Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/k8mEi2vj2qyCW0QTom9bT2Z5rac.roa
File: k8mEi2vj2qyCW0QTom9bT2Z5rac.roa (raw, json)
Hash identifier: EVL1LxHNowHbjfUk8FmI/4bMfQFjpqS1RQSrKO/FfEI=
Subject key identifier: 93:C9:84:8B:6B:E3:DA:AC:82:5B:44:13:A2:6F:5B:4F:66:79:AD:A7
Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7
Certificate serial: 04
Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/k8mEi2vj2qyCW0QTom9bT2Z5rac.roa
Signing time: Fri 08 Sep 2023 12:08:41 +0000
ROA not before: Fri 08 Sep 2023 12:08:41 +0000
ROA not after: Thu 05 Sep 2024 08:24:58 +0000
asID: 131642
IP address blocks: 103.69.54.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7
Validity
Not Before: Sep 8 12:08:41 2023 GMT
Not After : Sep 5 08:24:58 2024 GMT
Subject: CN=93C9848B6BE3DAAC825B4413A26F5B4F6679ADA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a1:4e:d0:2e:86:26:8a:1b:28:23:9a:7d:fa:
15:f5:dd:51:5a:1c:fe:d0:b3:90:e4:c0:8c:73:eb:
23:cb:e8:f7:d1:e5:4b:21:fe:06:d9:70:12:79:b1:
67:65:77:6c:6c:3f:d6:ba:62:76:f5:17:0a:6a:c2:
5b:ca:b4:13:00:bc:88:44:81:df:e7:97:c2:09:cc:
c6:c3:92:c6:36:39:38:10:84:36:f2:88:f2:94:d6:
51:3d:ee:11:81:8c:b8:1c:fc:69:ea:8e:c4:4f:86:
c1:74:f4:ed:fe:68:c6:ac:74:cb:3c:5c:1e:e5:23:
9d:ae:e0:9b:97:1e:c4:44:41:a9:ed:94:4d:e7:88:
a5:6d:22:fd:dd:8b:f8:7b:b2:79:e2:98:e9:0f:07:
f3:67:57:af:f2:58:f9:13:23:ae:d0:6e:8a:31:92:
ea:60:c9:c3:8f:00:fa:5c:37:23:89:60:c2:f8:56:
36:cf:c0:3c:5d:2e:1e:35:ba:84:76:fd:d6:51:8c:
ac:ce:e5:85:b9:e6:04:94:91:39:6f:95:fd:20:ce:
21:54:17:51:0d:56:44:af:3e:98:7a:09:45:e2:d6:
b7:4d:4d:c0:70:e6:67:38:c9:ad:ab:16:15:11:67:
bc:ad:01:6f:26:91:1d:e4:cd:d4:6c:a0:81:27:0c:
88:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C9:84:8B:6B:E3:DA:AC:82:5B:44:13:A2:6F:5B:4F:66:79:AD:A7
X509v3 Authority Key Identifier:
keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/k8mEi2vj2qyCW0QTom9bT2Z5rac.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.54.0/23
Signature Algorithm: sha256WithRSAEncryption
52:46:53:6f:2d:52:3c:cd:28:5c:37:de:5b:17:1e:e4:2b:57:
b5:46:73:a4:48:96:04:08:9a:c4:48:31:fa:41:f9:77:18:de:
e2:73:c3:2f:8c:f3:e2:48:0e:13:bd:70:25:c1:8f:6a:23:8a:
64:18:27:36:90:cd:21:69:ce:48:3a:85:99:53:82:21:4c:0e:
0b:f4:69:e7:19:84:41:81:51:9f:ae:29:c2:62:22:7c:03:e1:
de:ab:09:ce:97:ce:6e:b0:7d:b9:4e:cf:37:1b:e4:f6:3b:79:
8b:dd:41:60:7d:14:18:91:e1:97:c1:25:ce:33:d8:a2:49:db:
2b:34:2c:ce:4c:d5:42:d4:7b:c4:98:61:a5:3d:b4:4b:f4:29:
04:58:8c:ce:72:47:8c:58:ee:68:28:65:4a:da:8e:61:81:9b:
f0:d4:24:c0:42:9f:36:37:6e:2f:7b:eb:ad:d0:36:e6:4c:13:
1c:60:0d:89:49:25:f8:fb:2b:15:82:55:8d:68:26:1b:f2:f6:
94:77:bf:a0:9d:c4:34:67:43:3a:5d:28:e2:86:f3:5c:b6:cb:
fd:ae:f4:2c:0c:50:12:38:58:27:f6:f5:22:fd:07:21:e8:7a:
bc:60:70:9a:44:2a:59:09:9c:17:87:01:9b:98:d0:9a:94:ec:
6a:70:f2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org