Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONENICE/OKLw6O_T9XNX-Z4oZH67iF5Vhfg.roa
File: OKLw6O_T9XNX-Z4oZH67iF5Vhfg.roa (raw, json)
Hash identifier: fZsDZaQM9ZzWFN+G6s1c8aCDXaQsV3UqgjL2YnQJIlE=
Subject key identifier: 38:A2:F0:E8:EF:D3:F5:73:57:F9:9E:28:64:7E:BB:88:5E:55:85:F8
Certificate issuer: /CN=544FCFCB2AC954F24022A9C26A77C23A8E8E1868
Certificate serial: 09DB
Authority key identifier: 54:4F:CF:CB:2A:C9:54:F2:40:22:A9:C2:6A:77:C2:3A:8E:8E:18:68
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VE_PyyrJVPJAIqnCanfCOo6OGGg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONENICE/OKLw6O_T9XNX-Z4oZH67iF5Vhfg.roa
Signing time: Tue 29 Sep 2020 10:05:15 +0000
ROA not before: Tue 29 Sep 2020 10:05:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131273
IP address blocks: 103.135.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2523 (0x9db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=544FCFCB2AC954F24022A9C26A77C23A8E8E1868
Validity
Not Before: Sep 29 10:05:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38A2F0E8EFD3F57357F99E28647EBB885E5585F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:56:ea:3c:06:81:8d:a9:dc:89:02:a9:ff:e7:
70:48:47:a7:8a:71:83:e2:c8:78:97:1d:40:91:b6:
84:c3:28:85:51:c8:be:51:9a:f0:20:e2:2a:9b:68:
86:2d:4f:48:9e:aa:66:43:f9:b7:10:af:0c:8b:9a:
59:17:d8:e0:52:f6:d7:e6:e4:34:9c:ad:fa:87:d4:
26:97:1b:51:c7:56:5a:27:ea:6d:79:e0:e5:53:dc:
37:48:e8:74:c6:bb:3b:64:25:f9:57:86:43:25:85:
12:b7:17:36:cb:ed:4d:96:46:ee:82:7d:86:d2:4e:
0c:cc:05:ac:b2:82:64:25:1b:00:97:87:9e:06:05:
14:55:83:4c:7d:45:2b:6e:aa:dc:6b:e5:38:c5:18:
e0:11:c3:92:5e:37:4a:9a:db:0f:1b:db:5a:40:3c:
de:46:e3:12:b9:b7:d6:d5:6e:c4:db:34:dc:ff:c2:
62:38:6b:fb:5d:f4:9d:42:4d:51:b7:f1:e8:19:18:
e6:49:41:71:4d:f0:0d:45:7e:2b:ed:e3:41:0d:75:
19:6a:12:7f:da:7b:4a:8f:46:23:8c:8b:d7:eb:95:
f2:49:99:69:88:cc:a9:46:29:56:60:31:e3:a6:8e:
0d:77:63:e6:a0:c9:60:db:17:2e:a5:7f:bd:d9:df:
b4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A2:F0:E8:EF:D3:F5:73:57:F9:9E:28:64:7E:BB:88:5E:55:85:F8
X509v3 Authority Key Identifier:
keyid:54:4F:CF:CB:2A:C9:54:F2:40:22:A9:C2:6A:77:C2:3A:8E:8E:18:68
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONENICE/VE_PyyrJVPJAIqnCanfCOo6OGGg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VE_PyyrJVPJAIqnCanfCOo6OGGg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONENICE/OKLw6O_T9XNX-Z4oZH67iF5Vhfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.64.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:e2:35:69:c2:d8:88:4a:e3:32:37:0c:42:ad:2c:d4:70:43:
2a:42:35:95:23:26:71:e7:a4:88:63:5b:5f:df:0f:92:ee:32:
e8:59:fa:d6:69:3b:b1:5f:16:48:b8:f9:a3:8d:35:b1:d5:1e:
d4:16:f4:16:12:fc:7a:0b:ec:3f:9a:cd:7f:06:39:ad:dd:67:
23:fa:26:22:0a:12:2b:b8:79:09:47:bd:75:ae:a2:b8:21:c1:
87:61:ac:18:69:aa:06:24:e0:3a:bf:5a:d7:13:40:1a:9e:48:
57:81:d9:2d:be:4b:74:a2:d8:e5:9b:cd:8a:50:cc:61:e4:4a:
eb:32:1b:90:99:1a:3d:b7:f4:5a:3f:f4:0f:82:a0:96:22:c4:
33:41:80:79:20:24:98:46:8e:8a:b2:3e:24:73:ee:91:66:6c:
fe:ba:44:dd:00:a8:a6:69:3f:e7:3d:89:98:1e:f8:5b:77:9c:
0b:b5:9d:20:fe:d6:1c:fd:55:af:bc:e3:88:3c:1a:f1:56:73:
57:c1:e6:03:25:81:8a:d4:af:fa:ca:ff:08:4b:6f:a4:30:35:
e9:a4:cc:10:0f:f6:2d:de:3b:c9:b0:41:b4:21:04:d5:fc:d0:
7a:a5:2b:5e:f8:a5:ab:8d:35:78:93:f8:02:1d:fa:8e:8c:ba:
4c:f3:d1:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:13 2025 by rpki-client