Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XDA7aWo6QcCCw_Lg_qAE8rUDk18.roa
File: XDA7aWo6QcCCw_Lg_qAE8rUDk18.roa (raw, json)
Hash identifier: QO3oJjY0poRjF5+b4oURsbEJNVscKwyOGeRAPqb3oFo=
Subject key identifier: 5C:30:3B:69:6A:3A:41:C0:82:C3:F2:E0:FE:A0:04:F2:B5:03:93:5F
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1178
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XDA7aWo6QcCCw_Lg_qAE8rUDk18.roa
Signing time: Fri 01 Sep 2023 03:14:23 +0000
ROA not before: Fri 01 Sep 2023 03:14:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 203.119.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4472 (0x1178)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 03:14:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5C303B696A3A41C082C3F2E0FEA004F2B503935F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:63:90:76:29:63:21:ab:b8:13:0a:18:fd:fd:
b4:84:dc:8b:12:24:51:28:c0:da:bb:fa:1b:a8:2c:
5d:a3:1a:1f:d6:bb:be:7c:78:46:25:84:80:12:3d:
0a:db:3f:a8:53:2e:e4:f9:6e:08:e5:cb:01:36:31:
04:98:e4:04:c8:12:cc:a3:05:e2:aa:ba:4d:39:22:
ba:e7:29:df:af:0d:29:71:37:7a:54:91:35:e0:2e:
68:07:c7:7c:4f:a5:b4:e8:46:d2:6b:fd:6f:99:33:
82:16:38:fb:70:dd:cc:53:ba:25:06:18:3b:75:4f:
b2:8d:c1:ac:fd:34:c8:c8:89:01:c0:3d:3f:ae:7e:
a1:47:2e:f0:9c:d0:51:25:f1:53:c6:3b:3f:38:1e:
6e:d1:91:da:73:5e:db:d4:43:ed:22:9e:1c:4c:1b:
cf:33:ce:b7:07:af:89:0c:30:51:b0:31:cd:81:5f:
73:a6:74:3f:a1:c2:95:32:3a:75:59:f8:1b:5a:ce:
b5:d3:e5:23:6f:df:27:46:ca:f5:7b:b0:ec:41:8d:
4d:f5:59:5d:01:68:ed:d5:21:c1:82:5a:67:40:50:
86:2f:f6:cc:c4:73:f5:ce:a0:37:ea:55:dd:85:bf:
19:90:e6:f8:a0:0f:51:94:69:cb:ab:61:82:c8:e9:
33:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:30:3B:69:6A:3A:41:C0:82:C3:F2:E0:FE:A0:04:F2:B5:03:93:5F
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/XDA7aWo6QcCCw_Lg_qAE8rUDk18.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.94.0/24
Signature Algorithm: sha256WithRSAEncryption
78:35:5b:08:06:f3:da:94:29:fb:90:2c:be:dc:7d:86:ee:5b:
11:9c:a2:2f:68:4b:06:f7:b4:fe:29:d2:32:98:e5:69:b1:f1:
68:ec:eb:eb:a4:ce:2f:83:b9:d7:23:7b:b4:27:34:36:70:2e:
51:ca:5f:27:ee:f5:e9:2e:e6:16:18:2f:80:e2:16:6f:a9:4d:
57:17:d5:5c:67:f0:07:a1:11:f3:6e:79:74:d4:c3:5e:29:a7:
6e:87:6f:f0:4c:a5:26:8f:92:7b:fa:e1:6a:22:9a:3e:e0:4e:
a3:2d:ba:bf:7c:bf:30:59:ff:fa:23:9a:81:a2:d4:46:e0:5f:
d5:55:3d:e8:05:cb:cb:39:9a:ad:c4:a0:4a:52:2c:2e:97:34:
e1:9f:e4:4f:21:5e:23:c2:98:3f:fa:53:4f:73:cf:33:86:b4:
f9:a9:e9:02:c0:cd:f9:2c:3c:d1:33:c7:b2:c9:5e:e6:80:74:
e9:39:d5:69:66:18:9c:62:2c:bb:cd:82:0e:c7:5b:81:a4:02:
01:02:aa:49:ea:2b:a6:11:0b:6b:67:ef:e8:33:c0:90:61:4a:
9a:12:86:47:e9:4d:c4:60:98:40:0e:b1:57:c4:2a:46:05:f1:
79:fb:f5:86:66:9c:54:03:f1:5a:d1:e1:41:d3:b9:f4:2b:c7:
48:9e:b3:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org