Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/-ihR7Hy36e14X7x-NVnPz4LBM3I.roa
File: -ihR7Hy36e14X7x-NVnPz4LBM3I.roa (raw, json)
Hash identifier: jMhB2t2i4Hr/bt3ZZXta/99yrwM3YJpkxa7dTJX9tKk=
Subject key identifier: FA:28:51:EC:7C:B7:E9:ED:78:5F:BC:7E:35:59:CF:CF:82:C1:33:72
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0B23
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/-ihR7Hy36e14X7x-NVnPz4LBM3I.roa
Signing time: Sat 07 Oct 2023 08:04:02 +0000
ROA not before: Sat 07 Oct 2023 08:04:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18464
IP address blocks: 103.122.20.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2851 (0xb23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Oct 7 08:04:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FA2851EC7CB7E9ED785FBC7E3559CFCF82C13372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:54:43:47:41:c7:3c:61:84:69:f7:28:22:
a4:3a:14:9f:78:3f:01:88:8c:44:39:61:02:70:6e:
6c:aa:6a:56:dd:b4:d8:43:0d:66:b5:56:3f:69:b5:
8c:ec:51:2c:94:b2:23:8f:40:b3:80:04:f0:34:dd:
09:ae:18:9a:de:a5:57:43:fe:cf:f7:b4:cd:a7:29:
00:f9:81:78:15:40:16:8d:89:ef:7f:5b:66:53:c6:
e9:61:af:03:15:7a:93:a7:93:cf:97:4e:c2:ed:94:
35:49:0f:46:f9:1b:bc:c6:af:dc:09:d1:09:fd:2f:
ea:c7:da:7e:80:46:fe:14:c5:01:33:55:48:52:9e:
62:b7:73:64:5c:c0:4e:11:0a:5e:d8:ad:5b:b4:1c:
8c:d1:3b:2c:9d:c4:12:21:2b:32:3d:bd:0d:70:4e:
ea:aa:04:54:5e:b4:a8:5a:b9:69:0d:96:c8:79:bd:
0c:af:3e:fe:79:d3:9c:d0:74:62:8c:ed:ff:83:2a:
4f:6e:af:95:08:14:bc:0d:21:b1:be:bc:49:a2:5f:
33:cf:be:15:a5:dc:ec:83:82:77:fb:e4:97:87:38:
53:2d:8a:cc:d3:d9:33:59:72:74:eb:cd:c6:25:af:
d4:90:f0:cc:9b:05:fd:d1:7c:39:d9:c1:d5:d5:e5:
c5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:28:51:EC:7C:B7:E9:ED:78:5F:BC:7E:35:59:CF:CF:82:C1:33:72
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/-ihR7Hy36e14X7x-NVnPz4LBM3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.20.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:d6:f0:6e:8c:eb:9e:a1:fa:15:b9:9a:08:d9:cf:cb:4f:b0:
4a:28:d9:9f:55:4c:4a:b5:e0:45:79:59:39:1f:c6:d6:99:ec:
74:ab:6b:fe:9e:80:d9:79:51:0c:e6:2d:60:fb:7c:19:13:ea:
5f:c9:ed:80:80:bf:f1:e4:53:f5:8a:f3:e3:d7:96:cb:e7:a1:
c9:08:2d:a1:a6:81:e2:60:1b:3f:97:61:2a:6e:67:b5:4b:b7:
73:8a:d7:af:0e:ef:a2:ef:b4:cf:ee:d2:47:c6:30:19:01:65:
a3:8d:e9:15:a8:6f:fd:0b:21:f7:ad:fd:1c:fd:22:db:8c:e1:
2e:43:c8:5f:cc:f5:bd:ba:c6:95:f4:be:7c:92:5a:e0:35:e8:
72:d3:8a:33:c9:b9:39:65:45:57:9a:00:6f:9c:78:ee:4f:a9:
08:81:73:83:ea:70:07:ae:35:91:ee:05:92:b5:7f:b0:3e:45:
47:26:0a:7d:be:81:e5:76:2d:0e:ef:ff:7a:c7:2f:25:cc:9d:
a6:aa:41:eb:f7:b7:e1:d3:2d:22:07:fa:b6:01:f5:b1:5d:1b:
89:b9:cc:4c:a2:31:3e:de:db:68:4f:25:6c:73:2b:13:2d:76:
0c:18:2a:f6:3d:a3:e6:ca:67:99:f6:64:ce:73:75:3e:1b:b6:
9b:4c:1c:fb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org