Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/9O6_MEPg_p6jmsu_TnRR8QjigIw.roa
File: 9O6_MEPg_p6jmsu_TnRR8QjigIw.roa (raw, json)
Hash identifier: yLSfah9dEUptbnJaXFxdx64DPNHZm/kN6XnyF0zkyBA=
Subject key identifier: F4:EE:BF:30:43:E0:FE:9E:A3:9A:CB:BF:4E:74:51:F1:08:E2:80:8C
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 129E
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/9O6_MEPg_p6jmsu_TnRR8QjigIw.roa
Signing time: Mon 12 Feb 2024 16:27:44 +0000
ROA not before: Mon 12 Feb 2024 16:27:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 202525
IP address blocks: 103.123.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4766 (0x129e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Feb 12 16:27:44 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F4EEBF3043E0FE9EA39ACBBF4E7451F108E2808C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:59:b0:85:7c:d6:cd:94:07:72:a0:88:8c:c9:
35:66:1b:73:44:68:df:5b:94:c3:8d:ef:8b:65:a0:
00:72:dc:8b:51:ab:f7:20:f7:ea:a6:27:03:de:a8:
dd:9c:ca:20:8a:da:ea:f4:b5:55:7d:73:34:b3:29:
83:28:bb:f9:a0:ae:1b:24:cd:cc:5e:c3:28:8a:76:
49:a5:2a:8f:45:57:24:c0:5f:5f:39:3b:ba:93:f6:
f3:eb:12:e4:6e:0c:16:a7:2d:64:f4:4c:48:32:7d:
21:ee:59:83:5c:67:fd:86:cb:c4:f5:00:4f:a4:99:
9e:dd:02:42:9d:f5:d5:ff:69:91:69:31:bd:bc:93:
ca:57:06:ec:af:a0:39:c9:dc:c2:42:3b:94:a5:ac:
c4:ad:31:26:e4:17:6d:02:b2:00:80:94:56:70:19:
8e:ca:61:2b:a2:ec:a6:dd:a8:71:50:c8:c3:1c:18:
0d:2e:f4:a3:b0:76:eb:c2:68:71:5b:ef:8c:90:20:
ba:50:43:31:0b:b2:6d:cb:ef:36:6f:87:f0:22:7e:
60:35:6d:b4:46:ca:31:6b:9e:d6:a8:9e:75:8c:92:
91:fb:90:f6:b9:4c:d4:b5:8b:d1:09:27:e8:5c:55:
09:94:ab:a4:37:8d:24:9f:82:c9:7e:f8:98:6b:2b:
c0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EE:BF:30:43:E0:FE:9E:A3:9A:CB:BF:4E:74:51:F1:08:E2:80:8C
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/9O6_MEPg_p6jmsu_TnRR8QjigIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
59:22:83:d2:a5:d1:67:20:34:e0:3e:1c:23:26:31:c2:11:d1:
19:30:a0:8c:2a:61:28:2e:55:78:21:cc:09:21:51:1c:7b:d7:
3e:1e:f0:25:9a:16:7b:66:b7:e2:e4:40:27:e9:ec:70:59:3a:
60:a9:be:2c:78:97:cc:29:41:d8:0a:e2:21:6c:66:2f:87:49:
3f:31:4c:50:d9:eb:14:77:45:c9:6b:ee:c4:b1:ef:47:ba:83:
1f:1e:5b:14:ad:c4:5a:e3:8d:d0:ac:34:16:28:db:07:f5:08:
7e:45:09:b4:d3:aa:7c:2d:fb:65:bd:de:94:b3:60:6d:43:eb:
3d:80:c8:79:5f:7b:4e:10:64:84:0e:5c:b5:cd:12:7c:f9:f4:
30:9f:bd:1e:28:8d:46:28:c2:2d:42:48:e1:91:cc:40:12:8d:
e0:f3:0a:df:5e:9d:8f:a2:0f:0e:2f:48:d3:b6:5d:5d:c6:0a:
05:44:3f:44:04:5c:ad:50:16:32:d3:fa:ae:55:78:6e:74:ce:
cb:e1:d2:a6:55:52:36:9f:62:bf:bc:81:d2:a6:ed:ce:8e:f7:
d2:b7:2a:37:f6:95:f9:0e:47:91:5c:e5:50:43:00:72:76:be:
5e:34:af:1e:bd:54:15:91:2b:5c:ba:b9:ad:2a:c8:6a:8d:27:
04:b3:e6:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org