Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/-dWElYzaOiPIRWhdxCDVCiyZgQU.roa
File: -dWElYzaOiPIRWhdxCDVCiyZgQU.roa (raw, json)
Hash identifier: sOHGC0j0rchOFw8vLgR4tioLBC+y+MBFivvGdo1RcRE=
Subject key identifier: F9:D5:84:95:8C:DA:3A:23:C8:45:68:5D:C4:20:D5:0A:2C:99:81:05
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 121E
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/-dWElYzaOiPIRWhdxCDVCiyZgQU.roa
Signing time: Fri 01 Sep 2023 09:41:08 +0000
ROA not before: Fri 01 Sep 2023 09:41:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 202525
IP address blocks: 103.123.217.0/24 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4638 (0x121e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 1 09:41:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F9D584958CDA3A23C845685DC420D50A2C998105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ae:cc:84:9d:20:e0:0e:f0:a9:bb:52:b9:e4:
d2:69:a5:71:47:94:81:e9:6d:41:fa:0a:06:72:7c:
ab:83:da:57:b4:22:8c:62:a8:63:2b:de:57:a8:1e:
35:4e:c5:27:02:76:bc:08:93:8b:fa:76:4e:06:87:
a1:31:6f:6c:76:46:dc:85:62:32:d7:5d:99:25:b0:
6e:de:e4:a4:86:61:69:6e:99:93:66:ff:8e:98:f4:
b3:47:9f:5d:38:12:95:b4:be:88:47:ff:41:63:a1:
74:1b:0d:9a:f9:c4:b6:b7:5a:9b:4d:1b:93:d9:56:
83:50:a6:92:40:c4:1a:5c:58:64:d2:31:5f:e8:a4:
44:55:f1:ef:84:19:d9:0f:df:b6:af:70:28:22:b3:
17:bd:ca:78:75:07:13:ce:54:bd:30:17:bd:e2:0d:
ed:b1:f8:29:6b:cc:ea:6a:7c:e4:55:0a:f2:b7:73:
6a:8b:34:30:f2:54:a2:7c:5a:92:ac:a9:28:f8:78:
56:fc:3b:3a:c7:2f:af:f8:c5:b0:7f:60:f1:63:33:
11:90:4c:aa:53:af:47:f1:8a:83:af:fb:9e:d9:e2:
af:63:15:6a:8b:15:dc:6c:63:98:ca:81:2e:f0:b9:
d0:1b:e9:c0:d2:76:e7:13:7d:21:b7:38:64:35:f3:
7e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D5:84:95:8C:DA:3A:23:C8:45:68:5D:C4:20:D5:0A:2C:99:81:05
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/-dWElYzaOiPIRWhdxCDVCiyZgQU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
91:0e:73:e2:4f:43:08:0f:d3:3f:61:5a:eb:f6:9e:ae:d3:b4:
9d:f1:f3:d1:45:32:98:24:23:52:85:f4:5a:e5:49:96:20:f6:
6f:64:a7:cf:80:96:f0:fb:64:cc:30:e5:41:cf:c6:fa:b2:a1:
03:d4:a8:46:f1:7d:92:a1:1f:47:c9:61:d4:f0:7e:ac:42:c1:
d6:f4:cd:a0:fd:bd:d6:56:7f:fd:a4:8f:ae:d8:31:fe:6a:d2:
9f:c5:e2:87:d8:6f:40:f8:93:63:17:c4:64:e2:92:d3:9e:1e:
27:a4:23:59:0d:b8:12:fb:8e:6e:81:a2:58:ef:7f:4d:b6:f9:
7c:3e:01:34:f1:c5:91:85:88:9b:87:92:fc:de:64:2c:a6:4a:
45:aa:09:0c:1d:a6:88:98:04:28:0e:2f:4d:53:9a:5b:5a:d1:
3e:1a:a1:31:57:a4:bc:d9:03:37:48:f0:af:32:a1:70:3d:76:
f9:e1:84:40:91:4a:97:76:fa:60:15:1a:49:8f:06:be:78:6c:
77:10:f4:1e:a4:55:18:1a:39:d0:4c:13:0e:e5:c2:85:fd:7d:
cc:41:69:1e:e1:f5:da:12:35:cd:87:8c:ab:e9:85:78:89:cb:
01:89:8d:dc:01:33:1d:15:d3:0a:85:f3:60:17:14:9e:de:e6:
a7:99:b8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org