Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/Fu_c-n-nncEKHXXPT8LOta8z6A0.roa
File: Fu_c-n-nncEKHXXPT8LOta8z6A0.roa (raw, json)
Hash identifier: RDfIYrJD2g56h5JAYcsP4h6qxvgn3Amy3u6guYdbwro=
Subject key identifier: 16:EF:DC:FA:7F:A7:9D:C1:0A:1D:75:CF:4F:C2:CE:B5:AF:33:E8:0D
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0B5B
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/Fu_c-n-nncEKHXXPT8LOta8z6A0.roa
Signing time: Fri 01 Sep 2023 10:00:09 +0000
ROA not before: Fri 01 Sep 2023 10:00:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131590
IP address blocks: 103.227.224.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2907 (0xb5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 1 10:00:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=16EFDCFA7FA79DC10A1D75CF4FC2CEB5AF33E80D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:71:72:8a:6b:da:50:8b:77:68:7d:a9:80:c4:
76:70:9b:5c:b8:f4:f0:bf:2b:7d:fa:51:09:84:b0:
58:2d:60:32:1e:dd:d2:e8:7b:14:f8:7c:04:08:77:
6f:db:ae:0b:60:72:fe:db:99:61:a6:c3:4a:6b:a2:
9b:45:67:33:a4:f2:fe:7f:7b:0a:41:ab:5a:2b:41:
27:2e:21:9b:cb:15:51:cc:d7:8e:5a:11:b3:b0:3f:
d2:02:77:ed:15:20:9d:21:b9:43:94:24:c8:72:90:
02:cc:03:ca:d0:ec:53:25:3c:d3:02:90:f0:f9:0e:
51:89:8c:13:cd:be:37:a5:57:fe:2f:17:e4:ce:6e:
4e:cc:e0:fc:47:45:64:37:a4:d4:00:bb:73:73:b4:
1d:0e:1c:e6:e3:5f:ee:03:47:b3:46:7f:08:27:50:
b8:25:86:34:99:79:2c:e7:dd:ab:26:91:a9:33:d9:
9b:ce:c5:24:2c:1c:63:a2:46:c1:6c:bf:6a:45:d5:
62:8c:a7:6a:52:26:85:a2:1a:a6:9a:ba:02:19:84:
61:dc:ae:00:ae:2f:9d:96:08:8f:b9:e1:22:fa:36:
68:75:92:b6:84:68:4f:81:3d:3c:db:0b:b6:24:ba:
9b:56:9f:d6:43:41:11:0f:97:7b:69:bd:70:dd:fe:
d2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EF:DC:FA:7F:A7:9D:C1:0A:1D:75:CF:4F:C2:CE:B5:AF:33:E8:0D
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/Fu_c-n-nncEKHXXPT8LOta8z6A0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.224.0/22
Signature Algorithm: sha256WithRSAEncryption
35:7a:93:e8:ae:fa:ff:f9:9a:5b:6d:cc:27:32:f4:f0:d5:79:
a6:24:9c:1c:18:51:94:ac:b4:0e:fb:0c:a3:5e:04:7b:7e:e6:
d2:51:5e:c7:8c:4f:c3:22:52:e4:60:e4:a5:05:5a:49:38:6e:
7e:d4:84:cd:1a:23:ba:71:0e:c1:42:b9:54:9e:cf:10:cf:ad:
b2:63:97:f3:f3:4a:8b:7c:fe:ba:4a:15:4b:78:1a:62:9c:df:
88:f2:16:04:70:01:66:d3:b2:27:60:12:25:a7:21:5a:85:45:
e8:47:5d:b3:e9:34:63:81:5f:39:0e:1a:17:3d:12:31:c4:e3:
77:23:bb:d6:18:7d:91:03:0e:70:26:1d:b9:23:87:78:04:9b:
a7:e5:b0:fe:7f:37:7a:af:7d:e8:44:2d:c2:37:c3:ca:18:29:
0c:b0:55:38:3f:87:86:06:e1:3a:45:b9:93:6d:ed:01:6d:d9:
24:d2:2a:32:bc:3b:3e:2b:86:bd:e2:4e:79:7d:18:8b:22:5d:
b3:e0:6f:62:a7:2e:9b:03:52:20:31:c3:64:a3:96:f1:bc:8d:
6e:99:67:41:4a:67:ca:9b:2d:6d:63:b1:36:61:74:96:c0:0b:
30:d1:14:9a:1c:20:df:82:13:7a:77:5a:39:5f:3f:ed:34:ef:
5b:57:16:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org