Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/5oaEKo0-a1LxCbc0yXqNBaza3ms.roa
File: 5oaEKo0-a1LxCbc0yXqNBaza3ms.roa (raw, json)
Hash identifier: e4g4ge7mOHY8fJjmZXd2dxYVRxNkskMDBJjfUD5qOz0=
Subject key identifier: E6:86:84:2A:8D:3E:6B:52:F1:09:B7:34:C9:7A:8D:05:AC:DA:DE:6B
Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Certificate serial: 01C8
Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/5oaEKo0-a1LxCbc0yXqNBaza3ms.roa
Signing time: Fri 01 Sep 2023 09:04:33 +0000
ROA not before: Fri 01 Sep 2023 09:04:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9920
IP address blocks: 103.173.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 456 (0x1c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Validity
Not Before: Sep 1 09:04:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E686842A8D3E6B52F109B734C97A8D05ACDADE6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:3a:b7:3a:e6:e1:a4:2b:47:1a:d0:92:92:
39:8c:09:9c:9a:91:f4:5c:13:82:b4:4d:91:ad:36:
94:9b:f3:a2:1f:00:d2:3e:c4:3a:96:28:ed:e0:14:
9d:e4:ee:26:32:71:11:45:5b:76:4c:a6:f8:e5:c0:
83:dd:bf:9e:e4:74:49:b8:9c:fd:6a:dc:82:21:7c:
94:eb:77:ba:c2:35:79:75:b1:db:e5:86:58:48:33:
e4:03:9a:a3:d2:a5:10:1e:8a:d0:d1:f2:fb:5d:fc:
f8:d5:95:a1:d5:4b:42:3b:ac:6b:fd:0e:f2:ae:fd:
78:43:f6:cd:92:2a:34:ab:15:a0:f4:61:9e:c3:e0:
f0:35:bc:b9:98:f7:1b:19:e3:11:33:de:9e:99:1f:
9a:84:4d:3d:dc:8d:e8:bc:89:26:3a:f5:6a:44:fc:
d4:70:f8:15:1d:4b:9c:bc:1d:45:1f:9e:af:c7:1e:
32:67:63:6e:ca:5c:d4:05:6e:48:62:f5:39:a0:c9:
51:ac:a9:6b:83:83:65:75:0e:b2:75:e6:95:6b:e7:
43:be:42:25:8f:fb:b9:0b:35:79:ab:a7:d7:7f:4b:
36:ec:e6:d2:16:b2:43:a9:32:4b:34:f5:08:81:e6:
ca:7c:d6:fc:05:46:1a:26:93:49:e0:21:5d:d2:d7:
9b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:86:84:2A:8D:3E:6B:52:F1:09:B7:34:C9:7A:8D:05:AC:DA:DE:6B
X509v3 Authority Key Identifier:
keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/5oaEKo0-a1LxCbc0yXqNBaza3ms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.94.0/24
Signature Algorithm: sha256WithRSAEncryption
98:77:bd:08:6a:b5:1d:44:55:14:cc:68:b4:2a:ee:81:2c:37:
f1:ec:20:3c:71:6f:4d:42:37:e9:4c:42:45:98:73:71:db:65:
91:81:4c:d0:25:25:08:01:a8:d6:c6:c2:4a:33:cf:d9:e9:41:
97:ba:2d:8e:3d:3d:e7:c5:e5:ec:59:c0:3b:46:00:f7:47:f8:
a7:8d:dd:c9:3e:db:e5:05:7d:0c:44:0b:81:25:bd:92:97:6d:
4c:30:20:0a:fb:d2:f7:3c:e0:ff:f2:02:d2:4f:32:b0:3c:d5:
85:cb:fe:c6:d9:9a:63:78:99:2f:45:d0:40:d8:cb:f5:66:86:
23:fa:b4:25:f4:d4:6b:95:43:93:3f:df:7b:a1:12:9f:5f:ba:
ca:a8:fc:9a:78:65:a8:55:0a:87:96:3b:11:d7:d6:f1:1b:83:
60:e7:ef:63:8d:63:0b:cd:c4:71:26:08:d4:f3:69:62:84:12:
f1:57:a9:72:d8:36:e5:2b:6f:43:cb:47:73:6b:c8:64:04:af:
44:41:5c:cc:84:12:2b:bf:7b:f3:09:f8:6a:dc:61:a3:e8:49:
32:3c:82:c2:10:d6:85:d5:c3:cd:d6:84:8d:f0:f5:82:f1:31:
2b:2a:c4:2e:b0:00:a7:8a:4c:03:ec:bf:53:ed:f2:c3:8b:d9:
40:ac:41:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org