:f1:ab:
6e:1d:7c:81:cd:25:29:99:d7:38:7c:ef:4f:fa:50:
99:5c:3e:87:ec:8e:c5:e4:03:86:f7:20:8f:b8:5a:
8f:3f:77:a2:41:ff:57:0a:c2:ca:0b:b5:73:e7:65:
f2:62:7b:99:72:e4:7b:09:2a:d8:f1:f2:80:eb:cc:
fa:a3:ca:1d:98:4e:88:72:a8:14:d6:81:0f:2d:ce:
2e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D9:BC:57:A7:65:29:02:D2:00:75:CC:59:BD:93:0B:73:5B:B6:B5
X509v3 Authority Key Identifier:
keyid:61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/bdm8V6dlKQLSAHXMWb2TC3NbtrU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.22.0/23
Signature Algorithm: sha256WithRSAEncryption
86:fc:cc:8b:5e:6f:43:99:8d:05:90:05:30:76:e2:f3:f5:20:
67:95:81:14:90:24:8c:2c:03:95:3a:f9:39:2b:aa:c1:b9:47:
72:2e:3e:81:0f:8c:4d:66:a0:7a:c0:9f:ca:f9:68:df:c8:46:
06:b6:ee:bc:2e:b7:a4:d1:77:2f:01:f7:a4:74:19:fe:cf:95:
90:d0:a7:ab:45:7e:e9:f5:79:38:5c:40:48:be:17:56:81:e4:
e2:5f:59:e8:29:3f:02:da:fc:fb:d2:3e:d3:98:71:a7:95:79:
f0:d2:0e:0f:d7:22:48:cb:f9:ec:25:f4:b1:a3:bb:f6:7a:8f:
ec:c5:d9:de:24:b0:02:10:72:b3:9b:76:4b:ad:58:7f:7b:8b:
b0:e9:07:ac:b9:bd:c1:1e:62:fd:c2:f0:7f:bf:28:67:e0:9d:
e3:18:7a:61:26:de:ec:84:f7:b2:5c:dd:ee:b8:c1:de:2b:21:
99:9b:6e:23:ce:20:44:ae:b5:c3:92:4d:7b:a3:2c:2b:1b:12:
49:85:d8:bd:d8:02:09:18:76:81:5e:10:0b:53:fc:4d:84:84:
32:7b:0c:39:07:49:ac:a5:df:7b:67:37:fd:7f:71:b0:79:86:
22:d0:83:18:e9:43:63:4f:dd:79:95:a6:13:b0:37:a5:76:fa:
eb:53:db:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 09:47:09 2024 by rpki-client on console-ams.rpki-client.org