Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/vFj2u87YIvzGnEXeBrDXeztys6g.roa
File: vFj2u87YIvzGnEXeBrDXeztys6g.roa (raw, json)
Hash identifier: J0nFcEIvIrXJM1A1hMRmA3BbJSJtRJOC0ImtBYPApB8=
Subject key identifier: BC:58:F6:BB:CE:D8:22:FC:C6:9C:45:DE:06:B0:D7:7B:3B:72:B3:A8
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 121A
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/vFj2u87YIvzGnEXeBrDXeztys6g.roa
Signing time: Fri 01 Sep 2023 09:41:07 +0000
ROA not before: Fri 01 Sep 2023 09:41:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 14618
IP address blocks: 103.123.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4634 (0x121a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 1 09:41:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BC58F6BBCED822FCC69C45DE06B0D77B3B72B3A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:16:45:41:a1:22:9d:80:22:71:7f:d0:59:84:
ce:e3:99:c5:9f:97:6e:33:c0:58:72:6b:62:bb:f6:
38:9c:5b:d1:f6:e0:0a:56:78:f7:b9:eb:c2:68:0b:
0c:61:6c:54:d6:bb:8d:60:4d:bd:7a:03:b3:4e:aa:
70:91:60:c3:5e:6f:5a:1d:77:d6:0f:5c:d9:1d:2f:
fd:1f:d0:ec:37:22:df:ff:e7:5b:1d:01:68:48:45:
8a:7a:f0:69:23:8c:5c:00:d7:0a:12:c6:7c:7d:14:
aa:3f:d0:45:61:93:a1:9b:57:6a:68:22:94:b7:81:
0a:fe:64:83:3b:53:ee:33:26:e5:13:5a:07:87:a3:
1a:59:a2:b2:6c:b5:7b:29:af:70:e8:01:eb:01:4f:
cf:ae:aa:54:57:22:af:56:1a:e7:d4:41:76:a9:e0:
d5:65:96:91:f6:a1:19:d5:a5:3b:86:2c:ea:e1:2d:
bb:ac:dd:45:5c:0d:68:5a:fd:47:10:81:7a:f8:95:
0f:b9:5c:a0:03:ae:42:f1:a9:71:82:ec:fb:a5:8c:
1a:91:e0:58:7f:e0:05:7e:6d:52:fb:9e:23:aa:a2:
9d:e5:72:8e:2e:20:ef:fe:5e:a0:ec:a5:79:41:63:
bc:6f:00:59:cd:1d:e1:1a:7f:2d:68:1f:2c:87:c4:
fb:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:58:F6:BB:CE:D8:22:FC:C6:9C:45:DE:06:B0:D7:7B:3B:72:B3:A8
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/vFj2u87YIvzGnEXeBrDXeztys6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:2a:7d:97:c0:17:60:44:71:d6:d5:d7:4d:74:46:fc:36:86:
76:b4:10:d1:7e:37:e1:a9:7e:a2:a4:72:64:4c:c9:bd:bd:2f:
1b:db:e9:c6:76:5f:69:b8:42:bf:b7:53:cb:ac:e4:6d:c2:07:
c6:f5:a8:37:ba:e0:3d:f6:30:72:ed:e7:99:16:f3:ee:48:af:
cb:67:28:b9:53:3d:b1:50:c0:bd:a0:3f:5a:51:17:33:46:8c:
2b:58:7a:2c:7d:15:ff:5d:d4:72:11:bc:af:16:ed:41:e9:03:
95:f6:19:5b:70:fb:c4:fc:5a:7e:36:e5:11:2a:9c:43:91:5b:
2d:cd:a7:4f:ec:4a:bc:91:9e:bc:55:62:eb:e7:42:b6:13:9c:
b8:4e:28:35:b9:91:12:91:08:66:3e:33:92:ad:11:5e:24:12:
3d:e2:5f:a6:37:6a:79:19:84:5f:63:e2:2b:14:35:ea:93:58:
84:2b:2e:9b:1b:89:0a:00:23:93:4d:ca:3e:be:7d:b3:5a:91:
4d:31:3a:fe:fe:03:8b:65:26:93:9f:a2:49:82:2e:28:3f:da:
4d:8d:04:92:48:68:7c:c4:c6:09:4c:b7:7c:21:86:b9:66:b3:
ab:86:80:de:78:eb:1a:2f:13:20:f4:4a:bd:7e:ef:e4:4e:78:
77:75:6b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org