Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/9LBI6s_DZ8eWr3lB_P_AOTMDQ2Q.roa
File: 9LBI6s_DZ8eWr3lB_P_AOTMDQ2Q.roa (raw, json)
Hash identifier: zbetLgfhxbLLoAfav4tf8EzbJVVsCVzjvh314E1eqnw=
Subject key identifier: F4:B0:48:EA:CF:C3:67:C7:96:AF:79:41:FC:FF:C0:39:33:03:43:64
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BB2
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/9LBI6s_DZ8eWr3lB_P_AOTMDQ2Q.roa
Signing time: Fri 01 Sep 2023 09:44:58 +0000
ROA not before: Fri 01 Sep 2023 09:44:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2994 (0xbb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:44:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F4B048EACFC367C796AF7941FCFFC03933034364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c3:ee:be:60:c7:8c:b8:b5:22:a3:0d:dd:bd:
2c:bd:fa:4e:a5:df:70:0b:22:9e:99:df:1c:b7:da:
86:02:bf:75:58:c3:4c:11:de:fa:5d:53:57:1d:03:
8c:7c:db:63:91:1f:53:09:0e:c6:85:f3:5a:d9:69:
fc:3b:d7:f4:d5:df:28:47:ee:5b:eb:0f:ee:1e:88:
3f:ff:48:a2:df:06:dc:ee:55:c4:c9:5a:48:f8:0f:
cc:f8:40:c0:24:f9:98:fe:d1:7f:a0:b5:f3:05:b7:
04:9b:23:1b:65:da:e9:04:58:cf:b7:10:c8:08:f5:
99:be:8c:c5:e7:b7:7e:14:c4:af:e6:50:c6:9f:91:
25:da:a3:d6:86:38:f2:6c:16:52:93:67:26:3a:89:
6a:3e:25:78:7f:a5:1d:82:7c:2d:ca:72:94:9d:09:
00:3d:24:53:c4:b3:c5:df:6d:13:e5:4c:aa:b5:e5:
70:fe:73:a3:8d:7e:23:d2:66:fc:98:d5:f0:ca:73:
ee:bf:36:9f:68:8d:19:88:9e:fd:d1:a8:2b:50:c8:
12:36:ef:4e:58:d0:2a:7f:b7:f0:b3:89:5d:a1:eb:
ac:cd:3e:fc:cb:c4:ab:2f:53:90:eb:4c:cf:a0:93:
f0:7b:c5:80:11:03:8c:4b:4b:27:73:7a:5a:24:09:
7b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B0:48:EA:CF:C3:67:C7:96:AF:79:41:FC:FF:C0:39:33:03:43:64
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/9LBI6s_DZ8eWr3lB_P_AOTMDQ2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
78:10:08:70:fa:83:f8:85:55:25:d4:40:cb:3d:96:3b:4b:2c:
78:ec:08:f4:8f:e1:49:cc:e4:69:a5:2f:86:54:c1:02:10:ae:
5e:ed:c6:13:80:48:20:f0:27:6e:49:53:33:15:3a:bb:86:ba:
cd:cc:a1:d9:12:9f:4e:b3:0f:64:b4:d3:99:0b:a9:0f:ab:7e:
b1:8a:3a:11:b7:a7:dd:2d:09:2e:c6:da:9a:55:9f:24:fe:8f:
7f:bc:27:9a:5c:09:17:58:e5:b4:a3:ae:36:0e:a7:02:e1:d6:
94:16:ce:b8:6e:f3:92:f5:f3:e4:b9:92:c9:9d:d5:b9:0d:4d:
ce:1c:0d:ce:c3:ae:82:5d:47:22:5d:fd:74:2e:75:dc:bd:a6:
0e:3f:ff:c8:b6:f0:74:1a:ea:d0:bb:76:dd:97:8e:63:f5:e2:
42:31:71:56:40:7e:02:3c:8a:bf:ff:b9:e9:8e:ba:53:2a:50:
5d:a3:c5:24:58:79:0f:82:9b:b8:c5:b7:56:42:4a:38:e9:f4:
c6:4b:7f:2a:64:e9:b8:8f:1a:aa:d0:ca:6f:81:aa:26:e6:9a:
18:4b:6d:aa:e3:e9:c6:5a:07:ac:e7:0d:eb:dd:4b:16:ad:bf:
8e:f9:58:8b:1d:21:ba:b8:fa:3f:11:b6:f1:97:a4:d1:1e:ab:
a3:61:35:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org