Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/any21vVqwgbMesqyBHyz3C4d2cM.roa
File: any21vVqwgbMesqyBHyz3C4d2cM.roa (raw, json)
Hash identifier: U2Krx6ILiv5thYY7mYg48cBQ/8pYbJCtQ3Oz5vjk+9k=
Subject key identifier: 6A:7C:B6:D6:F5:6A:C2:06:CC:7A:CA:B2:04:7C:B3:DC:2E:1D:D9:C3
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 12DF
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/any21vVqwgbMesqyBHyz3C4d2cM.roa
Signing time: Tue 30 Apr 2024 12:46:28 +0000
ROA not before: Tue 30 Apr 2024 12:46:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 215913
IP address blocks: 103.123.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4831 (0x12df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Apr 30 12:46:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6A7CB6D6F56AC206CC7ACAB2047CB3DC2E1DD9C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:26:4f:fc:7b:0c:d9:5f:ed:ba:f4:f4:11:be:
dd:cd:f7:ec:11:93:95:bd:55:e2:bf:a8:28:17:f8:
1b:aa:2d:ea:dd:c6:95:1a:aa:5a:31:0e:9d:0f:6e:
47:8e:b5:46:74:a3:6f:11:be:27:d5:b3:d2:3a:dc:
3b:5f:03:2e:5b:15:59:15:8a:d3:0f:76:6b:cb:67:
be:e8:e2:4a:61:8c:1f:20:fd:bc:69:0f:51:a6:36:
65:e0:47:81:d1:e9:0f:08:61:5d:71:af:6d:aa:b2:
b7:e7:ac:14:36:b3:b7:22:23:bb:17:c5:02:f6:39:
22:fa:82:fc:02:7b:f7:ee:0a:5b:24:f9:b4:50:eb:
ab:09:52:6e:e5:af:80:90:39:af:28:bd:fc:4c:56:
5a:f4:6e:e6:b8:4b:7b:ee:9e:ed:8e:44:88:ad:2f:
63:b0:79:4d:b2:e1:6f:80:be:81:60:db:d7:c4:7b:
fd:70:d7:27:ea:43:ac:af:34:dd:f2:8f:59:82:87:
c3:c0:48:75:ed:b1:ce:5e:3d:f4:59:26:9c:86:cd:
c3:05:04:52:87:57:01:b1:2f:d4:56:93:12:dd:2f:
78:df:2d:49:ef:86:5a:d4:72:da:5e:53:a3:9d:25:
51:0e:4e:f6:09:ae:04:42:98:4e:3c:bc:2b:0c:b1:
4b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7C:B6:D6:F5:6A:C2:06:CC:7A:CA:B2:04:7C:B3:DC:2E:1D:D9:C3
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/any21vVqwgbMesqyBHyz3C4d2cM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
14:c1:4d:05:f4:db:8e:d9:72:05:98:f1:ed:bd:72:4c:e3:83:
f1:79:91:93:00:62:6b:d8:81:95:47:07:9c:d2:58:56:af:f8:
73:42:00:b2:24:c5:1d:e9:ee:b8:aa:92:2c:13:24:8d:10:dc:
67:aa:77:cb:44:ed:56:0d:0f:d8:ec:ca:4e:cc:ed:2e:06:d1:
5e:05:bc:be:0c:69:2e:17:36:25:e2:1a:b1:57:f6:93:0b:85:
70:75:8c:83:4d:ad:84:05:c6:a2:92:ef:a7:63:e1:b4:f4:2c:
0b:b0:fd:bf:13:ca:1b:b3:a9:0c:a8:59:03:d3:b5:a9:4f:4d:
73:b3:02:3c:51:e7:0f:1c:bb:f0:20:74:98:85:d9:8e:ea:ee:
ef:8c:43:a4:7a:7f:97:00:c9:d7:db:38:36:70:09:44:af:a8:
3c:c6:17:2e:91:ae:8d:69:f7:ef:95:a6:fe:49:26:46:b8:91:
54:5a:90:89:4c:9e:06:84:35:5b:5c:b9:dd:d3:13:e6:94:32:
23:19:fa:16:4f:b4:f7:4d:38:06:66:2f:ff:79:63:5d:57:bc:
cc:56:71:4f:ff:90:93:5b:f9:2c:55:17:ba:d9:33:e6:64:72:
77:04:36:62:dd:1d:eb:2c:35:a9:ce:63:1f:53:a6:4b:9e:fc:
ad:21:d5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org