Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/X_5KzhfcgNWpZ9cyj-xi_t6LMCw.roa
File: X_5KzhfcgNWpZ9cyj-xi_t6LMCw.roa (raw, json)
Hash identifier: lyFTqnf3WwroXiAEVJ2pXpMS9igGe93QjhnhNWAP3I0=
Subject key identifier: 5F:FE:4A:CE:17:DC:80:D5:A9:67:D7:32:8F:EC:62:FE:DE:8B:30:2C
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BB6
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/X_5KzhfcgNWpZ9cyj-xi_t6LMCw.roa
Signing time: Fri 01 Sep 2023 09:45:00 +0000
ROA not before: Fri 01 Sep 2023 09:45:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2998 (0xbb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5FFE4ACE17DC80D5A967D7328FEC62FEDE8B302C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9e:0c:f9:5c:d1:2c:57:d8:0f:e0:e4:5e:df:
44:9f:20:3c:59:bd:47:8c:e5:ca:95:47:97:23:45:
36:60:d1:3e:a4:40:da:88:de:af:ab:81:47:21:d4:
5c:9e:a3:d0:86:dc:ce:01:87:78:ee:76:ba:44:93:
9b:f3:b6:86:29:6e:55:54:ef:ea:79:81:85:29:f7:
16:5a:a8:02:cd:2b:b9:23:14:66:86:f1:da:d6:29:
f9:bf:0d:a1:c1:7e:c8:2e:c0:1b:a9:e4:07:29:b0:
08:73:a6:c8:21:82:d1:d4:02:3f:8a:73:05:e9:b8:
0b:8f:c2:3f:9c:4d:7e:eb:d6:72:6f:e5:2c:33:a0:
11:bd:5a:2e:d1:65:d6:dd:f0:e5:f1:4e:60:4e:96:
13:ff:be:0a:c0:cf:c7:b6:c1:07:19:f8:46:12:f3:
9e:5f:86:0a:13:bb:c5:db:fe:c9:81:e4:f1:d1:aa:
74:8b:c2:8d:9b:3c:e1:64:b8:e3:09:29:be:ac:25:
63:b6:2a:bd:0c:9e:00:6d:a0:33:91:5a:9e:4a:47:
78:cf:a0:36:b5:2e:a2:6d:82:33:dd:0d:5a:b8:ae:
0f:08:ce:6b:c4:95:0a:ab:03:08:a8:23:40:ef:78:
26:d7:0d:ba:89:57:11:62:7f:95:d3:af:ea:32:06:
7c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FE:4A:CE:17:DC:80:D5:A9:67:D7:32:8F:EC:62:FE:DE:8B:30:2C
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/X_5KzhfcgNWpZ9cyj-xi_t6LMCw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:ad:b6:ec:c9:b9:2a:86:55:5a:44:11:de:56:96:43:9a:f0:
5f:7a:ed:4b:aa:66:75:cb:9c:a5:f5:b9:20:69:14:0f:09:98:
ca:80:e5:aa:81:9b:b9:43:c9:75:b7:3f:7b:85:11:32:26:41:
5a:86:39:aa:a9:a8:34:a3:7a:5c:2c:5f:a6:54:c5:69:b6:d1:
ec:d6:89:4a:e6:ca:79:ce:f0:b8:4a:76:b4:5c:91:23:f3:8c:
5b:ca:96:3e:eb:b5:04:cd:f1:dc:e1:5d:c2:a5:4e:74:52:20:
33:08:3a:48:36:20:e2:e8:1e:47:67:41:38:b5:75:cf:20:78:
d2:4b:58:b4:f2:26:f2:f4:ce:89:4d:78:ae:45:6b:0d:a3:fe:
92:ca:b1:39:c3:6c:5a:c2:86:70:34:a4:ad:89:a9:88:ad:9c:
89:9d:20:69:05:a1:4c:4e:0a:96:d9:e7:3c:b2:2b:c4:ed:82:
8c:0e:48:8f:03:6f:3a:d9:71:a5:29:fb:4b:e6:c6:c9:fe:c5:
48:a8:62:b3:1e:07:66:3a:2d:dc:7a:fd:08:bd:72:d1:33:cc:
cf:7c:f3:1c:ce:2e:1c:b4:76:55:f3:6c:06:a3:f4:2b:1d:c8:
90:73:28:14:d7:73:46:80:26:04:08:a7:71:70:92:9e:60:8c:
39:0c:80:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org