Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SPETW/aF0Tb7rbjmmeCF8S0hENj9KRLpo.roa
File: aF0Tb7rbjmmeCF8S0hENj9KRLpo.roa (raw, json)
Hash identifier: zZ/bLs7eWeyNuWBVtyHH6jFAsmkBbbYJI9dmKHcXGuY=
Subject key identifier: 68:5D:13:6F:BA:DB:8E:69:9E:08:5F:12:D2:11:0D:8F:D2:91:2E:9A
Certificate issuer: /CN=6F8C92DFC78CBFE8C5EFD6BA5A37A1628221FFE2
Certificate serial: 0B0A
Authority key identifier: 6F:8C:92:DF:C7:8C:BF:E8:C5:EF:D6:BA:5A:37:A1:62:82:21:FF:E2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b4yS38eMv-jF79a6WjehYoIh_-I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/aF0Tb7rbjmmeCF8S0hENj9KRLpo.roa
Signing time: Fri 01 Sep 2023 09:46:11 +0000
ROA not before: Fri 01 Sep 2023 09:46:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131623
IP address blocks: 103.117.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2826 (0xb0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F8C92DFC78CBFE8C5EFD6BA5A37A1628221FFE2
Validity
Not Before: Sep 1 09:46:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=685D136FBADB8E699E085F12D2110D8FD2912E9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:ee:3b:40:45:d8:77:af:7a:9e:99:41:cc:
d9:ec:73:1d:6c:c0:55:e1:2e:59:f0:2d:3d:60:aa:
06:ee:4f:c7:bf:c1:59:d1:88:c1:a8:aa:38:b0:60:
4b:19:be:5e:03:4a:26:18:c5:f6:67:62:aa:38:e3:
6a:c8:53:02:58:13:80:9d:92:6c:3a:c7:44:18:99:
fc:77:f2:d0:4e:1e:2b:50:a9:26:a3:f4:02:89:5f:
f7:4f:bf:4a:ce:3f:b9:34:39:4e:6a:90:bd:66:71:
df:63:88:e3:42:f7:0a:d5:e5:b2:e6:98:cb:8a:e5:
6b:28:fa:d4:8d:61:a9:60:b4:00:30:9d:a3:22:6a:
0f:3e:15:e5:ff:c3:3f:26:cc:61:6b:30:d6:f2:51:
31:20:89:a8:09:75:e2:a0:92:f2:4e:12:2e:f1:c8:
22:dd:ce:d4:a7:1a:50:64:ec:c3:34:d3:25:05:5e:
73:a4:fd:1f:7e:89:77:51:63:e8:16:19:b9:8a:0d:
19:7f:5f:1b:93:14:42:fd:2d:03:c4:2f:f6:ca:0f:
49:d6:d4:62:fd:48:c1:e0:06:fa:0c:a5:e5:d2:bd:
a5:cc:5c:b7:f6:f2:95:65:a2:5f:f2:09:75:18:97:
77:60:ac:0c:90:c2:8f:f4:67:50:7b:fa:ba:5f:6b:
4c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5D:13:6F:BA:DB:8E:69:9E:08:5F:12:D2:11:0D:8F:D2:91:2E:9A
X509v3 Authority Key Identifier:
keyid:6F:8C:92:DF:C7:8C:BF:E8:C5:EF:D6:BA:5A:37:A1:62:82:21:FF:E2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/b4yS38eMv-jF79a6WjehYoIh_-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b4yS38eMv-jF79a6WjehYoIh_-I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/aF0Tb7rbjmmeCF8S0hENj9KRLpo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.4.0/22
Signature Algorithm: sha256WithRSAEncryption
25:0b:73:ec:c9:30:78:db:5a:4a:fe:c7:88:b6:f5:4b:f3:a4:
25:68:c9:43:c5:2f:fb:33:7b:ca:4d:9b:59:63:d5:c5:e2:09:
f6:f6:6b:4a:ec:3b:8c:5c:41:4c:8d:ff:65:88:b8:f8:31:9f:
02:3f:ec:a4:6d:be:0b:60:73:86:6d:d0:d1:b8:f2:6b:20:2e:
2e:fe:11:04:17:0e:72:cb:7d:a5:ad:90:40:a4:19:73:88:b1:
4d:74:93:b0:25:7d:16:54:ed:52:78:e0:b7:4f:04:37:75:29:
1b:74:da:b9:93:d7:2c:5a:ac:6e:7e:fd:f9:50:22:a8:9f:0e:
25:ed:42:8f:31:de:ca:a5:41:a6:31:1b:be:3d:18:03:56:58:
09:c3:b5:14:e8:2c:bd:74:ee:c6:bd:4d:72:b2:65:34:95:53:
9a:d8:99:ca:5c:79:3d:fb:d0:89:95:59:2f:ea:48:14:dc:dd:
b4:42:b5:ec:df:67:1b:e5:eb:8a:d9:e1:b8:e9:4d:6b:52:2b:
cf:85:52:0f:4a:29:87:d3:7f:92:fe:7d:63:44:ba:79:23:c3:
d6:93:76:7e:d6:7b:98:df:8d:62:76:0b:7e:f3:26:7f:66:98:
08:45:5e:d0:4c:b6:00:d7:f3:0c:be:85:d7:03:c2:3b:c6:97:
a3:01:99:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org