Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/yzpce2PNyNXSA55vabx9GvfZuPA.roa
File: yzpce2PNyNXSA55vabx9GvfZuPA.roa (raw, json)
Hash identifier: G46m6GPxkNUMT43Dp0JS8pP25Us1pKhhPc9VkrtCknw=
Subject key identifier: CB:3A:5C:7B:63:CD:C8:D5:D2:03:9E:6F:69:BC:7D:1A:F7:D9:B8:F0
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 0777
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/yzpce2PNyNXSA55vabx9GvfZuPA.roa
Signing time: Fri 01 Sep 2023 10:10:57 +0000
ROA not before: Fri 01 Sep 2023 10:10:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 103.150.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1911 (0x777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Sep 1 10:10:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CB3A5C7B63CDC8D5D2039E6F69BC7D1AF7D9B8F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:74:f8:14:45:b1:6a:bb:15:90:f7:20:d5:28:
9e:b4:e7:30:98:4c:85:fe:ab:b3:cb:12:81:5f:01:
25:68:f3:8a:55:db:46:9f:5e:97:f2:cd:3e:2d:67:
dc:5d:7e:28:71:5f:05:99:76:64:9c:50:0c:58:4c:
01:5a:25:3e:7c:08:35:35:08:1d:40:1f:7d:46:33:
ad:4c:f4:73:1b:81:d2:d9:f2:d8:3e:60:36:f2:a2:
56:27:c0:2b:dd:77:5d:6b:08:06:70:ae:00:0f:b1:
b9:01:9d:b7:bf:86:1b:ee:89:e4:71:55:b8:10:18:
53:28:cb:ae:d7:80:31:d3:6c:57:ba:2f:1f:0f:29:
e9:e6:1b:a2:6f:e1:49:31:44:d9:08:e6:c1:2a:b0:
e9:61:32:26:2f:b6:31:e4:28:76:3c:49:00:fd:a3:
d8:47:ca:51:47:63:e3:e7:28:d0:52:39:83:d5:5e:
d5:67:ec:ba:8b:2a:f1:9b:20:a6:e8:3e:43:1e:c3:
3e:50:f8:43:e9:94:77:c4:56:e4:fa:b5:05:cc:42:
85:43:2f:3e:5b:9e:59:75:6f:f7:a1:9e:63:78:1f:
90:a8:fa:fb:d6:70:57:2f:91:26:b9:05:bf:92:95:
ba:c7:f2:02:b8:05:22:ee:71:6e:7c:b4:be:bb:d6:
68:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:3A:5C:7B:63:CD:C8:D5:D2:03:9E:6F:69:BC:7D:1A:F7:D9:B8:F0
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/yzpce2PNyNXSA55vabx9GvfZuPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.36.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:7b:1e:5f:20:f5:2c:d6:ac:7d:3b:dd:e8:41:ba:2c:01:7f:
66:54:3a:50:24:9b:d2:e7:45:d7:c4:29:fb:b7:7b:55:84:dc:
a2:c4:8a:77:42:85:19:50:7f:84:a8:4f:d4:ce:1c:fd:97:35:
12:2c:8d:74:a5:d0:f6:eb:63:7c:0c:7e:35:ea:55:00:e3:28:
2c:4a:12:c4:a7:f8:7c:ab:7d:15:06:c0:bf:fb:0a:91:7d:9d:
5d:5f:16:1b:df:58:72:be:ce:8a:bc:bd:90:db:0b:02:50:89:
eb:b4:18:9f:57:d7:49:ec:dc:a8:b5:9d:69:1e:3a:5b:1c:fb:
8f:00:0e:d7:68:67:2c:37:85:65:0f:da:0f:13:ae:8e:e2:b2:
39:4a:74:81:29:a7:e3:ce:98:56:ae:6f:b9:c3:ce:e3:ce:73:
94:69:10:6b:35:53:07:46:7f:43:e4:0d:30:e8:55:08:c1:85:
34:65:6a:56:74:42:be:d0:ca:b4:5a:af:d9:81:40:5b:2a:ce:
31:82:ff:da:eb:96:c5:cd:43:cd:6f:ad:7d:c7:cb:76:5f:cd:
e1:63:f6:06:af:3b:2b:a7:ab:12:34:b2:e0:ab:58:41:e5:a0:
cd:4f:64:a9:3d:5a:3b:80:a5:b3:85:ff:78:9d:0a:74:de:50:
31:b9:e6:8b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org