Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONENICE/WXlKzUKwZwe7dXX4AhY5uhkTV2o.roa
File: WXlKzUKwZwe7dXX4AhY5uhkTV2o.roa (raw, json)
Hash identifier: twktqMWDbU907F3oFxCVwBtO2RE4xGzNfS9x1A5ZkW0=
Subject key identifier: 59:79:4A:CD:42:B0:67:07:BB:75:75:F8:02:16:39:BA:19:13:57:6A
Certificate issuer: /CN=544FCFCB2AC954F24022A9C26A77C23A8E8E1868
Certificate serial: 0B20
Authority key identifier: 54:4F:CF:CB:2A:C9:54:F2:40:22:A9:C2:6A:77:C2:3A:8E:8E:18:68
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VE_PyyrJVPJAIqnCanfCOo6OGGg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONENICE/WXlKzUKwZwe7dXX4AhY5uhkTV2o.roa
Signing time: Sun 07 Feb 2021 13:08:26 +0000
ROA not before: Sun 07 Feb 2021 13:08:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 103.135.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2848 (0xb20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=544FCFCB2AC954F24022A9C26A77C23A8E8E1868
Validity
Not Before: Feb 7 13:08:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=59794ACD42B06707BB7575F8021639BA1913576A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:d0:3c:7f:5e:f4:ce:17:2f:d3:bb:ed:93:
bc:3f:60:15:eb:bc:bb:20:53:6b:8d:df:9c:27:3d:
c4:c6:03:d4:cf:3a:25:f1:09:49:b2:d5:40:95:b6:
1d:fc:87:9d:dd:37:8d:27:7e:fe:9c:a7:7c:b0:2b:
98:2e:4c:26:90:d8:3a:46:f6:2d:d1:24:95:92:93:
a4:77:9e:59:00:fd:86:56:e7:29:84:5b:9a:d8:72:
09:77:ad:94:67:2b:c1:ec:16:9e:19:38:dc:ef:be:
5a:df:d3:c7:e1:34:26:2f:18:a1:a8:c5:61:1d:4b:
38:5e:5e:68:58:d3:87:fb:40:25:2c:d6:f3:b6:d6:
f2:44:ce:48:2b:e2:4c:da:10:76:42:c9:4d:40:5f:
aa:ce:ab:34:42:77:38:6d:28:22:b2:5e:61:92:fa:
10:67:31:f2:ae:3c:34:5d:9f:49:e1:02:22:33:67:
fe:6f:63:68:63:e4:e6:fb:03:f4:f1:d0:be:68:a4:
bb:03:5b:4e:24:bf:78:e1:1f:05:ac:ec:78:68:cc:
74:3e:43:37:c7:1e:8e:3e:8d:be:9f:12:79:17:f7:
8c:fb:a4:a2:a1:d0:42:1c:d2:29:a3:2d:7e:2b:d9:
db:a0:0c:7c:82:79:9e:1f:60:00:51:38:dd:13:da:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:79:4A:CD:42:B0:67:07:BB:75:75:F8:02:16:39:BA:19:13:57:6A
X509v3 Authority Key Identifier:
keyid:54:4F:CF:CB:2A:C9:54:F2:40:22:A9:C2:6A:77:C2:3A:8E:8E:18:68
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONENICE/VE_PyyrJVPJAIqnCanfCOo6OGGg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VE_PyyrJVPJAIqnCanfCOo6OGGg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONENICE/WXlKzUKwZwe7dXX4AhY5uhkTV2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.64.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:14:df:91:8b:46:0e:10:aa:ca:be:3e:9b:bd:20:67:68:2d:
35:5f:35:56:27:b5:b0:8a:4c:15:e2:4b:28:36:e6:70:d4:0f:
72:c7:3e:b1:b3:54:55:dc:92:98:a9:a7:d7:26:ce:2f:b7:23:
76:12:e2:92:df:2e:10:69:74:76:a9:ef:55:26:a5:d3:86:55:
97:91:f5:a8:ef:79:45:bf:31:cf:4c:bc:97:00:9b:01:d9:95:
fb:5c:8a:f0:f6:b6:b4:e6:a6:9d:57:fe:e8:6e:82:82:d2:1d:
9c:36:9c:e8:19:16:04:02:d7:fd:fc:37:ef:a6:ad:b5:44:8e:
e1:c7:e1:05:59:79:62:f6:2c:02:d2:0f:57:1d:40:6f:b6:d0:
e6:c7:91:7a:df:0f:42:7d:fd:4b:a4:6d:1c:2a:ef:8c:4d:75:
f1:02:e4:5f:ee:f8:30:47:9a:72:7a:94:f3:9b:ee:14:8c:88:
0d:6a:e4:f1:e2:86:20:8f:66:89:50:a9:0b:d9:ba:aa:19:5f:
41:26:d4:8d:69:82:7d:94:5b:37:28:4b:68:0b:e3:96:8f:52:
8b:ee:a7:9d:c7:72:a1:e1:fb:44:9c:dd:1d:32:39:bf:96:31:
eb:3e:2b:71:25:56:28:97:f6:ec:b0:c0:8c:15:e6:45:be:bb:
7f:b0:1a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org