Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TTNS/PebpWdEuPnP39HuxFXEFfWoQrrY.roa
File: PebpWdEuPnP39HuxFXEFfWoQrrY.roa (raw, json)
Hash identifier: bgdbl8DFoahdqIcSrp0wXPERjStJvkBacCMhvBwAciI=
Subject key identifier: 3D:E6:E9:59:D1:2E:3E:73:F7:F4:7B:B1:15:71:05:7D:6A:10:AE:B6
Certificate issuer: /CN=298ED2FD6AD5C5B5687DF614A275C2FC848D4E94
Certificate serial: 0167
Authority key identifier: 29:8E:D2:FD:6A:D5:C5:B5:68:7D:F6:14:A2:75:C2:FC:84:8D:4E:94
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KY7S_WrVxbVoffYUonXC_ISNTpQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TTNS/PebpWdEuPnP39HuxFXEFfWoQrrY.roa
Signing time: Mon 11 Dec 2023 06:15:52 +0000
ROA not before: Mon 11 Dec 2023 06:15:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 132369
IP address blocks: 103.159.206.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359 (0x167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=298ED2FD6AD5C5B5687DF614A275C2FC848D4E94
Validity
Not Before: Dec 11 06:15:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3DE6E959D12E3E73F7F47BB11571057D6A10AEB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c1:22:15:2a:54:c8:6e:6e:5f:a1:87:7c:a4:
9e:32:8a:00:99:ec:e7:00:9c:78:97:99:25:9e:20:
bc:5a:9e:e2:b1:ea:c2:7b:ec:96:5d:ff:2d:96:ba:
b6:9a:51:08:0c:be:68:6f:e8:c7:be:9f:73:eb:f1:
9b:41:67:8a:a5:e4:75:08:53:76:0a:58:5c:38:04:
26:73:05:36:5d:a2:99:d9:89:9c:9f:c0:fc:1d:96:
ac:00:d7:13:1e:4b:8c:77:6c:4b:7c:f5:77:5c:4a:
72:e9:27:06:14:2d:f1:f6:1b:0e:55:33:ac:a7:7d:
f0:3a:24:91:1d:0e:39:02:24:9d:0d:7f:b9:8e:6c:
c6:95:03:8b:24:be:df:81:d0:d5:fb:0e:e4:7f:bd:
f3:eb:92:ed:d0:76:61:36:7e:73:2b:73:77:35:a2:
fc:6a:c5:24:c0:07:62:d1:7c:49:87:b0:9d:70:a3:
fd:2d:db:bf:ae:19:22:05:45:bf:4a:f1:90:5d:81:
1a:8c:3c:ff:4d:35:83:73:9a:5d:ea:0a:65:1a:30:
a2:b0:27:0c:82:e9:83:e3:80:c8:2d:a9:43:d8:ff:
39:e2:a1:c6:b6:ca:0e:b5:2b:d6:23:2b:47:e4:79:
c9:63:5b:4e:8c:0d:27:33:51:da:a1:8b:f1:a9:d7:
08:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E6:E9:59:D1:2E:3E:73:F7:F4:7B:B1:15:71:05:7D:6A:10:AE:B6
X509v3 Authority Key Identifier:
keyid:29:8E:D2:FD:6A:D5:C5:B5:68:7D:F6:14:A2:75:C2:FC:84:8D:4E:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TTNS/KY7S_WrVxbVoffYUonXC_ISNTpQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KY7S_WrVxbVoffYUonXC_ISNTpQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TTNS/PebpWdEuPnP39HuxFXEFfWoQrrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.206.0/23
Signature Algorithm: sha256WithRSAEncryption
74:5b:40:c7:a8:70:22:ae:a4:16:c5:8c:f5:c2:24:c5:67:f4:
1c:de:da:86:b0:fe:d1:56:24:ae:f8:a9:63:22:00:4e:60:c8:
49:ac:b3:26:76:78:89:d9:10:32:ed:2c:f5:c1:bb:bb:b7:b3:
35:35:b1:02:3f:08:ff:39:6e:12:5e:36:c5:41:ef:10:4d:27:
0b:5b:d6:3f:f5:b6:4f:f9:80:7d:3a:3f:ad:b4:2d:bd:2c:82:
0a:05:47:9c:66:6b:10:46:21:b3:e0:65:9e:e2:d3:0f:ca:45:
ef:e0:cf:97:7a:1e:e8:79:bf:3c:15:81:c5:9f:a3:8e:98:b9:
ac:55:5f:11:48:81:29:76:bb:c0:38:e3:f1:d6:3b:ed:ed:72:
d9:1f:d1:00:75:13:9b:31:b2:43:ec:13:70:81:bb:7a:11:6b:
ec:a8:c7:0d:ad:09:a2:d9:86:36:2c:39:d8:38:80:3c:cd:1f:
e2:d6:15:30:87:4d:c7:05:72:4f:4f:d9:79:e8:57:50:1f:9a:
42:34:ed:26:f6:eb:67:a7:39:22:74:7e:41:27:18:93:7b:72:
7d:a8:69:66:b0:57:27:d8:15:b8:aa:8c:09:07:b0:25:01:58:
56:1b:14:08:a6:e0:40:12:34:5c:7a:d7:98:99:d3:84:08:9e:
71:7d:b9:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org