Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/c1Il7Ofc0s0qgmHDF3Jl2N78Se0.roa
File: c1Il7Ofc0s0qgmHDF3Jl2N78Se0.roa (raw, json)
Hash identifier: YYugKM6JYcv3K3Bzu1S6iuduw0/u4YcKW0REgAEBteY=
Subject key identifier: 73:52:25:EC:E7:DC:D2:CD:2A:82:61:C3:17:72:65:D8:DE:FC:49:ED
Certificate issuer: /CN=10F0AFEDD16DF216580B4F8ED75AFCA328694F19
Certificate serial: 0A2C
Authority key identifier: 10:F0:AF:ED:D1:6D:F2:16:58:0B:4F:8E:D7:5A:FC:A3:28:69:4F:19
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EPCv7dFt8hZYC0-O11r8oyhpTxk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/c1Il7Ofc0s0qgmHDF3Jl2N78Se0.roa
Signing time: Thu 15 Sep 2022 02:38:12 +0000
ROA not before: Thu 15 Sep 2022 02:38:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 103.123.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2604 (0xa2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F0AFEDD16DF216580B4F8ED75AFCA328694F19
Validity
Not Before: Sep 15 02:38:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=735225ECE7DCD2CD2A8261C3177265D8DEFC49ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:99:30:82:75:27:b7:31:a1:b3:16:ab:a5:
74:00:2f:73:e5:0c:f1:38:86:42:67:fb:1b:01:87:
ea:ba:c1:09:eb:f6:8c:63:9f:9b:fd:2c:b3:6e:be:
90:57:c4:f4:26:69:2a:2e:20:9d:e4:3a:dc:4b:23:
94:a9:b0:2b:bf:93:39:51:4b:be:9b:74:7b:1d:ff:
71:0f:ed:d2:72:e3:6d:ca:b7:11:4d:08:15:36:30:
f5:25:75:d8:14:18:4f:d5:8d:42:c3:28:c6:72:cf:
62:9d:02:63:73:45:3b:3b:72:5a:83:e2:34:c4:8d:
93:fe:21:74:28:1e:52:fd:5a:f7:b8:7f:71:2c:fd:
8a:18:23:a8:8d:b6:43:25:c4:c5:c3:46:cc:d2:5d:
70:10:0d:4b:fd:f2:02:e6:0c:d8:8b:2f:31:2a:15:
cd:74:20:93:58:5f:fb:85:c6:83:4f:67:aa:12:c2:
a6:e3:d5:c3:d6:94:5d:e1:3f:12:84:d6:7d:19:b6:
25:74:ba:16:31:fb:33:a9:0d:99:58:86:e7:4c:ac:
b5:0d:24:86:31:a7:d3:2f:56:9e:25:74:ef:c1:e0:
35:01:a6:50:4e:58:b6:be:22:5a:f9:b2:f5:ed:73:
6e:4f:0b:2b:d5:49:1d:f0:ab:6d:78:b2:06:7a:2d:
ca:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:52:25:EC:E7:DC:D2:CD:2A:82:61:C3:17:72:65:D8:DE:FC:49:ED
X509v3 Authority Key Identifier:
keyid:10:F0:AF:ED:D1:6D:F2:16:58:0B:4F:8E:D7:5A:FC:A3:28:69:4F:19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/EPCv7dFt8hZYC0-O11r8oyhpTxk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EPCv7dFt8hZYC0-O11r8oyhpTxk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/c1Il7Ofc0s0qgmHDF3Jl2N78Se0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.192.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:b5:9f:60:5d:89:5e:c2:10:d9:fb:a8:1f:c5:f5:eb:21:f9:
9c:8d:5c:ca:b6:57:ab:80:b3:4b:34:0e:17:c0:65:ca:28:73:
e9:c5:36:b7:83:0c:d2:1c:c4:e0:7e:5e:d6:52:dc:c4:37:c0:
93:c4:5a:61:0b:4a:ba:3b:02:89:cf:14:8a:40:5f:41:65:c9:
4e:6f:7d:dd:42:34:14:7a:9d:a3:ea:c3:39:fe:4c:31:f8:15:
63:b7:8d:64:2d:6b:cf:e9:b7:78:48:39:1f:41:8b:2c:86:54:
a6:1c:c2:16:05:49:13:31:42:6e:7a:2d:0d:72:06:ee:b3:32:
67:5d:f2:c5:f2:38:19:0e:9e:8b:5d:9f:ae:88:55:87:c1:ff:
24:c1:16:52:88:8e:a2:91:5f:8b:be:cc:ed:93:ae:3a:50:46:
52:1f:34:fc:5f:fc:dc:45:a2:cd:bc:a7:44:b3:2f:00:ea:93:
45:18:cd:ab:56:99:06:59:0c:fe:fb:b1:f9:63:7d:b0:b1:9e:
c7:6c:e4:87:49:8b:53:33:11:6d:4d:ee:b6:2c:77:9a:94:76:
8b:98:38:2b:a4:e7:e7:9b:ed:65:e9:c9:5b:99:46:ac:c8:d1:
f7:65:c1:37:99:ad:64:b0:fc:1d:b5:de:42:b9:a9:21:07:a4:
91:28:c6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org