Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/fDhocHyRYlIFvr4qYZNJ9H9dwcQ.roa
File: fDhocHyRYlIFvr4qYZNJ9H9dwcQ.roa (raw, json)
Hash identifier: Eu0FtaR0ZwT556MKD4oVOoShMiW0BgRLJCiEqzJN4q8=
Subject key identifier: 7C:38:68:70:7C:91:62:52:05:BE:BE:2A:61:93:49:F4:7F:5D:C1:C4
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 08A4
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/fDhocHyRYlIFvr4qYZNJ9H9dwcQ.roa
Signing time: Fri 01 Sep 2023 09:34:30 +0000
ROA not before: Fri 01 Sep 2023 09:34:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131677
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2212 (0x8a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 1 09:34:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7C3868707C91625205BEBE2A619349F47F5DC1C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:25:68:9c:c6:be:c6:1c:16:ed:1b:79:2c:93:
db:e2:f8:d1:9c:db:d1:41:65:84:27:5d:1e:4a:53:
b1:81:fe:69:3d:46:0c:25:dd:4b:77:eb:ce:97:61:
a7:72:a1:20:e9:5c:31:c8:82:6a:b6:60:01:90:9c:
cd:da:16:c3:0e:61:9e:71:a5:e3:4b:cc:44:dc:5b:
a3:0a:59:8c:cd:a2:80:6e:37:a2:eb:e3:3b:c5:a1:
c7:21:ad:6f:73:6f:75:23:79:50:b8:ed:cf:84:8c:
4a:7a:0f:d8:cf:44:4b:5f:09:39:b2:ea:b9:31:59:
f1:eb:6d:3b:37:e7:0e:0e:31:bd:3c:b9:34:4f:7e:
38:26:ee:8c:79:0c:51:1c:9b:b6:15:00:53:47:7d:
20:5c:a1:41:22:bf:fc:07:8f:f6:e4:c1:bf:ca:c2:
bb:95:a1:ab:64:ad:04:fb:9c:da:9e:57:1e:4f:b3:
1b:45:1d:a6:7c:b1:96:21:81:7b:cc:2f:be:95:81:
f6:b5:8b:96:d6:55:da:e8:95:81:4f:5a:de:64:90:
f3:38:c5:7c:4b:ed:3c:ca:39:4e:5a:f2:68:42:3d:
c8:54:d1:18:70:76:22:28:df:d3:ea:cf:64:4f:de:
2d:3d:18:ec:c0:38:6b:d7:cd:7d:63:8a:25:aa:df:
3d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:38:68:70:7C:91:62:52:05:BE:BE:2A:61:93:49:F4:7F:5D:C1:C4
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/fDhocHyRYlIFvr4qYZNJ9H9dwcQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:3b:43:78:84:bb:3e:a8:5a:ce:c1:bf:cb:69:3e:d2:cd:0c:
9d:ca:8b:b4:4c:74:96:e1:45:73:5e:a2:9e:39:e5:37:81:da:
0e:c2:2a:76:6d:06:90:0e:13:a4:45:c9:0b:ca:af:13:81:3a:
40:c7:85:eb:be:33:4c:d2:87:e4:0d:4b:3a:87:73:d0:c2:1d:
71:fa:b0:32:01:9f:c1:87:4d:21:f3:a0:73:23:19:df:a0:b8:
55:60:bf:87:6d:58:1e:39:d3:9d:b6:0c:71:4a:69:a8:bc:93:
c6:fe:3a:24:f1:61:cc:08:32:63:76:32:50:f5:e3:4d:c6:91:
03:26:8f:dc:65:bd:88:a1:0c:ca:5d:bd:67:04:c3:b8:c9:c1:
b6:6b:a6:e2:87:a9:3c:9a:6a:4d:92:65:da:b7:74:c6:3a:09:
e3:88:e0:2d:c2:1d:53:20:62:54:65:ef:05:5a:0d:e3:7a:f5:
df:b2:43:28:5b:d0:c9:3f:c2:9c:ca:81:1a:c9:ec:a6:4d:35:
86:be:cf:f5:ea:eb:e4:63:26:66:9b:28:fd:9e:ea:15:07:ad:
4b:b1:12:db:0b:22:5d:11:db:eb:89:bc:fd:b8:64:3b:28:ff:
d1:4e:33:eb:32:64:bb:cc:fb:5b:48:de:58:ae:15:fd:58:78:
b0:a5:bb:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org