Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/yY5ERgxC-vrclluEQVeMPnEdfVI.roa
File: yY5ERgxC-vrclluEQVeMPnEdfVI.roa (raw, json)
Hash identifier: 3JPv8TYiHwxGLR96S0XVzgUcIdWe1yoF+ztmZdMbbK4=
Subject key identifier: C9:8E:44:46:0C:42:FA:FA:DC:96:5B:84:41:57:8C:3E:71:1D:7D:52
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0B58
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/yY5ERgxC-vrclluEQVeMPnEdfVI.roa
Signing time: Fri 01 Sep 2023 10:00:09 +0000
ROA not before: Fri 01 Sep 2023 10:00:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131590
IP address blocks: 103.227.224.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2904 (0xb58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 1 10:00:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C98E44460C42FAFADC965B8441578C3E711D7D52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:36:59:dd:3e:fa:bf:04:ba:a3:02:32:72:59:
df:32:f5:37:69:5c:10:b9:bc:c4:67:eb:a2:fe:2f:
e3:4f:68:af:c1:9f:6a:49:3f:92:98:c5:cd:b2:86:
b5:fb:ed:b2:75:25:98:3c:3f:ba:a0:1b:08:69:45:
55:32:67:1a:a8:0f:69:1b:d0:c4:36:d2:24:cc:6e:
39:f9:3e:1a:35:51:ed:05:29:2c:93:be:8f:42:3a:
91:92:2b:a5:89:dc:f7:18:b5:5f:fd:9c:e7:3a:fd:
0e:85:83:bd:54:d4:45:5a:c2:6e:c7:98:dc:9f:8a:
0b:76:f8:c4:36:e0:f2:5b:cc:ae:81:50:71:41:89:
b2:0f:0b:b9:69:f1:02:47:b9:ad:ed:87:b5:d2:16:
df:f2:9b:fe:db:c1:cd:b9:a8:8f:d7:80:0f:9f:df:
c6:12:cc:16:a0:7b:88:b0:9d:e8:35:a3:c5:03:b8:
bb:ca:cb:bd:5b:55:22:cd:d0:dc:97:bd:d3:e5:10:
df:0f:d4:d1:10:1b:cd:01:9d:5b:cf:42:75:81:37:
72:56:8a:0f:85:e4:59:a1:f4:38:ce:09:d5:50:58:
04:77:7e:55:52:9c:c5:85:43:67:6f:d1:74:9a:03:
db:c7:0b:3d:76:e5:f2:37:a6:bf:54:8b:d4:04:93:
eb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8E:44:46:0C:42:FA:FA:DC:96:5B:84:41:57:8C:3E:71:1D:7D:52
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/yY5ERgxC-vrclluEQVeMPnEdfVI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.224.0/23
Signature Algorithm: sha256WithRSAEncryption
49:f4:f3:aa:76:98:37:a8:7e:c4:9f:6c:ab:c0:57:6f:d3:5a:
78:b1:3f:e5:e0:95:af:57:04:82:0a:de:24:cb:d2:c3:a5:07:
79:7b:17:00:88:76:b5:69:59:7b:c6:b6:2b:64:c9:0d:b0:92:
0f:22:cd:0c:52:f7:57:2c:e1:9c:05:a7:fe:0d:53:fe:16:c0:
cb:52:67:a2:85:8d:40:6d:c8:a5:56:4b:d3:1f:22:92:4e:fe:
6b:00:fb:65:68:1f:2b:57:35:86:1b:a9:7f:59:23:6f:37:86:
87:ae:8f:04:36:94:ea:f0:24:a6:da:d5:9f:87:03:88:9c:df:
c0:fc:c5:3c:8f:70:6f:55:f4:fd:de:06:46:83:8c:02:dd:af:
ff:90:d9:4b:11:f0:7f:d2:24:59:9f:73:31:10:2f:6e:94:6a:
6d:88:aa:c3:e7:3d:04:d0:96:b6:0d:e1:5c:40:a0:b6:a8:3a:
d1:d5:1b:a4:95:c0:f2:a9:d3:f0:30:ea:93:87:6d:5e:c8:84:
33:83:6e:e6:36:c6:51:48:93:27:15:38:dd:98:78:fa:cf:77:
bd:c4:aa:41:c4:6f:22:69:f9:3f:35:f0:c6:64:fe:c4:0a:f5:
5c:ca:73:a0:09:ca:90:b1:18:d4:e4:82:5d:cd:90:62:28:4e:
8d:4f:dd:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org