Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/JvI7Zz4WPCvBdS5YsQMF_lhMv-Q.roa
File: JvI7Zz4WPCvBdS5YsQMF_lhMv-Q.roa (raw, json)
Hash identifier: SQROx5G/0IUfcnIPA3c0lcqN8vIqRkuNkwwAzFBMHtw=
Subject key identifier: 26:F2:3B:67:3E:16:3C:2B:C1:75:2E:58:B1:03:05:FE:58:4C:BF:E4
Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Certificate serial: 0736
Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/JvI7Zz4WPCvBdS5YsQMF_lhMv-Q.roa
Signing time: Fri 01 Sep 2023 09:34:16 +0000
ROA not before: Fri 01 Sep 2023 09:34:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131677
IP address blocks: 103.149.64.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1846 (0x736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB
Validity
Not Before: Sep 1 09:34:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=26F23B673E163C2BC1752E58B10305FE584CBFE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f9:99:3f:3c:63:02:f3:ec:4c:1d:88:bd:8a:
0b:5a:b6:59:2b:00:fd:41:11:4c:c8:aa:20:a6:e2:
91:b5:7d:2a:dd:5a:51:9d:09:ed:1a:fb:9c:31:1b:
e9:c4:6f:90:38:e7:39:56:13:f7:6a:03:ef:ff:ac:
95:fb:2d:94:5a:e0:20:88:f1:d8:78:3f:62:8b:79:
bc:92:11:b7:f4:a5:20:32:3b:5c:31:1b:cf:07:89:
ff:2c:d6:3d:60:36:81:32:c9:42:f4:a7:9c:01:38:
2f:38:04:56:59:3b:6d:87:41:e0:ec:08:4a:bb:14:
a2:4c:9c:38:93:a0:d9:94:8a:a5:5f:d0:2a:bf:05:
f7:1d:9f:cb:ae:12:6f:e6:81:b0:f0:5b:8a:61:53:
ee:09:6f:fa:2d:8a:bd:fa:43:b0:5b:18:17:3f:47:
ce:14:a5:a1:c6:c0:b1:41:a6:a6:d7:0d:b4:61:2f:
f0:44:b2:c4:be:92:f3:3f:34:d6:a7:f0:4b:4b:1e:
6b:fa:d9:9a:b1:71:de:dd:7e:c4:66:87:df:4d:39:
76:6a:78:7a:37:fa:a6:ed:ef:ad:2c:5e:c0:9c:7c:
e6:05:f3:2c:33:ed:d0:96:72:7d:b4:fa:f0:75:f0:
7c:3a:d0:78:0a:ff:56:03:68:fe:5c:f8:2a:1c:7f:
98:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F2:3B:67:3E:16:3C:2B:C1:75:2E:58:B1:03:05:FE:58:4C:BF:E4
X509v3 Authority Key Identifier:
keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/JvI7Zz4WPCvBdS5YsQMF_lhMv-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.64.0/23
Signature Algorithm: sha256WithRSAEncryption
78:9c:54:c4:3c:45:74:07:2f:6b:4e:03:80:5e:0c:98:4b:a2:
cb:9b:e0:16:7a:ab:2b:92:5b:5d:4d:d8:a1:89:7c:2f:c4:f9:
74:c2:7d:67:89:42:95:06:d4:24:26:8e:60:9b:e2:db:34:a5:
2d:60:23:0d:88:d2:aa:dd:38:01:5f:0b:d4:24:4f:98:7f:1f:
b1:f4:11:50:b4:72:41:13:b5:28:d1:81:b3:f4:0c:7a:16:0f:
9a:10:6b:8d:92:6f:b3:41:6c:69:12:8f:d0:b4:d9:b0:11:f8:
80:ce:a9:2e:8a:7f:19:7e:e0:e3:03:2c:db:73:c4:1b:bb:1d:
a3:88:7a:50:3d:0b:fd:6f:3e:95:21:70:00:de:8a:ae:9e:78:
23:7d:db:6b:ae:e9:d7:40:48:71:a6:29:b7:52:ed:0a:f5:26:
20:6f:e8:f8:c4:77:70:70:e2:09:b4:78:fb:65:52:fb:08:55:
00:7f:c0:b9:18:25:76:f7:3c:45:8b:fd:68:f7:89:c5:cb:9d:
b8:fa:61:c1:ea:31:36:51:b8:36:9f:84:ce:52:52:93:67:9f:
a9:1a:fb:0d:13:1b:70:dc:6a:6b:23:01:6e:63:24:de:11:f8:
e1:cc:05:d8:d8:7f:32:15:31:42:48:f1:1c:50:de:af:44:a0:
7b:b4:31:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org