Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/MKQG_L6s7WhO3xUMxlHewXALKtQ.roa
File: MKQG_L6s7WhO3xUMxlHewXALKtQ.roa (raw, json)
Hash identifier: SLO4w09MbgdTpcEAOQtEkHt4uOO5MnFtLZAIQHCSbkk=
Subject key identifier: 30:A4:06:FC:BE:AC:ED:68:4E:DF:15:0C:C6:51:DE:C1:70:0B:2A:D4
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0B5D
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/MKQG_L6s7WhO3xUMxlHewXALKtQ.roa
Signing time: Fri 01 Sep 2023 10:00:10 +0000
ROA not before: Fri 01 Sep 2023 10:00:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131590
IP address blocks: 103.227.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2909 (0xb5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 1 10:00:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=30A406FCBEACED684EDF150CC651DEC1700B2AD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:0d:b4:cc:84:c9:33:e5:85:e5:6e:b5:90:24:
df:1e:aa:fc:63:2e:99:18:00:e3:47:4e:54:b3:7a:
c3:b1:03:58:a4:95:83:28:41:57:f2:0a:56:88:68:
b4:73:cc:f9:a8:c0:6c:20:fe:6f:c4:5e:ef:5c:6c:
f5:75:24:81:52:06:1b:35:a9:d4:10:2c:d7:2d:7e:
22:6c:4c:df:62:82:a7:5a:af:20:a1:94:a9:b9:56:
43:4c:79:8c:f2:21:11:3d:77:c3:c4:f3:a9:ff:52:
13:db:bb:fe:8d:b8:31:7c:5f:f5:2a:b9:d3:f5:64:
f6:5b:15:1d:6a:92:eb:91:f0:88:b0:59:a7:e4:b0:
92:58:74:02:19:bb:b1:ae:ac:1a:b1:ca:a8:4d:c8:
61:86:63:a0:ea:8d:a4:56:20:c1:0b:ce:37:af:a7:
98:48:ab:8b:6d:ee:bf:71:b1:99:7c:e5:dd:80:4f:
5c:b0:6a:21:f0:c3:16:a1:45:0c:af:79:01:e2:07:
8c:84:da:48:e4:42:41:ef:bf:48:35:66:31:d3:38:
be:c9:ab:31:2f:8f:28:8f:90:f5:aa:bf:b7:9d:6d:
61:49:04:11:a6:2e:a6:a9:40:28:97:08:88:82:15:
b9:ac:c4:33:5a:da:48:71:12:25:79:c1:3a:91:98:
7e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A4:06:FC:BE:AC:ED:68:4E:DF:15:0C:C6:51:DE:C1:70:0B:2A:D4
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/MKQG_L6s7WhO3xUMxlHewXALKtQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.227.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:11:70:e9:a7:de:f6:38:47:63:b0:9d:2e:f7:b3:28:fc:0d:
e0:45:38:5d:00:c8:2e:df:aa:05:6e:16:5c:20:b2:4b:4c:0e:
47:45:80:10:66:f1:d7:b6:23:18:83:16:6b:d4:ce:68:9e:34:
8e:d1:40:c2:ac:1a:de:64:10:6b:ea:78:1e:48:3b:cb:be:24:
cd:92:59:20:c3:e0:b2:96:3e:6f:e9:b7:0b:17:56:6d:66:bb:
35:cc:66:af:59:14:ab:56:81:cd:ad:7c:b1:b0:84:7e:7c:66:
30:62:70:27:47:98:fa:e9:9b:9b:1a:53:be:31:b5:cb:4c:d1:
e6:88:f4:0a:2b:77:24:95:a2:3f:12:48:76:77:a4:2c:d1:b3:
74:75:bf:40:b1:2e:0f:61:db:b3:7f:47:47:2d:0d:75:35:94:
ce:4a:ac:4b:e5:10:5d:ae:74:e7:36:6c:85:a5:e9:4a:e1:6f:
8f:dc:de:df:9f:d9:0b:c0:87:c3:47:39:ce:e3:be:04:01:86:
ff:e2:bd:eb:2f:a6:c8:f5:81:e3:ab:35:24:65:4a:06:7f:a7:
75:1b:7c:39:a3:15:ac:8f:ad:d7:f8:38:ee:de:a7:14:f2:88:
05:6f:c8:d5:70:b8:09:bb:32:a2:e9:34:a2:ad:44:f6:d4:27:
39:48:ff:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org