Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/BcxswwGDClV7IxYt8x3yBkISV0o.roa
File: BcxswwGDClV7IxYt8x3yBkISV0o.roa (raw, json)
Hash identifier: PEcnkt6+zLXeFKCwchIxbx0zqXEpIk+7Yk6wnpfGk/c=
Subject key identifier: 05:CC:6C:C3:01:83:0A:55:7B:23:16:2D:F3:1D:F2:06:42:12:57:4A
Certificate issuer: /CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A
Certificate serial: F2
Authority key identifier: 55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/BcxswwGDClV7IxYt8x3yBkISV0o.roa
Signing time: Wed 04 Sep 2024 09:17:19 +0000
ROA not before: Wed 04 Sep 2024 09:17:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.99.138.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A
Validity
Not Before: Sep 4 09:17:19 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=05CC6CC301830A557B23162DF31DF2064212574A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d0:64:c1:b5:cf:3c:b1:c2:c2:46:5d:ec:b5:
78:86:07:52:f2:ab:cb:88:3f:e9:ae:ef:82:a2:46:
62:7b:90:a9:5e:f6:47:d4:a3:31:c2:a0:ba:00:90:
89:0b:97:f7:b4:80:e1:80:09:08:ea:72:0f:e0:b5:
2c:74:4b:36:9f:50:5b:26:df:a4:86:6d:92:37:4a:
b9:4b:76:1e:26:e7:6a:d2:51:1e:82:04:61:d3:8f:
ff:88:ac:66:4a:84:9a:58:b4:a8:38:08:e4:1d:94:
9b:02:ed:ab:be:81:e3:cf:36:8e:f5:b7:f3:13:cf:
ea:74:35:08:35:78:01:3b:0f:60:f0:b5:47:51:a5:
34:e4:78:86:68:a0:e4:1f:ec:87:aa:05:fe:7c:6a:
59:1b:24:98:65:8e:20:4e:e2:02:de:86:b9:7d:30:
87:f0:95:93:0c:fd:ca:e3:72:6e:09:c4:d5:42:ca:
62:57:c1:04:7a:9c:bb:b1:47:aa:c0:98:81:46:6f:
8c:67:91:b5:0a:8d:71:29:bd:ec:ac:bc:78:44:b0:
92:49:85:fd:c9:8b:1d:82:59:53:50:22:67:03:1b:
9e:6e:12:45:9c:9b:a8:9b:13:6f:19:f9:6f:47:11:
c8:de:31:ac:34:cb:60:7f:c1:c1:bb:34:db:7a:fd:
c2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:CC:6C:C3:01:83:0A:55:7B:23:16:2D:F3:1D:F2:06:42:12:57:4A
X509v3 Authority Key Identifier:
keyid:55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/BcxswwGDClV7IxYt8x3yBkISV0o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.138.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:b1:4c:8a:f5:43:a9:7f:32:87:cc:d2:ed:ad:f5:7d:a7:9d:
14:1d:92:61:84:7c:88:50:ec:4e:32:4f:9f:ea:87:31:8b:8a:
47:3f:dd:d5:8d:54:da:45:9e:b6:93:5f:ee:f7:5c:05:47:2b:
79:4b:c0:1c:e0:24:52:04:d0:6f:5b:f4:a8:54:44:e2:e5:ab:
d3:cc:10:e9:26:0c:ae:69:83:e9:b1:44:24:42:72:39:93:cd:
88:26:e8:af:66:7d:86:13:8d:83:bd:fd:d2:2b:e9:81:51:47:
fa:39:11:33:3c:bd:73:84:d5:e6:87:07:45:7a:43:36:e7:df:
ac:e8:89:6c:2e:f8:d3:2e:89:f7:6d:c0:cb:8b:93:8b:c6:fc:
8e:7b:af:2f:29:73:62:d0:77:08:40:52:d7:06:aa:e6:33:84:
cc:36:e9:08:a6:d7:7e:ee:62:73:73:d5:de:cc:87:aa:8f:bd:
5f:46:ad:ca:a7:9d:76:76:eb:8d:35:0c:b1:6e:a1:af:35:0e:
3b:91:2a:02:0f:84:5c:b7:1a:f1:88:ee:c6:f3:19:be:7b:08:
7d:5e:1c:b1:b9:c7:ad:44:7e:24:36:5a:6a:14:4e:23:b9:9e:
62:29:c8:fb:f7:d2:62:8d:06:5c:23:d3:c2:33:4f:cb:0e:84:
62:53:51:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 22:34:31 2024 by rpki-client on console-fra.rpki-client.org