Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/c_wOvP8d-e78GJ-qOBfUSC1Or2Y.roa
File: c_wOvP8d-e78GJ-qOBfUSC1Or2Y.roa (raw, json)
Hash identifier: qRoJQGu2FFmmlSu+4+3KOJxC7F1Ae8YIlzVtpgPDlXg=
Subject key identifier: 73:FC:0E:BC:FF:1D:F9:EE:FC:18:9F:AA:38:17:D4:48:2D:4E:AF:66
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BB5
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/c_wOvP8d-e78GJ-qOBfUSC1Or2Y.roa
Signing time: Fri 01 Sep 2023 09:45:00 +0000
ROA not before: Fri 01 Sep 2023 09:45:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2997 (0xbb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=73FC0EBCFF1DF9EEFC189FAA3817D4482D4EAF66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:02:25:b3:36:e6:5c:6e:94:0f:9c:e8:55:db:
1d:6c:57:89:f3:94:8a:18:90:20:8b:b8:81:64:c4:
44:3c:8f:b0:85:fa:0c:6f:40:c4:ae:b8:f8:4c:05:
40:a1:85:46:09:47:39:9e:07:38:30:f5:d6:cf:13:
f3:70:29:ad:5b:fb:ea:7f:ec:e6:3f:f4:f2:5f:4b:
02:22:c6:4a:25:58:bf:07:2c:a6:af:6b:90:2f:c0:
55:ce:b1:46:d3:1b:07:0d:d7:36:64:97:84:a5:f2:
c7:b6:43:98:db:a8:c3:44:54:bf:50:8a:51:1d:bf:
71:24:2d:37:16:b4:5a:9b:53:94:0e:73:2e:85:1c:
3e:e9:fd:32:c0:6d:d9:2f:8f:87:e0:ca:98:75:11:
bd:2f:c2:42:04:76:23:e5:6d:3e:9f:f4:b5:f5:bf:
f6:a4:50:41:ac:fc:d6:60:55:9f:04:b2:e2:54:3d:
2f:8b:af:85:44:b9:1a:bc:e5:0b:68:32:3b:af:fa:
04:ba:af:90:8e:d2:e1:ca:a9:69:2d:01:0e:f0:c9:
6f:58:26:52:15:df:e4:45:ab:e2:2a:14:24:53:b5:
3c:84:55:9f:87:75:79:2b:a7:6e:87:e7:49:d7:88:
26:f3:7e:8c:99:6b:9d:29:a4:2d:d7:6e:df:0f:72:
2d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:FC:0E:BC:FF:1D:F9:EE:FC:18:9F:AA:38:17:D4:48:2D:4E:AF:66
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/c_wOvP8d-e78GJ-qOBfUSC1Or2Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:2b:94:ff:f2:e2:a8:e9:16:cb:e9:ce:f4:96:c9:10:af:7a:
62:04:b3:58:2d:c3:eb:4d:90:99:22:b6:57:07:18:74:2f:ae:
ab:1e:56:50:e1:3f:1d:a1:de:bf:45:1d:f7:a0:e2:50:99:c3:
50:ed:91:b8:1b:42:40:07:f1:9d:c1:9f:d6:9d:5c:73:32:c2:
d2:8d:99:66:63:65:6e:73:b9:86:bd:c1:b0:33:3d:16:2a:fd:
3e:66:0e:cf:51:a2:99:3b:c6:91:18:ad:00:9a:ba:ae:7e:8c:
6f:e5:a9:51:18:20:63:eb:29:10:b3:c6:b5:ab:6f:02:8a:ed:
0c:b0:68:e6:c1:3f:c8:0a:96:d0:f3:16:8a:70:e6:f6:3c:f7:
5a:f3:a2:12:50:87:67:07:c2:f9:0e:96:63:7c:c8:f1:8a:88:
d5:d5:63:50:f1:5b:98:13:97:64:a7:b9:e4:4d:2c:58:05:22:
ef:78:e4:4a:f4:c7:45:8d:15:54:66:8e:99:49:3c:c2:eb:83:
09:3a:6c:0c:38:a3:43:6f:e3:37:fd:4b:68:bb:8a:fb:77:7a:
61:f5:b9:0a:e9:c1:c1:35:38:99:5f:5c:0b:e1:78:13:77:29:
2d:bb:8e:8c:b8:89:b7:9e:bb:ae:30:cf:14:16:9c:b1:78:2c:
85:50:8e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org