Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIXNET/wvgWlNe6XApgo2HuP0MoR5LoJbY.roa
File: wvgWlNe6XApgo2HuP0MoR5LoJbY.roa (raw, json)
Hash identifier: MBrTFq/QrAISqwKV++VXnV8G2yTq2+6jG/DBUl87WEM=
Subject key identifier: C2:F8:16:94:D7:BA:5C:0A:60:A3:61:EE:3F:43:28:47:92:E8:25:B6
Certificate issuer: /CN=CDF44277BA96FC60729008649C09B0AEA07033E8
Certificate serial: 0AE3
Authority key identifier: CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/wvgWlNe6XApgo2HuP0MoR5LoJbY.roa
Signing time: Fri 01 Sep 2023 09:36:06 +0000
ROA not before: Fri 01 Sep 2023 09:36:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 103.23.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2787 (0xae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDF44277BA96FC60729008649C09B0AEA07033E8
Validity
Not Before: Sep 1 09:36:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C2F81694D7BA5C0A60A361EE3F43284792E825B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:64:6e:df:b7:c7:83:eb:51:d0:bc:66:af:76:
64:51:76:fe:04:0f:a7:7c:13:81:92:e0:6e:e4:90:
3f:83:b5:51:d5:ac:39:47:93:42:16:97:01:54:4e:
45:de:8c:ce:23:0f:0f:e7:d6:ea:03:39:05:28:3d:
6f:32:af:40:49:ac:2b:6e:0f:2f:80:5a:17:b6:ca:
eb:02:fd:d6:74:fe:07:a0:e4:5b:47:53:e1:20:06:
b4:cf:58:0a:e0:95:ea:af:14:4f:1d:82:7e:cd:18:
f6:13:ab:89:16:05:94:d9:1f:3a:8f:f0:44:b8:6a:
80:51:9f:e9:7e:b8:c9:7d:fb:44:91:80:16:c6:40:
b2:26:43:71:f1:1d:04:ba:86:0a:cb:d7:90:07:f0:
97:55:4e:51:8d:94:d5:46:64:ae:45:f0:72:13:15:
71:67:36:8c:79:0b:e4:31:d5:ba:f2:c0:44:42:88:
5d:6a:d6:76:a3:7a:87:e3:36:d9:b4:49:e7:b9:df:
da:5f:25:33:57:98:dc:dc:ca:0b:a6:da:11:b9:8a:
59:dc:eb:a3:0e:a9:de:8d:0e:69:a0:a1:ce:45:58:
e7:6c:80:46:33:9d:f8:f4:0b:8e:15:e0:ba:99:1f:
47:8b:94:fc:2e:39:cc:a3:c6:19:29:76:ac:58:ac:
19:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F8:16:94:D7:BA:5C:0A:60:A3:61:EE:3F:43:28:47:92:E8:25:B6
X509v3 Authority Key Identifier:
keyid:CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/zfRCd7qW_GBykAhknAmwrqBwM-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/wvgWlNe6XApgo2HuP0MoR5LoJbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.108.0/22
Signature Algorithm: sha256WithRSAEncryption
70:ed:e5:9c:82:0f:c5:e9:4b:00:cc:f4:b9:01:34:9e:51:99:
51:39:78:03:1a:8b:23:e0:11:cc:a3:9b:9d:07:2b:19:67:e0:
48:91:0a:eb:63:c3:38:3c:a9:b2:f3:97:e2:24:ec:c6:d5:fa:
9d:6d:43:11:d0:81:22:bd:f9:71:e6:1e:e1:f2:78:00:d4:46:
1f:8b:fb:07:de:36:a2:a5:c6:02:6b:18:06:c4:4b:d6:9c:ec:
a8:49:83:62:f9:33:ac:60:a6:b7:f4:93:ec:b0:3d:4d:98:08:
bb:26:63:95:b8:41:c7:da:e1:27:29:5b:ff:de:11:59:a8:7d:
be:0c:83:64:9d:4c:d8:ad:e5:da:7f:83:b1:1d:5e:23:85:77:
9a:9d:7d:72:7e:82:cc:ce:10:a4:c0:4f:ee:dc:fb:85:f6:8a:
4b:60:92:f7:61:45:03:af:9c:86:e2:ca:30:e3:43:a1:65:ba:
4d:f3:88:93:3e:72:5a:ff:9a:22:15:95:6e:8b:34:31:43:28:
45:dc:95:18:da:bb:94:80:3a:29:37:80:97:83:53:a0:79:9e:
9f:ec:3c:67:75:5a:59:02:d7:fc:bd:03:60:74:31:00:a8:b3:
53:47:56:b5:f6:cd:e9:57:cc:43:82:eb:fc:25:c2:a9:9d:42:
4a:c5:7c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org