Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa
File: ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa (raw, json)
Hash identifier: savPVtMLlxFqp1fgS1E6bO+p+FrOdldp+gGTWeowle0=
Subject key identifier: 66:65:E4:2D:29:7B:8B:C0:1A:C3:C5:18:91:BD:40:DC:8F:26:B2:C1
Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595
Certificate serial: 0B
Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa
Signing time: Tue 05 Sep 2023 07:56:41 +0000
ROA not before: Tue 05 Sep 2023 07:56:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38136
IP address blocks: 103.236.226.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595
Validity
Not Before: Sep 5 07:56:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6665E42D297B8BC01AC3C51891BD40DC8F26B2C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:53:91:42:e9:71:c2:34:ff:25:f9:42:89:6e:
50:1a:a1:c7:57:75:35:bc:f4:83:c5:af:bc:51:58:
21:8a:13:e7:e2:3a:72:31:81:3f:18:36:88:19:45:
1c:f9:a5:c2:74:82:1b:f8:d3:78:2a:b9:2f:df:cc:
9f:6b:4c:fa:76:9b:64:5e:09:69:71:57:9f:92:44:
e1:bc:04:60:7c:11:e6:bc:68:25:bc:be:d3:cf:8b:
29:ef:c2:55:bc:0d:72:25:33:f3:c2:56:77:9d:cf:
ff:22:66:c8:6b:b8:c3:ba:44:b3:04:88:77:82:df:
b6:3e:a7:36:97:78:19:f0:e6:d2:30:d3:6f:d4:ae:
60:7c:5b:79:df:0c:bf:c4:e9:58:11:67:96:11:f0:
5e:0a:8c:fd:01:89:79:01:dd:0b:b8:dc:d8:74:d5:
eb:77:52:a4:46:68:75:51:28:85:e8:9a:6a:36:cd:
62:96:8f:83:77:e3:fe:2f:2f:28:11:d3:1d:48:e1:
4d:2c:4a:4c:0d:d6:3e:e3:26:e9:78:14:0e:00:de:
b7:34:b3:71:77:b0:4e:df:65:aa:c1:4b:44:c7:94:
5a:cd:dc:98:91:85:c8:b3:56:d9:67:31:b0:07:22:
ac:4b:be:07:77:29:83:6e:cc:20:85:e7:2b:1f:bf:
21:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:65:E4:2D:29:7B:8B:C0:1A:C3:C5:18:91:BD:40:DC:8F:26:B2:C1
X509v3 Authority Key Identifier:
keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.236.226.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:e4:dc:78:38:a1:90:80:67:95:c1:75:e8:a0:b6:32:cd:49:
53:9d:65:c6:66:76:fe:db:88:9f:b9:d4:8f:6f:98:e4:af:64:
01:20:d7:79:c0:dd:4c:75:1a:77:ab:a3:86:8b:7b:3f:04:77:
ff:58:80:0f:0b:66:85:40:e5:a0:e1:e7:db:95:44:db:c2:d9:
a9:ad:2b:94:04:9f:75:be:dd:77:61:11:b4:91:a2:28:7a:a3:
dd:0c:41:23:8e:f4:ec:23:54:f9:69:d3:a0:18:46:87:fa:ec:
ec:55:e8:d2:0b:b6:81:fa:98:bd:f9:62:b6:d3:35:b8:ed:18:
91:47:35:7c:57:77:a1:14:fc:25:65:47:6c:ff:61:da:c3:a2:
90:87:00:ce:b3:50:af:c2:ce:15:e8:b6:d9:bd:d2:02:6a:cd:
a7:61:5b:a2:2e:bf:c3:5b:bb:ae:d8:37:3f:84:df:c8:64:35:
0c:2c:69:e5:86:9b:a8:b7:aa:c1:3e:c1:b1:7c:ed:27:46:3c:
10:a9:38:4c:5f:69:f8:92:32:0f:4e:c4:1a:d7:9a:6b:50:cd:
b5:0b:11:19:82:7d:0a:c5:20:3d:7f:50:c5:2e:d8:19:77:8a:
f0:77:cc:27:9b:14:dc:33:0e:0a:43:05:25:9d:10:9a:4a:e1:
1d:22:41:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org