Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SECUNET/2BpwwdmYEwhRlyBFUUNuiNfoFMY.roa
File: 2BpwwdmYEwhRlyBFUUNuiNfoFMY.roa (raw, json)
Hash identifier: q+eSszQHXfdNseW9oP/MWlFcUJrYyTDHbfU5WH1uDJ0=
Subject key identifier: D8:1A:70:C1:D9:98:13:08:51:97:20:45:51:43:6E:88:D7:E8:14:C6
Certificate issuer: /CN=3F4E063886AD351FF822805AF8D569944B8DE517
Certificate serial: E9
Authority key identifier: 3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/2BpwwdmYEwhRlyBFUUNuiNfoFMY.roa
Signing time: Wed 22 May 2024 03:27:52 +0000
ROA not before: Wed 22 May 2024 03:27:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7483
IP address blocks: 103.198.152.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233 (0xe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F4E063886AD351FF822805AF8D569944B8DE517
Validity
Not Before: May 22 03:27:52 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D81A70C1D99813085197204551436E88D7E814C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:86:00:8d:31:97:ce:10:9d:65:d5:e0:e1:b0:
1e:ef:bd:aa:72:70:78:99:46:d2:3c:ea:ec:ba:18:
df:8d:4f:75:36:4a:30:bc:61:45:98:90:74:a4:31:
8c:9e:3d:91:0d:88:74:3c:64:d2:0e:95:18:88:92:
e0:cb:85:6b:44:8c:19:4f:11:5e:00:9a:5f:07:24:
21:42:69:71:0a:8f:f5:c2:5a:b8:b7:6d:60:97:b2:
cc:4a:30:37:9c:04:32:92:01:b7:39:cb:33:87:50:
78:bc:aa:39:ec:22:5e:03:70:40:b4:6a:ba:4b:b6:
b8:a9:a5:f7:71:0c:3b:c9:f7:18:6d:c8:9b:4b:72:
8b:56:cd:b6:a5:fa:01:f7:62:b9:16:47:1a:be:09:
35:b9:0e:93:5a:b3:dd:fb:19:c4:ed:0f:eb:ba:4a:
6f:2b:3b:2a:71:b0:c3:2b:cf:62:f1:5f:91:0d:26:
0a:4a:ad:67:8f:5c:57:96:a9:ca:91:b3:dc:d6:01:
b9:98:a5:6e:6c:9f:2d:6a:d0:01:b4:2a:65:4c:2a:
00:5f:98:0e:c6:d7:d3:e0:45:94:7a:8b:43:a0:17:
0f:3b:a7:4c:ef:aa:29:82:46:f4:cf:48:81:c4:f2:
10:82:95:ed:9c:44:91:de:40:78:98:fe:77:d7:08:
dc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1A:70:C1:D9:98:13:08:51:97:20:45:51:43:6E:88:D7:E8:14:C6
X509v3 Authority Key Identifier:
keyid:3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/2BpwwdmYEwhRlyBFUUNuiNfoFMY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.198.152.0/23
Signature Algorithm: sha256WithRSAEncryption
93:c6:6e:6c:78:17:4c:6f:42:b0:85:93:14:0c:7d:60:c3:5f:
2b:55:35:73:5b:5e:65:2a:8a:f2:83:fb:3c:12:9e:c1:69:29:
c6:6a:2a:32:64:b1:df:61:5c:d8:1b:5d:72:72:b0:89:b8:88:
90:88:37:dd:41:3a:20:a3:e0:2f:46:2d:f2:84:80:30:28:79:
1b:15:b1:38:8b:48:f3:a8:50:2b:90:ed:b6:e1:53:cc:60:b6:
94:b7:98:35:74:3d:0d:46:3e:56:79:4c:b2:52:e4:39:6c:d2:
3f:60:ff:19:53:3b:5f:72:1f:fa:72:71:49:22:70:e4:7c:e8:
78:33:25:0f:3f:1b:36:1d:a6:8c:f4:2d:ba:08:6c:22:59:dd:
1a:c0:1f:4d:20:ab:b4:d4:33:3b:dc:72:c4:87:0e:57:47:fd:
7a:22:ef:a4:be:9a:12:ab:3c:78:62:1d:5d:d4:09:9a:84:08:
a9:44:d8:ef:ee:3e:95:cb:f0:7d:86:e1:7b:88:41:8a:7b:58:
e0:12:aa:a6:e6:90:9f:06:11:7a:8b:b3:d6:29:1d:3e:bc:a9:
f4:21:be:bd:5f:2e:95:b2:85:48:81:30:6d:ed:da:6c:1b:4c:
5d:89:e3:01:d1:a6:b5:cb:c6:28:94:a6:65:de:5c:b9:78:2e:
f5:bf:15:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org