Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/ncXbw_kv5HT1BOmDeDMYofAZQBk.roa
File: ncXbw_kv5HT1BOmDeDMYofAZQBk.roa (raw, json)
Hash identifier: LxZsC/rpjCm3MEI6tbs5Wq3dhWXU04Sv5j5CgfPq3Rg=
Subject key identifier: 9D:C5:DB:C3:F9:2F:E4:74:F5:04:E9:83:78:33:18:A1:F0:19:40:19
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 121F
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ncXbw_kv5HT1BOmDeDMYofAZQBk.roa
Signing time: Fri 01 Sep 2023 09:41:08 +0000
ROA not before: Fri 01 Sep 2023 09:41:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 202525
IP address blocks: 103.123.218.0/24 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4639 (0x121f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 1 09:41:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9DC5DBC3F92FE474F504E983783318A1F0194019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:25:51:17:36:85:76:73:fd:01:0b:04:39:37:
91:70:fd:ff:12:ff:ea:d7:d8:97:cc:04:0e:7d:78:
62:fc:d0:9e:6b:22:35:7b:5a:95:c9:c9:55:61:2c:
a5:e1:6d:ac:36:44:49:9f:38:93:56:de:2a:94:98:
a5:d0:f7:ae:54:ad:58:f3:c7:07:d9:e6:90:a2:fe:
29:43:6e:3c:9e:b6:0b:56:c1:9e:59:1a:f7:94:01:
f4:06:42:9b:e7:7d:38:3e:bc:b8:37:1f:ed:5e:09:
a3:66:23:ba:4b:e8:84:f6:58:fb:c1:f4:cf:da:07:
49:49:fd:de:d6:54:bb:0e:b2:3c:f8:56:91:2f:60:
13:1d:af:29:40:14:65:6c:69:2c:20:d8:9f:0b:84:
18:60:75:b0:e5:fa:d0:76:3e:2a:90:be:12:a7:69:
9c:3f:f6:90:09:02:8c:4e:39:09:14:0f:e8:2b:7b:
ce:e3:11:03:a1:1a:c7:94:08:3e:15:fd:df:f7:3e:
d6:10:91:98:f8:bc:41:71:9c:5d:16:63:58:0e:52:
88:10:8c:a1:09:f3:d1:aa:26:35:03:5b:58:3c:37:
2b:c7:6d:ea:04:76:47:64:1e:06:a3:d1:6c:ac:fa:
32:95:52:07:4e:80:d7:25:87:c5:be:94:27:92:67:
db:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C5:DB:C3:F9:2F:E4:74:F5:04:E9:83:78:33:18:A1:F0:19:40:19
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ncXbw_kv5HT1BOmDeDMYofAZQBk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.218.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:a5:eb:eb:f8:ec:04:96:2d:8b:22:2a:f9:77:05:4a:11:40:
23:f5:89:09:74:ec:3c:9f:db:c4:c1:6d:68:c9:7f:db:2b:e5:
7c:2d:82:26:80:3c:6b:ba:c7:44:80:75:75:e7:93:31:25:1b:
d5:44:02:c0:b3:8c:4a:33:9c:c2:04:98:ab:e0:01:6e:90:01:
19:d8:6c:d6:24:aa:be:8e:21:28:22:0f:24:cf:58:83:25:f1:
c6:08:89:d3:08:bb:6c:d2:ba:de:64:86:f8:ca:e9:4a:3c:ad:
ed:27:a6:18:ac:33:2a:4f:b3:9c:95:fa:f3:4c:55:dd:45:fa:
4c:7e:e9:b4:64:68:2f:d3:03:68:03:cb:a7:e9:c8:a4:32:e5:
d3:59:55:99:23:71:8c:8d:63:fd:40:bd:70:ed:bb:ae:ac:e7:
b9:42:02:28:2a:48:c5:45:f3:81:b6:90:3b:d9:b6:e3:46:c6:
60:d4:02:dd:84:eb:be:33:34:cf:81:f6:63:66:10:53:fb:01:
a0:ee:4d:73:01:53:93:06:e5:a1:53:b0:90:f5:d3:d9:bb:9e:
e0:ad:de:dd:e0:86:d4:30:58:98:27:78:cd:c5:57:f8:dc:57:
be:b0:06:a5:ac:e3:f5:cd:51:64:f4:fb:0a:1e:be:50:ff:c9:
2b:33:2f:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org