Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa
File: Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa (raw, json)
Hash identifier: syb8YoCtR8gve17iVIb/uEqoIZCZUOiBkFO/zKiL4Fg=
Subject key identifier: 15:BA:F3:F0:EF:93:24:28:D2:C6:0B:D9:FF:72:53:42:56:42:57:6B
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 05DF
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa
Signing time: Fri 01 Sep 2023 09:20:04 +0000
ROA not before: Fri 01 Sep 2023 09:20:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17415
IP address blocks: 103.152.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1503 (0x5df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 1 09:20:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=15BAF3F0EF932428D2C60BD9FF7253425642576B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:53:ab:d0:8f:5f:2a:5c:18:1a:9e:39:33:a9:
fb:22:c3:80:4c:86:6a:74:3f:13:03:8e:76:6d:71:
bd:08:49:23:f7:d2:a3:17:4b:5a:29:15:1c:86:0f:
e9:4a:5d:d5:02:e6:37:06:53:3c:70:c3:15:8f:72:
7c:50:b7:d8:c7:97:32:84:86:f3:aa:91:8e:58:ec:
a9:ac:4a:e0:6d:7e:f3:fe:ca:49:68:39:5e:cc:6f:
00:a8:5c:75:75:05:3b:2a:24:81:51:d8:c4:3b:ec:
dc:f6:d6:5f:0c:80:c5:7c:39:d6:cb:8a:af:72:5c:
74:72:8b:a9:08:7d:dc:be:cf:6d:f6:5b:61:58:ed:
db:8c:34:8e:9a:c3:0a:7f:e6:c9:6a:91:20:21:ba:
1b:a2:c2:9f:45:43:2f:7a:27:4e:19:67:e1:ff:4d:
b1:99:4b:eb:5a:13:5e:cc:d0:7a:40:14:e5:c4:dc:
48:1d:65:73:25:bf:97:9f:c5:91:35:8b:56:19:10:
51:b8:b5:4f:3d:5e:89:34:9d:19:ac:a7:89:b9:d4:
cf:33:e4:f7:30:60:54:91:1f:5a:df:ad:86:fd:8f:
da:c2:6f:54:1d:af:b8:e5:50:6c:9d:d5:3a:69:a2:
d4:c1:46:27:2a:95:72:7c:10:e2:08:2f:0a:00:c2:
2b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:BA:F3:F0:EF:93:24:28:D2:C6:0B:D9:FF:72:53:42:56:42:57:6B
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.202.0/24
Signature Algorithm: sha256WithRSAEncryption
32:5e:e4:61:aa:85:ab:14:fb:ac:ac:55:00:f1:fa:4a:4e:17:
55:a5:d8:15:5d:e5:37:98:88:5e:e4:11:ee:42:78:6b:ff:78:
84:40:a2:77:be:12:dd:41:49:8f:38:0c:23:72:b3:92:e6:8f:
e0:a1:d0:3b:eb:78:39:52:b8:d6:b0:26:56:d6:1f:55:f7:05:
ef:13:9b:a8:7e:14:39:b1:2d:4e:62:1e:a6:90:51:a8:69:ee:
62:63:f9:f6:3c:d7:6e:b4:8f:17:b7:f7:e2:d9:b7:c3:8a:b4:
ae:fc:13:56:64:e3:ab:41:68:f8:4b:4b:97:13:00:ea:02:e3:
73:25:05:45:6c:3e:05:f0:a7:b4:f9:e2:b7:8b:13:7c:db:55:
27:2d:83:05:82:3b:43:b5:e2:3b:12:27:c3:f1:02:7d:f4:f2:
97:08:ca:f1:57:79:99:90:f5:df:70:41:79:dc:4c:8d:1f:11:
66:ee:03:a5:6e:c0:84:d4:66:34:5c:f7:53:4e:fd:cb:3c:e5:
21:7e:de:fe:c4:93:72:49:a4:c2:ef:ed:89:40:cd:36:23:86:
75:63:af:74:b3:e0:3f:01:1c:70:11:ea:6e:0d:b7:7d:79:9f:
8e:06:ed:ee:25:0d:df:20:16:df:1d:9e:f2:d6:3a:17:96:5f:
71:58:fb:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org