Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/a-v-S6bApMvtjj_8C7jDelhQy5s.roa
File: a-v-S6bApMvtjj_8C7jDelhQy5s.roa (raw, json)
Hash identifier: YIKWyokSRJW4b9IIw9gInKGORR8Wxsph0ntejRIdHs0=
Subject key identifier: 6B:EB:FE:4B:A6:C0:A4:CB:ED:8E:3F:FC:0B:B8:C3:7A:58:50:CB:9B
Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Certificate serial: 0CB7
Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/a-v-S6bApMvtjj_8C7jDelhQy5s.roa
Signing time: Fri 01 Sep 2023 09:14:43 +0000
ROA not before: Fri 01 Sep 2023 09:14:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131645
IP address blocks: 103.141.80.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3255 (0xcb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Validity
Not Before: Sep 1 09:14:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6BEBFE4BA6C0A4CBED8E3FFC0BB8C37A5850CB9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:79:28:9a:75:7f:6e:0b:d0:cf:8a:24:7c:e9:
0a:65:32:a4:46:86:e7:35:a7:f1:de:0a:64:05:15:
2f:68:64:32:bc:ba:00:d7:f3:cc:d6:1c:dc:f4:66:
87:cf:f6:12:d4:84:a1:6e:bb:c5:5c:b1:e2:11:14:
64:fd:aa:57:fd:cd:e1:55:ca:cc:15:8f:a9:96:66:
71:67:29:06:53:42:5f:5e:c8:79:9d:2b:e0:42:4d:
92:67:ea:64:8f:12:a8:06:0e:a7:5f:db:f0:19:63:
da:54:13:71:8a:46:f7:f0:23:6d:b1:74:0c:7b:22:
b1:4d:95:65:30:de:4e:23:a4:87:14:a6:8c:45:8d:
12:2a:3d:99:09:fe:cb:e6:05:ac:e3:b2:40:35:47:
96:ba:d1:a8:e0:84:eb:c7:3d:40:f0:80:26:03:a2:
51:e0:06:2a:e0:cb:fb:ea:b7:e6:a5:12:9f:c0:aa:
76:a5:91:44:01:a3:43:ad:11:60:4a:7a:0c:90:d5:
01:ff:39:55:45:10:a5:86:e5:4c:d4:9a:c9:c5:34:
38:70:76:f8:b8:6d:e5:e6:e0:4d:3e:26:a1:83:12:
77:26:29:cd:9b:2b:9c:7d:59:91:75:f9:02:e5:ca:
1e:49:dd:b6:67:3b:f7:3b:b7:55:64:ac:9b:fa:4f:
05:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EB:FE:4B:A6:C0:A4:CB:ED:8E:3F:FC:0B:B8:C3:7A:58:50:CB:9B
X509v3 Authority Key Identifier:
keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/a-v-S6bApMvtjj_8C7jDelhQy5s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.80.0/23
Signature Algorithm: sha256WithRSAEncryption
25:4a:68:f2:cd:2d:a7:d9:c5:be:84:24:ba:ae:ad:04:da:bb:
09:17:cf:a5:18:16:df:f0:b5:1b:9f:78:27:32:ae:e3:62:ff:
0a:36:29:4b:af:f5:99:28:f9:3a:8f:25:f9:2f:89:f9:ba:81:
90:33:b0:e7:cf:15:4c:0f:69:49:27:be:33:f2:a3:79:e3:25:
ca:47:2d:fd:d1:3d:24:b7:1c:dd:1d:7b:ac:fc:d8:c2:94:b7:
d7:01:bc:d0:ec:7c:2f:23:16:0b:be:74:1e:13:f9:7e:95:4d:
3f:66:aa:39:0e:bd:cc:0b:63:f4:7c:de:c9:ec:d2:cd:d1:d0:
00:23:2f:d7:8a:7c:4d:c4:1e:68:8c:f7:fa:29:cb:28:f4:83:
9c:a7:5e:b1:54:3f:09:cb:fc:0b:c9:d7:20:33:3e:48:76:72:
89:4c:3b:a1:96:a0:15:33:4d:00:03:72:ab:fe:07:85:a0:71:
93:bf:85:17:6d:97:37:f6:44:3d:d8:f6:f7:4c:fb:51:de:3a:
bd:0c:37:c6:8c:0c:ac:18:f6:8f:06:89:6f:e5:31:fc:25:6e:
64:85:3a:35:fa:4b:c3:81:8e:18:18:73:cd:a9:f1:0e:75:b5:
04:6b:0b:b6:94:96:84:9b:84:63:91:b8:3d:c2:b1:98:44:d8:
d3:91:c4:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org