Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/IvtPR3sIBFGl13xXMaY3RsY7_FE.roa
File: IvtPR3sIBFGl13xXMaY3RsY7_FE.roa (raw, json)
Hash identifier: cR8/Vt0C/muSqZZuc/6phwP0uKPcrLGbVvF5L9c/wDg=
Subject key identifier: 22:FB:4F:47:7B:08:04:51:A5:D7:7C:57:31:A6:37:46:C6:3B:FC:51
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1241
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/IvtPR3sIBFGl13xXMaY3RsY7_FE.roa
Signing time: Mon 16 Oct 2023 12:27:53 +0000
ROA not before: Mon 16 Oct 2023 12:27:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 202525
IP address blocks: 103.123.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4673 (0x1241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Oct 16 12:27:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=22FB4F477B080451A5D77C5731A63746C63BFC51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f7:7d:08:e9:e4:51:eb:0a:42:a3:f8:9d:f7:
a3:1a:23:b0:bb:fe:92:85:e6:6d:d2:18:31:9d:dc:
fe:1e:4b:4f:d9:e7:68:02:26:b3:16:85:74:9d:23:
a5:3f:36:6c:d4:2d:c3:f4:27:e2:8e:8f:08:4f:30:
37:cb:27:61:65:ca:16:24:19:4b:21:1e:bd:bd:63:
ce:28:56:f2:d8:06:bf:01:bb:4d:81:a9:7d:79:45:
b9:a8:7c:1f:27:90:93:39:8f:9d:a0:21:8e:a9:fc:
20:8c:2e:cb:53:75:43:c2:9e:df:6e:44:f0:7a:0c:
8a:15:cd:bd:b3:e0:ef:b7:8f:4b:d3:04:e9:02:fd:
8d:ba:c0:7e:72:f1:b9:c2:d6:09:84:a4:72:cf:1b:
90:f6:f5:6c:9d:b2:37:33:87:db:57:ce:8d:c1:dd:
7b:b3:4e:d1:31:7a:d7:20:59:88:53:e1:b7:62:a9:
d8:8b:e0:b8:ba:33:0a:2c:03:72:e7:6d:67:6d:0e:
d0:85:64:3f:31:97:af:bb:95:6a:71:1a:49:95:d0:
a9:1f:51:00:56:7c:a7:f6:12:b7:f0:11:6a:37:81:
70:cb:75:25:ff:2e:4e:74:a9:e8:b5:f5:e1:38:42:
e3:6a:c3:7c:80:20:39:cd:2a:8e:0a:6a:92:62:1f:
25:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FB:4F:47:7B:08:04:51:A5:D7:7C:57:31:A6:37:46:C6:3B:FC:51
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/IvtPR3sIBFGl13xXMaY3RsY7_FE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:52:4b:08:41:c4:8e:1e:a1:e1:db:43:40:b4:ef:b5:c7:cc:
08:a1:cc:57:eb:41:97:fe:69:57:c4:3e:8b:e4:58:54:eb:e9:
72:ec:19:bd:d6:cb:45:f9:3f:2c:ab:ab:dc:7a:be:92:9d:81:
0c:62:89:85:ab:a2:4b:b1:33:33:f7:2c:e9:f5:a8:09:16:a2:
5c:0d:7b:b1:41:88:f0:59:ba:15:30:ab:f4:0a:ad:56:3d:47:
c5:da:47:7f:ed:ea:22:1a:6f:81:b4:51:6d:c2:11:d3:33:3c:
92:98:d5:b9:90:07:9d:6b:44:0a:0f:fe:65:67:07:ae:58:24:
0d:ed:36:df:23:03:7a:6a:df:56:f2:00:64:95:d5:e7:33:bd:
93:31:94:26:f1:a0:de:c7:b3:b1:29:56:c9:35:88:6b:6e:02:
2d:78:d9:6a:c7:c9:4e:85:83:5a:49:82:49:b3:85:47:30:53:
a6:81:10:4f:d0:7d:d2:71:cd:96:3e:ef:11:7e:fa:db:38:d5:
eb:bb:9f:55:6c:a1:7c:1c:95:eb:88:fe:56:e3:3a:4c:74:04:
a2:60:6f:b8:94:f4:3f:7f:19:eb:9a:a9:a5:e8:cb:ec:e7:2c:
fb:7a:d2:c7:8c:6b:59:81:d0:cd:40:9b:cb:18:5b:74:f4:ea:
69:21:9e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org