Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/ApqYYPRVddTskrOyv-MUM9hiePY.roa
File: ApqYYPRVddTskrOyv-MUM9hiePY.roa (raw, json)
Hash identifier: svOH/vaJgaoRTkwvFXyaSRff9L5pAWSUx4WN/NRM878=
Subject key identifier: 02:9A:98:60:F4:55:75:D4:EC:92:B3:B2:BF:E3:14:33:D8:62:78:F6
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 126A
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ApqYYPRVddTskrOyv-MUM9hiePY.roa
Signing time: Thu 14 Dec 2023 12:53:18 +0000
ROA not before: Thu 14 Dec 2023 12:53:18 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 202525
IP address blocks: 103.123.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4714 (0x126a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Dec 14 12:53:18 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=029A9860F45575D4EC92B3B2BFE31433D86278F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e4:ee:5d:42:37:28:f9:eb:2e:1a:ac:d6:1f:
d3:83:78:65:08:a9:7e:2b:e4:ed:99:10:2e:b5:7f:
c2:11:72:3c:dd:38:a6:09:89:32:fa:48:4f:13:34:
92:75:eb:4a:13:88:dd:22:81:57:b9:5e:0a:a5:ac:
64:ca:7d:c8:7c:b3:4d:ad:9e:92:74:5a:0d:db:cc:
fa:03:c4:f8:5e:cf:8b:5e:d7:7a:6b:a2:bf:ca:38:
87:79:96:ad:34:89:bf:e5:22:87:42:05:d0:06:0c:
24:9d:95:28:61:b1:5a:c0:96:5c:05:96:60:a9:ae:
6a:72:b0:c0:12:b0:cb:ff:f0:fc:5b:25:2c:e9:37:
4a:16:4a:9c:97:4c:88:18:26:f3:46:8a:0d:1e:1e:
f8:4b:a5:dd:d8:06:7c:24:04:ee:f6:8a:b8:e6:cd:
74:14:e0:e1:94:6c:cd:93:cb:fb:e0:ff:6e:92:b1:
90:15:92:46:cd:5e:0d:b3:26:d2:a0:65:36:91:02:
8a:c4:45:30:f8:14:8d:62:5d:a9:22:03:ba:14:d4:
02:42:ff:58:26:c1:96:5b:20:7b:9f:58:ee:7e:e1:
7d:a3:17:ff:d1:55:6d:70:5a:43:9e:4a:a0:6b:94:
2e:30:42:bd:5c:19:91:86:72:51:29:fe:ee:57:69:
b6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9A:98:60:F4:55:75:D4:EC:92:B3:B2:BF:E3:14:33:D8:62:78:F6
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ApqYYPRVddTskrOyv-MUM9hiePY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.216.0/24
Signature Algorithm: sha256WithRSAEncryption
be:bb:bd:d1:28:1c:a1:60:3c:af:48:2d:ab:0e:7c:b2:dc:91:
f4:f2:5c:b9:b0:72:95:2b:1a:49:4e:ee:69:c0:3b:2d:61:d4:
e4:f7:70:46:e2:0f:ba:9e:41:b7:83:0d:fe:db:f8:cf:6f:9c:
f5:88:0d:d7:e2:94:63:4b:62:f3:5d:a4:fa:fe:bf:aa:31:d3:
42:53:bf:de:c6:61:39:a7:6a:42:8b:60:6a:13:88:be:d6:7a:
e7:56:cf:7a:97:4f:85:72:e7:41:50:b5:00:81:2f:6c:0b:43:
68:1c:a3:a3:28:8a:9b:9c:83:da:39:52:4b:0b:10:77:90:1c:
4c:a1:6f:30:cc:d2:e4:48:47:a1:6f:d4:30:94:7a:14:45:d7:
24:1d:46:9a:38:fb:d6:8b:0c:7b:c3:84:ef:48:18:3f:85:f1:
15:41:0e:70:df:4a:b7:30:27:fd:73:01:3e:f9:fa:d1:58:b8:
d1:11:16:7f:1f:eb:b2:ad:1c:95:29:e6:aa:c1:cd:f3:d0:32:
52:2c:8b:35:73:63:53:ab:74:20:3d:06:03:4b:31:ed:e4:1e:
8f:a1:b4:bf:9b:f1:7a:41:74:c6:92:b5:db:35:36:32:1c:c9:
40:71:c4:11:b2:96:01:1b:6b:b2:38:b9:19:7a:77:74:7c:2d:
b8:97:9c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org