Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/pOs04mePRjC9BC9x6OaN-pygDak.roa
File: pOs04mePRjC9BC9x6OaN-pygDak.roa (raw, json)
Hash identifier: wt4S2QQTN9N+Hu7R34qTymoQ4Fn3716xlGOwQUgYyDo=
Subject key identifier: A4:EB:34:E2:67:8F:46:30:BD:04:2F:71:E8:E6:8D:FA:9C:A0:0D:A9
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BBD
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/pOs04mePRjC9BC9x6OaN-pygDak.roa
Signing time: Fri 01 Sep 2023 09:45:02 +0000
ROA not before: Fri 01 Sep 2023 09:45:02 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 103.234.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3005 (0xbbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:02 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A4EB34E2678F4630BD042F71E8E68DFA9CA00DA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:7b:8b:64:0c:61:59:56:9d:50:e1:68:52:08:
04:bb:31:84:f6:19:33:3a:5c:3f:e8:2c:b3:db:9e:
ca:50:04:ce:0e:b5:3a:86:2e:92:8d:e5:3f:de:45:
80:6c:e5:96:a3:8b:86:40:20:17:0b:8d:ce:b8:76:
25:98:e2:d9:03:eb:db:27:6f:1c:98:bc:e6:1b:ae:
54:16:e7:a7:c0:25:37:01:d4:42:30:89:d1:1c:1a:
73:a3:9c:81:99:47:1a:08:8f:ae:da:2e:f7:fa:6c:
32:62:28:c2:23:65:dd:8f:e9:5e:e1:f8:b8:ba:89:
1a:b3:52:40:56:db:bc:aa:45:5d:1e:87:18:f4:89:
1f:bc:5a:4a:5b:c6:b2:58:41:f8:bc:58:6b:6d:a3:
8b:97:a8:f7:96:0d:a4:4c:59:49:83:7f:67:f4:de:
95:5e:5f:59:41:c5:91:18:b6:2b:8e:13:04:a4:7e:
f3:79:b6:b9:7e:a7:3d:9c:bc:32:1f:56:9a:b9:bf:
57:cf:2a:81:d3:42:e5:88:02:38:fc:0a:f4:88:9f:
a3:ad:ca:a3:33:bd:a9:8d:48:a3:a2:98:a3:d3:59:
46:22:8d:7a:e3:e6:31:d5:23:6f:92:f4:74:8a:0f:
43:b7:b9:38:c3:39:89:07:4a:e7:f8:57:8b:d1:bf:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:EB:34:E2:67:8F:46:30:BD:04:2F:71:E8:E6:8D:FA:9C:A0:0D:A9
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/pOs04mePRjC9BC9x6OaN-pygDak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
64:6a:5c:6f:73:fd:d9:2c:c7:60:b9:07:ac:28:9c:b5:9b:f0:
20:36:46:99:f4:27:fc:d9:22:a0:45:bb:73:ea:ca:ca:a3:3f:
3c:ed:13:9f:d9:f6:f6:2c:3d:8b:44:21:8a:07:04:d6:11:8f:
cf:c2:55:b5:a6:c6:10:8e:f2:e1:ca:6a:13:66:f2:a1:30:d3:
21:f2:03:ec:fb:74:c6:8b:74:c2:37:68:a4:2f:6b:8e:1c:6a:
b1:ef:be:38:36:d4:41:42:b6:a0:c5:cd:69:57:c1:74:7f:49:
92:f0:ad:68:75:56:6b:e3:d7:fa:e3:12:66:1b:e9:d3:41:28:
e5:c6:8b:e1:64:52:e8:c0:dd:40:1e:1d:85:be:ef:0a:14:2e:
84:76:aa:6e:a5:de:5d:45:fb:87:eb:78:59:4b:5b:68:4f:0e:
b7:3a:82:7d:53:2c:ca:9c:be:53:26:82:39:0c:6f:86:51:bc:
9f:83:33:1d:fa:fa:ae:4e:63:89:d2:6f:8b:8f:c1:d6:2a:b4:
26:be:e7:96:6f:5a:c3:05:65:4a:dd:05:9e:2d:f5:c7:ee:e4:
e4:2f:b2:d1:f3:40:ee:60:31:aa:6d:09:33:31:ce:06:0f:d2:
e1:f1:ac:86:6a:48:af:ff:36:ec:cf:ae:05:2f:3c:49:03:12:
bf:25:e2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org