Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/iJkIM_2VRJljcmvx_foKA0UVeDs.roa
File: iJkIM_2VRJljcmvx_foKA0UVeDs.roa (raw, json)
Hash identifier: kLgq1eGDh2/tMp+smc/Hd8rCn5Iui8+Gs9T9ocMsxUA=
Subject key identifier: 88:99:08:33:FD:95:44:99:63:72:6B:F1:FD:FA:0A:03:45:15:78:3B
Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Certificate serial: F3
Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/iJkIM_2VRJljcmvx_foKA0UVeDs.roa
Signing time: Tue 21 Nov 2023 15:31:03 +0000
ROA not before: Tue 21 Nov 2023 15:31:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131657
IP address blocks: 103.51.88.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243 (0xf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Validity
Not Before: Nov 21 15:31:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=88990833FD95449963726BF1FDFA0A034515783B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3d:5b:ac:5c:42:c8:29:84:cf:e0:f5:ad:b4:
42:e2:64:97:50:df:63:35:03:68:f0:6f:12:8d:a0:
24:b6:e3:9b:45:0b:47:32:da:88:0c:55:02:4a:91:
64:49:30:95:72:93:7c:43:73:46:cd:5e:66:9c:ba:
76:76:b6:42:e9:0e:fb:d5:91:bb:03:1b:df:94:ad:
88:06:74:47:d1:fe:71:e6:ef:24:56:dd:09:f3:fb:
59:de:d1:3d:c4:83:d4:64:80:b2:7d:a5:6d:f6:65:
91:34:3d:f3:14:e8:da:26:18:ad:35:eb:fc:b4:9a:
7d:08:86:5d:fe:d5:16:42:e3:47:b2:78:a2:5e:d7:
27:b9:86:f7:cf:9b:1b:80:1b:16:e3:83:03:3c:3a:
c0:b6:92:ce:0d:f7:f2:32:bd:d8:1e:69:8f:2a:ed:
2a:1e:fb:f6:81:df:c3:47:24:c4:cc:af:91:32:77:
98:a3:ec:64:33:8e:6d:53:b5:d7:b9:b9:2e:13:a5:
2e:a1:62:f8:58:a3:5c:a7:1f:96:3c:87:30:07:3c:
30:01:92:12:83:02:83:52:ca:65:c8:67:49:48:d6:
b6:6b:5d:4f:0d:0e:ff:87:2d:b5:2d:cf:cb:eb:ef:
41:10:06:ea:60:c4:28:27:91:e8:d7:88:fa:56:3c:
8a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:99:08:33:FD:95:44:99:63:72:6B:F1:FD:FA:0A:03:45:15:78:3B
X509v3 Authority Key Identifier:
keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/iJkIM_2VRJljcmvx_foKA0UVeDs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.51.88.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:8b:56:0b:ed:4f:af:91:6f:bb:8a:63:34:7b:01:c6:71:fa:
d6:a7:b4:bf:b9:a7:30:db:e4:4c:95:23:8b:13:ec:10:15:e4:
65:a9:e4:1b:dd:68:c6:fa:46:87:92:9e:65:44:36:76:45:60:
83:a0:01:a7:79:8c:59:a6:44:50:fc:7a:89:c7:e6:1e:1d:64:
e9:5e:f0:55:10:79:5d:34:bd:07:97:89:07:dc:13:53:88:1b:
a8:47:3c:7d:76:6c:82:e1:e3:3a:ed:f4:0d:ea:e6:3a:94:a1:
64:c2:2c:6c:40:d5:8c:22:88:3f:06:57:34:28:2c:d4:f8:96:
ed:d8:f6:d9:a9:6a:3a:92:90:c0:8b:97:e2:d9:ea:0a:94:65:
10:ae:41:51:24:6a:b1:55:ea:d9:64:6d:14:d6:18:65:3a:ee:
71:c3:a3:16:23:94:02:ed:d3:7e:fb:3a:7a:35:61:8a:7a:e9:
2e:eb:87:48:99:3d:6f:e9:12:02:b7:de:4a:c1:5d:72:a1:48:
ba:ae:f6:62:a1:53:c0:3d:10:0e:fc:45:61:58:f2:c6:df:c5:
b7:bb:49:35:6c:ae:24:6f:35:6e:44:e7:e3:f7:e3:85:15:40:
8e:bb:9b:52:c2:5d:55:23:cd:e1:22:0e:96:c5:79:c3:ac:aa:
47:a7:3a:93
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG
Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yMzExMjEx
NTMxMDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg4OTkwODMzRkQ5NTQ0
OTk2MzcyNkJGMUZERkEwQTAzNDUxNTc4M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCYPVusXELIKYTP4PWttELiZJdQ32M1A2jwbxKNoCS245tFC0cy
2ogMVQJKkWRJMJVyk3xDc0bNXmacunZ2tkLpDvvVkbsDG9+UrYgGdEfR/nHm7yRW
3Qnz+1ne0T3Eg9RkgLJ9pW32ZZE0PfMU6NomGK016/y0mn0Ihl3+1RZC40eyeKJe
1ye5hvfPmxuAGxbjgwM8OsC2ks4N9/IyvdgeaY8q7Soe+/aB38NHJMTMr5Eyd5ij
7GQzjm1Ttde5uS4TpS6hYvhYo1ynH5Y8hzAHPDABkhKDAoNSymXIZ0lI1rZrXU8N
Dv+HLbUtz8vr70EQBupgxCgnkejXiPpWPIozAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUiJkIM/2VRJljcmvx/foKA0UVeDswHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0
wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS
SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vaUprSU1fMlZS
SmxqY212eF9mb0tBMFVWZURzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAWczWDANBgkqhkiG9w0BAQsFAAOCAQEAP4tWC+1Pr5Fvu4pjNHsBxnH6
1qe0v7mnMNvkTJUjixPsEBXkZankG91oxvpGh5KeZUQ2dkVgg6ABp3mMWaZEUPx6
icfmHh1k6V7wVRB5XTS9B5eJB9wTU4gbqEc8fXZsguHjOu30DermOpShZMIsbEDV
jCKIPwZXNCgs1PiW7dj22alqOpKQwIuX4tnqCpRlEK5BUSRqsVXq2WRtFNYYZTru
ccOjFiOUAu3Tfvs6ejVhinrpLuuHSJk9b+kSArfeSsFdcqFIuq72YqFTwD0QDvxF
YVjyxt/Ft7tJNWyuJG81bkTn4/fjhRVAjrubUsJdVSPN4SIOlsV5w6yqR6c6kw==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org