Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/SONF6PKam2LwvxGvtNoLC3Ele1w.roa
File: SONF6PKam2LwvxGvtNoLC3Ele1w.roa (raw, json)
Hash identifier: Taqe4gsUDZM5EqtG3Yw/AIL7ona9f4PyVp/Iya3OfOU=
Subject key identifier: 48:E3:45:E8:F2:9A:9B:62:F0:BF:11:AF:B4:DA:0B:0B:71:25:7B:5C
Certificate issuer: /CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Certificate serial: 0294
Authority key identifier: 98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/SONF6PKam2LwvxGvtNoLC3Ele1w.roa
Signing time: Fri 01 Sep 2023 09:21:22 +0000
ROA not before: Fri 01 Sep 2023 09:21:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131618
IP address blocks: 103.159.120.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660 (0x294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Validity
Not Before: Sep 1 09:21:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=48E345E8F29A9B62F0BF11AFB4DA0B0B71257B5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:01:4e:d5:e2:41:2e:68:f0:84:61:4f:db:d9:
73:1c:05:bd:b3:ec:71:4d:43:05:30:f2:18:19:3c:
14:58:06:46:eb:d4:79:05:d0:45:7f:0d:6d:c0:d5:
34:c7:de:0c:70:68:92:40:c7:ea:aa:85:9e:5f:c2:
bf:68:b3:9d:29:26:3c:a4:ed:f1:86:81:f0:5d:80:
d8:f3:bc:11:9a:d5:16:86:ed:41:81:a4:c8:1d:2a:
97:09:6b:87:a1:f9:bd:13:f5:07:f9:e2:72:2d:87:
e7:88:f9:04:8c:4c:17:50:fd:e5:1c:9e:41:11:d2:
5f:b7:e9:a3:40:9f:f2:8d:eb:f3:56:dd:09:3f:4e:
f2:75:44:5b:e9:a9:11:ee:df:75:ff:7b:55:79:a8:
cd:1c:13:1c:73:54:b8:85:66:a8:8d:c4:39:a1:31:
a3:78:a2:bf:db:90:f6:24:4b:ac:49:d2:ac:95:e1:
ea:13:f2:35:bd:19:87:49:4a:e4:18:a3:6c:fe:0e:
05:31:6b:0b:86:53:6a:1c:c0:85:9c:d4:57:4a:dc:
25:20:6e:97:2c:64:59:e6:87:ac:05:ee:5d:d2:22:
99:89:9a:1c:a1:4a:81:a4:bb:d8:da:22:d7:0a:65:
42:48:38:2c:d0:d7:16:a2:aa:37:da:ea:1d:d4:5e:
33:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E3:45:E8:F2:9A:9B:62:F0:BF:11:AF:B4:DA:0B:0B:71:25:7B:5C
X509v3 Authority Key Identifier:
keyid:98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/SONF6PKam2LwvxGvtNoLC3Ele1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.120.0/23
Signature Algorithm: sha256WithRSAEncryption
22:3e:76:1e:38:c5:4f:e2:c3:f0:15:ff:c1:f3:18:c7:75:e9:
72:79:c5:be:0f:55:c3:df:dd:fa:70:e6:67:06:f6:03:ee:9b:
38:51:02:bd:d0:00:71:91:6e:87:36:e8:25:37:8a:5e:02:5e:
46:5d:99:b1:d2:49:b3:81:07:fc:db:47:de:90:9c:90:2e:6a:
0e:36:a7:d3:1c:13:e1:d6:21:6b:6f:f9:b6:0c:ca:e8:39:69:
a1:07:73:01:3b:0b:98:f3:0e:3f:3b:6f:bf:0d:dd:df:2e:f8:
ba:2e:64:d9:64:bd:ca:74:5f:8c:84:75:5b:0b:ad:ec:40:b0:
b0:60:9c:24:fd:d8:ab:e8:17:dd:bd:ed:85:80:2d:17:c1:4d:
ae:93:17:f7:1b:8d:16:6c:c6:c3:4e:8a:1f:cb:38:10:a8:71:
23:ce:72:59:8d:78:ec:35:53:11:33:91:40:e6:cb:a3:69:c8:
1d:83:85:00:b1:e0:49:f1:f3:d3:64:12:df:c5:8e:05:3d:f5:
c4:99:fe:e2:a2:b2:6c:dc:f0:72:74:dc:2f:3f:5f:39:c4:b4:
8c:1a:f7:68:47:fe:56:6e:64:c2:65:ed:8a:c1:b4:71:51:f4:
6c:d9:61:b4:cc:6c:f5:a9:5a:37:7e:01:77:ae:2e:5b:db:d0:
b7:d3:b4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org