Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/HjtWr1_VQLzIhD0ktelV2UEZUTg.roa
File: HjtWr1_VQLzIhD0ktelV2UEZUTg.roa (raw, json)
Hash identifier: 3qBJXCoN+orvwlyThLztB+6DGSmYdlX4IgQlT2s+pAA=
Subject key identifier: 1E:3B:56:AF:5F:D5:40:BC:C8:84:3D:24:B5:E9:55:D9:41:19:51:38
Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7
Certificate serial: F7
Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/HjtWr1_VQLzIhD0ktelV2UEZUTg.roa
Signing time: Mon 26 Aug 2024 05:25:10 +0000
ROA not before: Mon 26 Aug 2024 05:25:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.69.54.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 247 (0xf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7
Validity
Not Before: Aug 26 05:25:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1E3B56AF5FD540BCC8843D24B5E955D941195138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:02:f2:59:30:4f:11:b3:57:46:d5:5c:ad:74:
c7:9c:f8:ae:32:6f:00:df:af:9f:60:a3:8f:09:60:
eb:1c:cc:5e:e0:42:9c:da:fa:80:b6:1f:c5:56:32:
65:4f:f4:d3:80:02:9f:14:3c:73:2f:33:aa:75:65:
ab:b9:93:9e:b6:7a:9b:c8:06:02:1e:42:7a:ae:af:
19:49:19:62:fb:d8:dc:ef:b5:bb:a4:d7:8a:e7:10:
51:30:9c:3e:9a:87:a3:4b:9e:75:7c:d6:ca:63:5e:
4d:27:14:87:f7:40:ef:2e:a6:b6:6b:27:6c:da:60:
c2:27:f6:80:58:d9:45:dc:7b:73:92:99:93:1f:dc:
b8:14:2d:93:cd:be:70:5b:09:f8:bf:38:a7:d6:6f:
2b:99:b5:ac:e1:1c:2f:11:76:aa:e4:05:05:c3:15:
99:8d:44:a4:58:56:ae:7e:43:4d:22:4b:5c:47:88:
fe:14:ab:54:80:8c:df:9a:b6:76:ba:12:59:a6:19:
d4:34:c8:a1:af:3e:d0:f9:3b:ee:d5:d6:d4:17:76:
05:1f:ed:86:d8:4e:73:22:a6:01:6e:3e:53:b4:8d:
08:14:38:2b:2c:a4:9d:5c:ad:83:a3:fe:f5:d0:6e:
21:d0:b5:58:7c:53:9c:1d:17:57:2b:34:10:7a:05:
c9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:3B:56:AF:5F:D5:40:BC:C8:84:3D:24:B5:E9:55:D9:41:19:51:38
X509v3 Authority Key Identifier:
keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/HjtWr1_VQLzIhD0ktelV2UEZUTg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.54.0/23
Signature Algorithm: sha256WithRSAEncryption
60:59:1a:53:50:90:c2:ca:9e:48:43:3d:85:62:38:e8:9a:93:
39:23:02:ac:3e:34:cd:0d:15:49:99:ca:68:de:58:c9:41:48:
55:9b:63:56:0d:73:7b:b2:c9:a7:9f:9f:d5:9f:95:9d:7c:c6:
9f:49:35:f0:70:c1:a6:c8:0d:b3:45:00:b9:c3:cb:5d:d9:ad:
e1:6c:d3:70:dd:c7:15:f7:c0:e9:86:4f:fb:f6:5e:02:fa:ca:
cc:56:24:ee:bc:8d:58:bc:d1:0d:5f:ed:56:5e:c0:0c:ee:72:
17:95:ba:d1:85:92:9f:c5:ad:c9:ca:46:4c:c5:a7:26:fe:d7:
5a:71:e8:0f:dd:11:35:3f:ce:40:da:ea:65:c3:27:ad:48:d3:
ac:ae:e8:6e:8f:ed:32:15:6e:85:7b:18:ee:d9:c3:2a:35:c8:
a3:d2:f5:f3:50:7b:13:96:ee:bc:9a:5d:bd:75:3b:87:76:0a:
b9:56:d7:f0:ab:16:d2:aa:ee:37:25:62:01:24:86:86:8f:d0:
fa:70:51:17:90:c8:0a:f3:1e:e8:6c:94:e8:41:f5:28:97:4b:
02:05:37:9b:c2:61:f1:8d:2a:76:37:12:7a:7e:6d:e1:71:29:
88:54:e5:39:d5:20:9f:bd:ce:bc:f5:5b:61:19:b6:9d:39:cb:
e3:cb:28:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 22:34:31 2024 by rpki-client on console-fra.rpki-client.org