Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/7S9NDWbtive3QO7tcDxWIu083Jk.roa
File: 7S9NDWbtive3QO7tcDxWIu083Jk.roa (raw, json)
Hash identifier: SCQZY/ZcH5s7pYHtPiRVJcZtSXJMjk71jqI3zPf/fKw=
Subject key identifier: ED:2F:4D:0D:66:ED:8A:F7:B7:40:EE:ED:70:3C:56:22:ED:3C:DC:99
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1220
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/7S9NDWbtive3QO7tcDxWIu083Jk.roa
Signing time: Fri 01 Sep 2023 09:41:08 +0000
ROA not before: Fri 01 Sep 2023 09:41:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 16509
IP address blocks: 103.123.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4640 (0x1220)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 1 09:41:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ED2F4D0D66ED8AF7B740EEED703C5622ED3CDC99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6b:72:ed:d1:dc:88:ed:3b:26:37:0e:fa:64:
c7:a9:e8:db:7b:61:e0:b0:18:59:20:25:d6:4d:ad:
37:f6:77:89:df:56:72:b1:55:0f:27:01:c0:93:63:
f4:cc:d6:27:66:c0:63:9b:4c:f9:fd:79:1d:3f:b4:
df:b7:1c:ce:f4:a0:8e:68:23:de:88:5f:5d:49:93:
5e:0b:db:a4:2f:52:72:44:eb:f7:b0:83:3b:15:bb:
77:65:55:66:46:a6:a6:43:ae:91:cd:77:62:17:c2:
f7:b4:db:44:f8:0a:ad:ac:b0:74:16:e6:f7:8d:55:
52:fd:08:87:e4:d0:b9:c1:cd:70:0d:37:71:13:02:
3a:9e:51:b8:61:26:ba:d8:9f:cd:0a:9a:78:7b:8a:
07:5c:0f:d7:b4:13:55:ea:93:93:55:69:59:4e:17:
9a:44:99:f1:70:c8:8a:69:7a:f8:bc:1b:c5:92:bf:
39:72:8a:18:03:28:11:77:16:a8:dc:86:49:47:e4:
a6:7b:c6:9c:a5:44:24:8c:92:32:d5:c5:a2:7e:2e:
6c:1a:e0:b1:bc:e5:38:81:5f:ed:06:21:0d:3f:16:
d9:64:8c:2f:0f:cb:63:1e:61:66:87:4d:33:09:c1:
19:65:f4:b7:4d:6e:c3:42:ae:66:6a:9b:44:8f:a5:
88:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2F:4D:0D:66:ED:8A:F7:B7:40:EE:ED:70:3C:56:22:ED:3C:DC:99
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/7S9NDWbtive3QO7tcDxWIu083Jk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:4d:43:e9:cb:a9:80:d8:44:de:f2:0a:df:6d:03:2d:1d:19:
36:df:8c:cb:f5:d7:c0:64:37:f3:a1:94:4a:ff:7d:70:c7:2c:
2b:9f:7f:5b:a6:ec:52:c6:f0:ab:a2:46:63:45:b8:b9:de:98:
54:f8:87:58:cf:e0:33:e6:b9:4e:9f:d9:9d:2e:d7:1a:5d:48:
71:ed:0f:f2:d7:ce:cf:27:43:fb:ce:b3:ca:ca:ae:0a:02:c8:
9d:12:f0:1c:a8:eb:1e:67:d7:37:65:95:08:be:d7:86:b3:51:
4a:76:56:cd:a8:64:09:a4:5a:04:d6:ee:a6:df:72:4c:be:de:
79:c3:80:49:28:70:89:2c:54:b9:dc:62:95:2e:ea:ac:05:38:
d2:45:ff:cf:2e:2c:75:b7:da:04:67:86:cb:64:c2:1d:65:21:
61:0a:bb:9d:74:6b:a3:97:3b:d0:fd:30:9d:4b:fd:47:6a:e6:
74:26:b5:2c:e9:c5:33:c3:28:8f:2f:2b:ee:4e:62:36:17:96:
38:bd:05:0c:cf:dc:33:f5:05:8b:68:05:28:01:14:5a:33:1c:
f8:16:18:e5:eb:ba:69:75:4f:cd:7d:6b:63:f9:26:ac:8b:a7:
f6:fb:8d:28:a5:24:09:61:81:66:5e:bf:9e:17:28:61:46:5e:
bc:55:72:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:48 2025 by rpki-client