Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa
File: gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa (raw, json)
Hash identifier: wu/PVKJ96C5Qz8Lcg2gAx3964EGsWvFac8U+QbdMWBo=
Subject key identifier: 80:A0:80:3F:C4:07:CB:2F:F9:54:93:B5:BA:2D:1F:97:56:64:1B:3D
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 9E
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa
Signing time: Sun 31 Mar 2024 14:31:10 +0000
ROA not before: Sun 31 Mar 2024 14:31:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.246.218.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158 (0x9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Mar 31 14:31:10 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=80A0803FC407CB2FF95493B5BA2D1F9756641B3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:06:23:ff:bc:3f:8e:71:ac:4a:cf:29:d6:
48:3c:11:b1:67:82:69:51:cc:82:7f:ff:ae:f7:cc:
eb:fc:94:9a:14:99:a2:dd:7b:c1:d5:c0:8c:6f:d2:
52:97:ad:3b:e3:3d:40:fe:44:e2:07:ed:8a:48:1d:
f8:50:06:1b:47:5a:d4:c6:ef:f8:b0:69:6b:8d:e0:
af:9c:40:44:6c:56:c0:bb:bb:4a:51:e0:28:35:c6:
ef:98:61:da:b9:49:a8:a1:e9:ee:e3:21:02:e5:ee:
ca:9e:08:9e:38:87:e4:8f:f5:f4:68:b6:64:a2:1d:
65:fe:b9:9b:b8:f8:6e:ac:c9:ee:15:c6:f8:ed:a4:
47:dc:91:67:9c:23:30:c2:95:e8:d3:32:8e:72:08:
3d:f8:38:fb:d3:2b:14:02:f5:1c:6d:bf:18:dc:60:
a3:a1:d3:e7:45:11:14:a2:25:a7:5c:cf:0f:5a:6a:
5a:dc:5d:be:fc:bf:11:82:95:56:2e:c1:9e:d8:0c:
fa:6f:4b:b4:95:e4:8c:78:91:df:e4:f1:cf:0d:65:
92:92:47:92:43:c1:57:a0:50:58:2c:08:0a:ec:b1:
dc:e4:8c:5a:f4:da:ef:1a:db:f7:09:cd:a8:6f:ea:
8b:71:c9:e2:0a:c4:4d:3e:05:c4:82:7a:29:05:37:
4e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A0:80:3F:C4:07:CB:2F:F9:54:93:B5:BA:2D:1F:97:56:64:1B:3D
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.246.218.0/23
Signature Algorithm: sha256WithRSAEncryption
49:d1:96:6e:72:26:bd:71:f4:cd:df:f0:8a:cf:e1:08:34:bb:
78:fc:ac:d4:9e:e7:5d:a0:95:ab:f0:b6:c9:ca:64:ad:09:70:
01:63:b2:0b:73:08:ed:75:53:81:6c:d6:ed:0c:fe:bb:35:bc:
f0:80:77:97:bf:98:1b:73:5d:9e:d6:35:7a:d0:0b:a1:07:7e:
0b:44:f2:2d:7d:47:04:bc:83:43:16:9b:67:e3:b9:e4:36:3c:
5d:a6:0b:6b:5b:cf:4e:01:56:74:19:c3:4a:5b:16:fe:00:9f:
7d:10:05:f0:1f:71:cb:44:67:89:13:30:5f:d6:15:15:0a:26:
92:b1:8c:88:26:6b:17:9c:f8:09:76:f7:35:5a:cf:14:6d:3a:
16:95:f7:33:72:7b:1d:6a:06:5f:f1:88:65:cf:2b:b4:f0:bd:
7b:df:c1:94:99:1d:47:65:dc:96:01:b8:c1:4c:4a:8c:42:93:
aa:68:62:e4:c9:30:2d:ac:85:11:86:41:16:5d:56:07:74:8f:
de:c7:89:b0:d7:60:1e:de:eb:9e:4f:78:cb:92:23:bf:41:c2:
30:18:87:a0:a7:7e:9f:b8:3f:1a:0a:3d:7f:82:50:ea:ec:44:
7a:83:8b:8f:ef:3a:c8:8d:03:41:b0:6b:83:c0:f4:59:6d:d4:
75:aa:3e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org