Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/rjOJVl3cvKPX3cSThibnqKfYv7c.roa
File: rjOJVl3cvKPX3cSThibnqKfYv7c.roa (raw, json)
Hash identifier: vxsXtGPKRHa4FdPnOWndsy1XK2vrIJtRhSN2aupXVK0=
Subject key identifier: AE:33:89:56:5D:DC:BC:A3:D7:DD:C4:93:86:26:E7:A8:A7:D8:BF:B7
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 0F76
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/rjOJVl3cvKPX3cSThibnqKfYv7c.roa
Signing time: Sun 07 Feb 2021 11:52:45 +0000
ROA not before: Sun 07 Feb 2021 11:52:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131631
IP address blocks: 103.123.219.0/24 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3958 (0xf76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Feb 7 11:52:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE3389565DDCBCA3D7DDC4938626E7A8A7D8BFB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b5:b8:18:6a:cc:fd:d6:cd:37:5f:06:ab:5c:
e5:91:37:be:b6:a6:1e:dd:7f:c5:ef:b6:8e:bd:4b:
9a:26:d5:84:0a:b4:10:c2:7f:13:3b:31:3e:08:10:
92:ab:9d:b0:6b:7a:87:96:45:54:2d:c2:d4:f3:8e:
8d:c5:8a:b8:9f:9d:01:ff:66:a7:d9:5f:af:d1:99:
7b:ed:1a:6f:ce:7e:f7:eb:d6:08:65:d0:27:05:04:
82:c6:63:28:44:8d:13:40:d7:1d:1f:de:10:e7:ed:
31:34:8a:84:4d:bf:ac:42:5b:34:58:9a:32:a3:aa:
d6:a5:a9:c3:eb:3f:7f:38:d3:72:31:6a:e5:79:c3:
17:98:a2:0d:a3:94:03:5e:05:f7:ee:7d:5d:29:5d:
3f:42:4c:e0:a0:39:5b:82:5a:29:f6:aa:c2:f6:41:
21:6a:3e:a1:32:00:e2:68:56:95:79:e4:ef:4a:c3:
17:9f:e8:b9:22:51:6b:44:8c:30:77:f6:1f:2f:10:
72:fe:db:14:1f:11:00:1e:64:39:96:ff:7f:14:53:
b0:d5:f5:96:a0:f3:f6:5a:6d:78:3b:d2:32:20:b9:
36:d4:65:12:a5:0e:e8:3d:ce:a0:bc:f8:a2:3d:82:
f0:6c:38:8a:af:80:cd:f9:b2:95:d0:9c:be:2e:c9:
32:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:33:89:56:5D:DC:BC:A3:D7:DD:C4:93:86:26:E7:A8:A7:D8:BF:B7
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/rjOJVl3cvKPX3cSThibnqKfYv7c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:b0:90:43:47:e6:29:dd:37:f3:6f:e9:68:68:10:95:e8:b9:
08:72:b4:43:5a:f3:58:48:64:79:06:c3:e1:1a:f0:83:0c:a0:
ad:b2:9f:69:b6:f8:9a:3a:0d:6c:b2:bf:78:5c:13:fa:4a:f0:
bf:34:c4:96:bd:58:38:f5:5e:28:9b:30:3e:51:ca:6c:f6:06:
1f:33:4c:88:db:3a:8f:51:c1:8d:4d:68:c3:48:64:e9:3c:33:
41:ca:3b:82:5f:2f:b5:05:b7:c6:40:f2:d1:e6:7e:78:82:9b:
8c:ae:31:28:9e:a1:34:05:ef:b1:95:04:d4:31:7d:25:bf:87:
90:77:44:8c:4c:37:7d:3f:d7:bc:a0:69:f1:e2:57:05:03:88:
14:d5:fc:4a:fa:e3:9a:dc:b9:b7:3f:11:4a:23:7a:71:c6:e8:
14:0c:ed:4e:57:b5:3f:e3:82:c0:94:45:1e:16:94:81:0e:99:
9c:33:55:25:21:80:35:54:02:34:e6:30:2f:e3:21:16:bf:c0:
c8:07:40:3c:99:69:14:d2:c3:d8:a4:80:e7:5d:a6:71:ea:b7:
12:a7:25:b2:85:75:73:3f:42:34:c7:84:2f:5a:a2:41:9c:0f:
b8:e4:28:d2:63:a4:23:d1:3c:9d:f2:0d:c8:3e:b7:9a:87:dc:
f8:29:ad:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:11 2025 by rpki-client