Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/OiK0KMtMitSB4Qk1r2lvr4nmyOs.roa
File: OiK0KMtMitSB4Qk1r2lvr4nmyOs.roa (raw, json)
Hash identifier: XmpoL8HJCa6NSDgaNUZeiBFK3yVLed7l7ddk/dUfUdg=
Subject key identifier: 3A:22:B4:28:CB:4C:8A:D4:81:E1:09:35:AF:69:6F:AF:89:E6:C8:EB
Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial: EC
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/OiK0KMtMitSB4Qk1r2lvr4nmyOs.roa
Signing time: Thu 28 Dec 2023 15:30:55 +0000
ROA not before: Thu 28 Dec 2023 15:30:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9915
IP address blocks: 103.67.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236 (0xec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Validity
Not Before: Dec 28 15:30:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3A22B428CB4C8AD481E10935AF696FAF89E6C8EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:7d:ba:40:48:20:cc:53:e2:b5:d0:16:f5:25:
24:0e:07:5a:de:1c:30:8a:d6:24:ff:5d:61:bd:80:
11:04:60:20:8e:a3:e8:5b:f0:63:d3:ea:e7:a7:e4:
11:2e:ce:29:cb:56:4b:20:d1:f4:b3:2f:5b:c8:03:
38:6e:6d:e5:36:9e:9d:b5:27:0a:29:7f:27:ef:1e:
46:43:db:ea:07:af:a2:53:8a:c7:6a:9e:31:58:5c:
6f:84:62:68:b2:22:1d:d9:f5:f8:1d:40:e3:e7:d1:
24:cf:5c:74:1c:d8:67:be:f5:88:d1:d2:05:3f:3c:
cc:6e:40:0b:99:64:7c:60:41:08:82:e6:5f:cf:44:
04:db:20:29:c7:91:ca:52:99:59:63:1a:dd:5f:e7:
68:ce:fd:87:2c:51:0f:30:56:f0:88:f0:f6:a1:f4:
8e:9e:11:a6:13:e9:30:d8:7e:75:bd:66:ab:84:90:
9b:fb:59:2a:ca:d7:c7:9d:ed:1b:64:4c:f0:60:70:
5f:29:3b:c1:b3:7b:7d:0e:75:45:67:ff:b5:40:1a:
e2:75:3b:c3:6c:26:8e:9e:30:9a:ba:3d:75:2a:75:
cb:e5:e9:4d:5c:c3:bb:96:be:8f:f6:53:2e:a1:6b:
bb:3e:56:a4:91:f0:28:ad:56:f4:cd:61:13:ff:21:
c8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:22:B4:28:CB:4C:8A:D4:81:E1:09:35:AF:69:6F:AF:89:E6:C8:EB
X509v3 Authority Key Identifier:
keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/OiK0KMtMitSB4Qk1r2lvr4nmyOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.160.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e9:5a:ad:cc:23:51:07:13:46:b2:a7:88:2a:68:d4:8c:cd:
c3:86:2f:41:85:9f:c0:ac:24:80:11:12:42:da:a8:3d:83:e5:
85:7b:b0:a1:3e:a1:f0:97:c9:76:80:fd:7e:56:a8:c9:01:e5:
b2:f2:09:b1:fe:07:e4:c5:f1:bc:74:ff:f8:ae:b6:33:32:68:
7a:ab:a9:46:2e:cb:5e:71:12:1a:26:44:f3:89:26:34:2d:3d:
d4:b0:6d:c0:db:4d:69:3e:10:c7:bd:83:3e:ce:f4:3b:7c:af:
0d:36:40:97:ac:45:49:d6:dd:b1:a4:ad:f6:74:2c:fd:2c:fc:
c3:ba:17:12:5a:38:9e:fb:9b:64:29:9a:5d:b4:f8:e6:9d:10:
ae:28:1a:19:54:9a:9f:ff:73:57:ae:0d:e1:93:4a:92:23:fd:
d2:55:3c:fa:a6:cb:1f:bd:48:75:e3:17:eb:09:f1:a6:19:1f:
c0:8d:4a:a9:63:b1:1f:bb:05:4e:cf:fb:9c:21:6f:ca:15:87:
cb:a0:37:71:9f:a8:94:66:92:07:d4:17:b6:ae:da:63:9f:da:
76:e1:49:b6:01:63:b1:5d:92:bc:a6:17:2e:10:48:20:08:2b:
98:a3:cc:36:d8:39:7c:54:9c:96:30:fe:bf:bb:91:73:cb:5d:
b6:fd:28:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org