Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCL/bgQo2wnXghJFwPIRG2NsLjXqgeQ.roa
File: bgQo2wnXghJFwPIRG2NsLjXqgeQ.roa (raw, json)
Hash identifier: 3fIKwMHWvVSnPy2f6U+qb14v+IRIFoPJmWj3yB7BvNo=
Subject key identifier: 6E:04:28:DB:09:D7:82:12:45:C0:F2:11:1B:63:6C:2E:35:EA:81:E4
Certificate issuer: /CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198
Certificate serial: 0D4D
Authority key identifier: 0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/bgQo2wnXghJFwPIRG2NsLjXqgeQ.roa
Signing time: Wed 14 Aug 2024 11:03:36 +0000
ROA not before: Wed 14 Aug 2024 11:03:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 32242
IP address blocks: 103.140.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3405 (0xd4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198
Validity
Not Before: Aug 14 11:03:36 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6E0428DB09D7821245C0F2111B636C2E35EA81E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6a:8a:06:0f:27:ff:6d:84:b9:bf:3a:3a:a8:
e5:d0:b9:4c:7c:ea:28:9e:75:af:d1:27:d4:1e:d2:
37:be:24:a0:ce:20:c9:7d:38:e7:8d:0b:aa:39:40:
5e:7c:e9:54:9f:3d:1c:64:d8:dc:5a:11:2c:ad:b5:
61:96:5a:75:09:67:24:b9:8a:14:51:44:14:0b:14:
30:db:95:41:76:33:8b:d8:05:72:25:73:14:92:8d:
19:b5:aa:7c:70:a7:77:07:b7:18:3b:92:30:53:49:
46:28:ec:03:bd:2f:24:b5:ac:09:b8:46:89:5c:fb:
8d:e0:fb:99:73:13:4c:48:f9:9b:19:68:c6:15:26:
58:18:ea:ca:6e:02:84:fb:be:79:66:33:1a:70:19:
2e:3b:31:64:12:95:52:99:14:6c:d7:eb:91:85:0d:
4a:0e:68:17:79:63:f2:8c:07:70:d7:f9:a8:7d:9b:
4d:0f:6a:c4:05:d3:f6:50:0d:c7:75:2f:d2:94:26:
14:a3:b4:14:fa:4d:3d:5c:64:ba:27:7c:71:f6:c0:
d5:2b:20:92:4a:a6:a2:f2:d9:8e:d2:31:b0:de:0b:
83:7d:96:18:5e:3a:cc:94:22:31:b6:d3:da:90:e7:
a4:46:17:9b:c1:24:df:46:db:bb:73:e1:54:3e:fa:
0c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:04:28:DB:09:D7:82:12:45:C0:F2:11:1B:63:6C:2E:35:EA:81:E4
X509v3 Authority Key Identifier:
keyid:0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/bgQo2wnXghJFwPIRG2NsLjXqgeQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.232.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:5f:f0:bc:6f:b4:c5:44:43:32:66:09:99:a8:d5:35:a1:90:
68:98:38:4a:d3:0a:34:75:50:aa:e3:a1:bb:09:75:a3:07:99:
85:ab:36:ae:d6:ca:21:ec:42:c1:fd:c9:8a:ab:f1:84:b9:2e:
0c:01:5b:c0:e5:17:6f:e9:e9:d7:17:b5:53:c3:ec:18:d3:c3:
4c:f9:a9:d9:80:81:85:81:e7:72:be:c8:c3:97:ea:e8:0a:f5:
0d:3e:f5:92:79:8b:3a:a9:9d:dd:e3:17:a2:bf:53:85:38:ef:
3f:aa:f2:22:bc:9e:2f:c5:93:6b:8b:5a:df:c6:c5:e0:13:ee:
d3:99:67:60:d0:49:ad:2b:dc:bd:05:ee:d6:11:d4:c4:dd:fa:
35:59:1b:18:3e:87:7b:f4:39:3e:a6:16:a6:15:87:02:1f:12:
03:d1:ab:e3:7d:13:94:ef:b6:cc:0b:cb:0c:cb:47:5a:1b:b1:
55:6b:cc:06:66:98:f7:df:19:72:c5:78:70:f7:4e:fc:f9:74:
87:82:2a:3a:3a:f4:54:bd:cf:c6:b7:06:d8:e2:f1:cb:06:78:
6c:19:b6:54:5c:cb:7c:ae:e9:c8:c4:22:7a:e0:75:b2:41:62:
41:27:4d:81:da:65:ef:e6:c7:c2:cd:18:54:3b:46:f6:a9:02:
4a:89:26:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org