Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/SssT5rl3-6HsMu8DoM8pl2zGZWo.roa
File: SssT5rl3-6HsMu8DoM8pl2zGZWo.roa (raw, json)
Hash identifier: Bt4B3PA8EL7jVbTCGvN+fgPGGW+nuxAIEvcPnoCLtas=
Subject key identifier: 4A:CB:13:E6:B9:77:FB:A1:EC:32:EF:03:A0:CF:29:97:6C:C6:65:6A
Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Certificate serial: 01C9
Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/SssT5rl3-6HsMu8DoM8pl2zGZWo.roa
Signing time: Fri 01 Sep 2023 09:04:33 +0000
ROA not before: Fri 01 Sep 2023 09:04:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9920
IP address blocks: 103.173.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 457 (0x1c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Validity
Not Before: Sep 1 09:04:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4ACB13E6B977FBA1EC32EF03A0CF29976CC6656A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c7:98:c4:f2:76:b6:1a:31:bd:44:f9:44:0d:
c4:fc:29:96:5b:7d:9b:e8:58:8b:73:06:98:06:1d:
6c:28:a1:74:bb:87:31:26:d7:95:cf:ef:d3:f0:6b:
04:99:78:ed:1f:1c:b8:9f:19:22:a9:5b:89:6d:06:
bf:e5:cb:a2:f4:73:61:73:63:7e:c4:54:cf:a2:fd:
ee:12:e3:7e:ba:22:42:3a:57:56:50:f2:46:dd:00:
93:0b:ec:32:83:17:88:67:d2:01:b4:75:b8:5b:63:
8b:2b:f2:e0:b0:b4:e0:83:e0:a9:6f:a9:4f:23:1b:
e3:49:29:f7:62:69:49:2d:f7:a2:31:fc:54:e2:c9:
d6:ce:e7:8f:f4:49:53:b0:aa:a1:d9:8e:d5:78:69:
40:c7:c4:08:d8:f6:4b:db:ce:ed:53:09:a5:a1:cd:
89:cb:ab:3c:31:e5:b7:38:e6:4e:5c:62:9e:ec:99:
cb:ea:bc:21:ea:c1:79:bc:94:3f:d1:cc:57:10:0b:
28:b9:98:ab:0f:fb:50:8c:a6:74:6e:8a:d7:12:6d:
eb:cf:cc:6f:c7:38:98:3f:5c:61:06:9f:91:0d:b2:
53:56:ef:34:eb:14:ea:64:fa:a1:83:08:5b:93:53:
b4:ec:a8:5b:7f:b2:b5:c9:0a:60:4c:49:e8:f2:86:
3e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:CB:13:E6:B9:77:FB:A1:EC:32:EF:03:A0:CF:29:97:6C:C6:65:6A
X509v3 Authority Key Identifier:
keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/SssT5rl3-6HsMu8DoM8pl2zGZWo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.95.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:50:09:1d:19:39:dc:e9:1e:3c:d1:af:7b:c4:1b:be:09:f8:
f4:6a:a6:5e:85:8c:60:f7:4e:2f:1a:88:bd:4d:68:07:c6:6b:
3d:19:14:9d:38:59:0e:c4:06:6e:f0:da:aa:32:2a:65:5b:e0:
cf:85:54:2a:e6:25:ee:b8:46:e1:fe:df:1b:db:e6:28:ed:22:
ad:d7:c8:d6:54:80:dd:44:35:64:90:20:4a:d5:8d:79:51:f8:
2b:d2:48:ae:9a:e2:8e:b9:2e:e2:68:48:92:ba:8b:0c:a9:aa:
05:dc:4c:11:21:fe:28:63:5b:07:ee:22:42:cd:54:1b:e7:60:
97:46:fa:b8:49:52:6c:f9:44:dd:78:94:49:cc:d2:b4:58:de:
cd:7b:ea:3c:4c:28:10:5b:48:62:5e:86:2d:50:fa:ba:a3:62:
78:13:70:48:38:d9:41:31:05:89:53:59:e6:5e:0e:35:e5:69:
8d:0d:00:11:fe:63:88:84:46:c0:d2:00:3a:8f:51:ea:1c:5f:
98:a5:30:92:88:21:a1:9a:94:a7:e2:e2:57:65:d4:1a:82:93:
37:ee:bf:30:85:3b:f7:94:e4:52:af:14:c2:f0:3e:8e:f6:31:
e7:01:4d:70:9e:58:4f:52:82:53:9d:e4:fd:ce:17:22:de:af:
bb:40:b7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org