Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/G9btD1W-BJ4T6zln4Hc9ybEjal0.roa
File: G9btD1W-BJ4T6zln4Hc9ybEjal0.roa (raw, json)
Hash identifier: 2b9056QJku3ogISGvtS0aiTzDTyyUq6bw4RNgx5xs18=
Subject key identifier: 1B:D6:ED:0F:55:BE:04:9E:13:EB:39:67:E0:77:3D:C9:B1:23:6A:5D
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BCB
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/G9btD1W-BJ4T6zln4Hc9ybEjal0.roa
Signing time: Fri 01 Sep 2023 09:40:41 +0000
ROA not before: Fri 01 Sep 2023 09:40:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 103.224.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3019 (0xbcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1BD6ED0F55BE049E13EB3967E0773DC9B1236A5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fa:76:0b:ff:f0:b3:a5:d4:38:28:0b:c6:a1:
62:fb:57:1b:d2:aa:09:30:e0:c6:f6:b0:63:8a:92:
7c:f1:d4:5d:5a:18:60:8b:bc:b4:0f:19:94:98:74:
7e:6a:a1:43:5a:b4:cc:42:c8:ac:d3:6b:3e:a9:2b:
e0:a5:85:4a:7e:47:41:66:67:ae:d7:d8:a5:48:e6:
0d:ea:dc:51:c5:7e:ef:97:b1:5b:5d:92:f7:4f:35:
9a:c2:bb:d7:1e:30:9c:57:24:5c:0c:ed:d7:1d:1d:
59:22:c1:d8:ad:2c:ee:ad:66:8b:01:c5:21:5f:57:
df:ff:70:9b:c4:f8:24:81:1a:d6:48:35:e2:d2:73:
b7:2e:78:46:e3:ff:43:93:e7:9b:e5:d3:30:ff:c7:
83:18:c5:9e:a2:ae:49:78:2f:3c:8e:1d:c9:12:b1:
77:da:ba:1d:e0:a6:47:29:ef:0f:58:14:ee:aa:3b:
9f:46:8d:9b:7f:07:66:ce:8e:4e:e3:83:62:db:8e:
f8:e6:30:8c:af:f2:b8:81:80:35:f2:a4:83:d6:a2:
d9:3e:77:f6:37:d6:88:c5:86:4c:3a:b0:fc:f7:f8:
ed:68:fb:99:52:23:fa:bb:66:26:9c:bc:e5:3a:0d:
23:29:54:6d:9e:10:30:84:ee:b1:d5:09:b5:86:37:
42:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D6:ED:0F:55:BE:04:9E:13:EB:39:67:E0:77:3D:C9:B1:23:6A:5D
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/G9btD1W-BJ4T6zln4Hc9ybEjal0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.204.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:91:f5:97:6e:89:5f:6b:40:74:4f:ef:c6:d4:2e:b0:52:02:
92:be:17:5c:2e:7a:a4:36:ea:fc:c8:ce:48:84:24:a5:9d:84:
63:c3:c6:82:21:7c:97:f4:62:e6:51:88:40:52:1c:a1:7e:07:
c1:37:4d:91:6f:88:02:5a:7e:a4:3b:2a:48:96:fc:94:6c:df:
f2:b1:13:3f:05:5d:70:53:4e:25:b3:f3:bc:34:87:9f:4c:0f:
cd:3a:eb:c3:0b:4f:25:27:b0:4a:8d:a9:3d:0e:8e:dc:77:98:
71:90:87:e7:7c:70:e5:c4:01:a2:19:8b:9a:5d:1b:ba:26:43:
56:a1:2b:f8:99:e8:ba:d8:80:dd:24:1e:9f:3a:db:00:bf:13:
5c:3f:1f:b6:e8:12:13:2b:ba:dd:08:56:c4:c7:ca:86:b1:34:
85:7f:fe:3c:87:22:3d:99:b1:fc:15:27:7d:7a:eb:41:e2:79:
12:49:0e:bb:ec:59:78:d1:97:6c:b0:82:8e:e1:1b:e9:c4:49:
4c:eb:aa:83:a4:fc:99:2e:21:3e:47:25:1e:4b:f1:fa:6d:77:
de:fb:60:11:0e:92:b2:56:2f:22:ed:1d:f5:1a:c3:2f:21:50:
bc:69:44:dd:35:2a:fc:13:8a:85:ac:4d:b1:c1:41:d2:d5:6e:
07:c1:22:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org