Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/bYhOx_NQOynmkkG74S2YeOwsVGQ.roa
File: bYhOx_NQOynmkkG74S2YeOwsVGQ.roa (raw, json)
Hash identifier: X7vgM6watd7d2+8XG11w8boqzITB1RtaEJrONNXmjB4=
Subject key identifier: 6D:88:4E:C7:F3:50:3B:29:E6:92:41:BB:E1:2D:98:78:EC:2C:54:64
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0B25
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/bYhOx_NQOynmkkG74S2YeOwsVGQ.roa
Signing time: Fri 01 Sep 2023 10:00:37 +0000
ROA not before: Fri 01 Sep 2023 10:00:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2853 (0xb25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Sep 1 10:00:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6D884EC7F3503B29E69241BBE12D9878EC2C5464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8d:43:36:07:2d:20:ff:de:e3:11:19:93:26:
54:0e:ba:df:7d:fa:7b:10:93:d3:33:98:5a:31:0a:
c8:60:93:30:40:bb:45:e1:4c:e0:bd:98:53:9e:3f:
db:f2:d3:d3:57:74:14:d0:b5:3f:75:fc:65:e8:7e:
7a:dd:da:6b:e9:4a:48:fa:32:7a:68:47:dd:2d:bf:
b4:65:bd:3e:65:44:a7:15:36:14:8a:ed:f3:b9:0d:
ae:b6:23:8a:63:a2:ef:eb:bc:29:a4:e6:89:d7:51:
bd:37:8b:01:45:22:40:05:1b:da:63:11:69:d1:dc:
06:41:dc:12:e7:7f:08:04:20:99:54:7e:86:da:6c:
64:1a:ca:c8:44:46:d5:9f:4c:7a:3f:c6:80:82:a0:
1f:32:ad:20:39:e9:8f:de:3d:95:2d:f8:68:8d:b3:
fb:92:f0:b1:5d:ab:48:44:75:f4:bc:b7:d2:26:f8:
c1:23:96:db:cd:e4:1a:d2:ae:7c:13:99:2b:9b:c8:
f1:94:60:ea:bd:76:58:18:80:3f:35:b5:b7:ac:75:
51:65:bf:5a:43:f5:37:45:85:10:c8:35:72:05:1d:
b5:e9:dd:40:9a:fc:ac:2e:a2:cf:ba:fc:29:b6:bb:
50:ae:76:ae:29:12:05:de:2f:32:1c:37:32:40:58:
1d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:88:4E:C7:F3:50:3B:29:E6:92:41:BB:E1:2D:98:78:EC:2C:54:64
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/bYhOx_NQOynmkkG74S2YeOwsVGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:83:a3:69:6f:58:21:4a:1e:2d:f7:2f:e1:0d:f1:ae:18:b6:
19:2d:ba:51:d8:b7:a7:c7:b6:75:2b:60:dd:40:51:46:21:11:
e1:e5:2b:a5:d8:73:1c:49:c9:66:43:8a:e3:35:bb:4c:68:0b:
16:e2:b0:a3:54:e0:c6:0d:79:08:11:f5:be:ad:cf:69:ba:c2:
61:00:eb:e0:14:c7:7c:01:a9:86:ff:3b:8c:76:2a:fd:ea:7f:
b1:1a:e0:fd:d8:0a:5d:cf:24:4a:2e:d9:65:7e:7a:a8:53:7a:
c3:a0:1f:7c:fb:02:7f:4f:12:22:a4:cd:f4:05:42:8b:f3:86:
d2:82:3a:6f:35:19:a1:8b:ff:5a:35:1d:0c:6d:26:94:10:cf:
2f:33:47:1e:53:54:b3:aa:45:c1:b9:35:94:e8:89:e1:88:d1:
1c:7e:17:37:6f:4d:a0:54:39:49:94:96:3c:45:c4:51:ca:ef:
4d:fe:3b:ab:03:6f:2a:b8:df:53:45:04:b0:9e:fa:83:f1:f8:
34:f7:2f:eb:af:78:0d:bd:c0:f8:d4:60:d9:ac:43:0f:af:b7:
54:31:1b:71:7e:df:90:e6:b2:1d:bc:b5:fa:e4:d7:16:67:cf:
05:83:a0:bb:d5:07:a0:42:82:73:b2:5f:2c:d3:a0:4b:ce:f3:
83:9e:12:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org