Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa
File: 1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa (raw, json)
Hash identifier: 0QaifYqzxeY93xpA2j/d2/ffReqyvdrliaWMhoK987U=
Subject key identifier: D4:5A:E3:F1:D0:63:6A:FE:D6:77:B8:18:B7:C6:E6:5B:F9:55:50:15
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1273
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa
Signing time: Tue 19 Dec 2023 16:46:57 +0000
ROA not before: Tue 19 Dec 2023 16:46:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 14618
IP address blocks: 103.123.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4723 (0x1273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Dec 19 16:46:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D45AE3F1D0636AFED677B818B7C6E65BF9555015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:02:3e:6a:11:90:cc:15:86:b4:a3:cc:c9:70:
b3:04:33:d3:e5:10:19:b1:53:4b:0a:98:4b:c8:74:
f6:29:cb:95:ad:71:44:6e:e5:0d:49:54:e0:52:72:
2c:ed:5a:30:f9:27:2c:58:ff:c2:36:5e:d4:55:71:
9e:6e:ba:b7:a3:24:9f:55:c7:91:c6:b2:e0:85:2f:
98:4e:78:78:0f:fd:89:90:a9:3d:eb:cf:7b:38:92:
9f:32:fd:0a:82:05:c9:30:b2:9d:b9:67:a5:09:59:
32:2c:2d:69:c4:54:82:07:50:8f:ac:95:f5:5d:82:
35:2c:99:41:cf:42:e8:e8:c3:59:c9:42:59:9f:6e:
ed:5e:f4:ee:e3:cc:ce:59:57:b6:a1:97:1a:2d:e4:
d2:6e:7b:a5:6d:bb:00:7d:0a:96:ce:21:b0:3c:68:
50:16:9b:1a:91:52:d3:12:53:2e:8d:3a:4f:f1:c2:
d9:5c:39:45:e9:ab:96:cb:a4:f8:51:d7:e2:24:31:
9a:29:5c:c1:46:37:1a:0a:5a:e5:9e:6f:39:6e:6b:
94:80:20:5b:ea:10:78:06:a6:d7:72:77:66:9b:9f:
dc:0e:d1:69:66:c4:c5:97:81:f5:b8:a0:85:ee:eb:
07:8e:97:8c:70:89:ac:35:e4:db:9d:d4:bf:36:08:
24:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5A:E3:F1:D0:63:6A:FE:D6:77:B8:18:B7:C6:E6:5B:F9:55:50:15
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:94:92:1a:e0:1a:95:ad:fa:dd:fd:d9:d3:4e:7e:90:7a:4e:
38:21:fd:fc:75:51:67:ca:dc:01:9d:e0:b7:55:bb:1c:49:f8:
d5:e3:ad:1c:c7:b3:8e:ec:33:38:d2:4c:21:b1:4f:d4:e7:72:
65:8e:b0:9e:b2:e0:41:f4:8b:07:c5:e9:45:60:1d:13:68:b8:
1f:7f:31:13:a7:92:e9:77:85:b4:57:52:aa:81:dd:da:06:6f:
ac:db:19:52:f0:da:b8:b0:6a:a6:8e:00:69:fa:7b:25:43:7c:
e9:e4:11:19:fc:7a:b0:c9:6d:30:65:39:8f:b3:16:ad:9a:53:
c6:83:09:21:ea:b3:62:43:25:aa:47:a6:bb:9c:65:38:c8:2a:
3d:86:4b:14:cc:d5:70:58:74:d7:14:53:b2:7a:8b:b1:cc:05:
6e:97:8b:3d:4e:da:37:77:69:2a:9a:c2:11:b4:d6:61:8c:ce:
33:bf:4e:44:2c:df:2e:92:2f:55:0f:bb:69:95:1e:43:58:be:
22:b6:3a:f4:51:e5:c4:ea:8f:14:98:a0:9d:0a:95:e2:f3:09:
86:f2:a2:62:37:2e:2f:b6:08:d9:39:0a:fb:e4:86:93:06:03:
2e:71:0d:07:e2:56:bc:cf:b8:d6:bb:4f:be:b7:30:ce:be:1d:
80:f1:2f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org