Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/X7530-peRA2uszDBAIsGGnztn5Y.roa
File: X7530-peRA2uszDBAIsGGnztn5Y.roa (raw, json)
Hash identifier: vh6h6Iwmu4eObeRk+5AL687h404RGGJxXy8atU19E28=
Subject key identifier: 5F:BE:77:D3:EA:5E:44:0D:AE:B3:30:C1:00:8B:06:1A:7C:ED:9F:96
Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5
Certificate serial: 0197
Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/X7530-peRA2uszDBAIsGGnztn5Y.roa
Signing time: Fri 01 Sep 2023 10:00:24 +0000
ROA not before: Fri 01 Sep 2023 10:00:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131642
IP address blocks: 103.180.20.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407 (0x197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5
Validity
Not Before: Sep 1 10:00:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5FBE77D3EA5E440DAEB330C1008B061A7CED9F96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ea:43:ff:9d:aa:12:c6:2b:bf:dd:c2:29:dc:
f1:9c:d8:9f:0d:d3:54:94:b2:b5:e7:13:b7:d9:c0:
5d:05:68:bd:1f:91:57:89:72:af:0a:e0:2c:4d:e1:
a1:60:e3:fa:30:44:84:90:e0:ad:98:17:45:05:73:
c4:1a:66:72:93:9e:ac:d9:29:10:ba:c0:2c:fe:5d:
60:b2:3a:be:f1:48:61:d0:f9:51:1d:d3:b6:e1:bc:
cb:f4:6b:72:aa:b4:9a:70:aa:e8:5a:2d:30:85:50:
51:a1:8e:89:c4:8e:57:bf:13:94:fe:29:0b:5f:9d:
a5:eb:9c:ce:d3:8d:14:2e:4b:14:24:78:ee:e9:1f:
00:22:cd:ad:8d:8e:47:8b:cc:ad:0f:62:6e:4d:75:
e9:b9:f6:96:4d:e0:ca:dd:07:f3:e0:8e:c4:05:15:
38:01:07:a5:5b:5a:e5:62:5a:75:6c:ca:40:39:4c:
cb:45:5e:f7:12:d6:a4:3b:60:40:d4:8d:ca:b8:f2:
17:b0:e1:83:f6:32:79:2e:8a:2a:21:2b:d7:78:29:
41:97:18:50:07:1f:56:61:42:ce:b6:ce:57:e8:16:
41:c1:9b:64:99:0b:d7:f8:79:93:fe:7f:90:8e:d0:
ee:83:d4:7c:f1:68:a0:9e:e4:e6:bf:8e:d1:9e:de:
c9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:BE:77:D3:EA:5E:44:0D:AE:B3:30:C1:00:8B:06:1A:7C:ED:9F:96
X509v3 Authority Key Identifier:
keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/X7530-peRA2uszDBAIsGGnztn5Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.20.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:c9:32:0d:73:32:a1:35:3b:39:19:f9:44:1f:41:3b:81:3e:
5f:2b:3e:e3:fb:e6:e4:0a:c6:0d:78:f5:ee:03:80:a3:a0:08:
83:78:62:3c:37:12:62:ae:0e:cc:a1:31:3e:2c:e8:6d:50:c5:
45:45:b5:61:1c:52:39:11:d5:f7:7a:9f:24:2c:3d:6d:a0:37:
03:03:b3:3f:43:57:88:3d:3a:9e:34:10:33:44:7a:1b:01:ff:
3b:55:33:46:2c:b7:f0:66:26:9d:47:18:99:03:ea:40:bf:db:
e3:8c:8e:52:1c:bd:ac:b0:8e:08:c6:2d:2e:c7:43:3a:85:9b:
b6:1e:45:a2:d7:e0:45:03:51:cb:b2:9f:2d:e1:46:2e:6e:44:
e1:57:0f:d1:29:84:9b:80:06:83:a9:7a:70:f7:bb:5c:2d:97:
d3:bc:7e:a4:db:8f:cd:34:0b:f1:65:52:50:5d:9a:2c:71:f3:
a8:5f:f5:f0:d5:5f:20:d1:1f:08:47:53:b8:58:ad:28:a7:d2:
aa:4e:f7:39:01:a5:e1:7d:65:35:27:d7:c4:01:b4:fe:0e:b7:
25:a6:f9:d4:cb:a5:99:8b:b4:dc:74:6b:3b:77:7e:1d:0d:c4:
c0:cb:d9:03:00:8f:95:ce:b3:c9:b4:77:c3:50:bf:7d:de:51:
a9:9a:fc:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org