Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/2TX61BkLT7I61GeacVeHqZ0FcGo.roa
File: 2TX61BkLT7I61GeacVeHqZ0FcGo.roa (raw, json)
Hash identifier: IPmpLtN+2TwFi05bhMmb5C3gEJsqE5qTHT58zfrEnV0=
Subject key identifier: D9:35:FA:D4:19:0B:4F:B2:3A:D4:67:9A:71:57:87:A9:9D:05:70:6A
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 109A
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/2TX61BkLT7I61GeacVeHqZ0FcGo.roa
Signing time: Mon 17 Oct 2022 09:12:28 +0000
ROA not before: Mon 17 Oct 2022 09:12:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 21859
IP address blocks: 103.123.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4250 (0x109a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Oct 17 09:12:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D935FAD4190B4FB23AD4679A715787A99D05706A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5c:ca:28:99:af:e3:28:22:89:65:31:11:3a:
b6:17:0a:65:94:04:aa:d2:59:e7:42:75:29:da:44:
d0:ab:4f:d6:35:c8:fe:5f:23:7d:84:1d:7c:54:6f:
43:46:2c:e8:40:db:f4:bd:e4:1d:aa:d9:c5:89:78:
fd:2f:43:7c:df:f4:61:09:20:9a:b8:28:7f:7a:6e:
69:c3:4b:12:12:ca:13:58:a1:7c:6a:10:8c:5f:3e:
4a:50:cf:4a:85:e5:3f:4c:42:c7:f1:b2:55:ef:88:
5c:2f:bf:90:9f:3e:fa:22:d0:9d:b6:53:7a:1e:9b:
31:bf:4d:aa:9a:25:33:bb:8e:a0:f2:f5:cd:98:aa:
17:1a:b8:50:36:0c:be:53:de:5f:25:85:01:26:b9:
34:55:65:dc:54:46:7c:da:dd:37:96:51:20:09:3d:
00:75:fd:85:b8:93:eb:fe:47:70:1c:16:d1:7e:fc:
81:50:39:5d:77:70:bb:53:c8:b0:e5:eb:56:de:e4:
34:49:11:60:6a:4b:54:bb:e4:aa:32:a5:1f:04:1f:
91:dc:d3:df:8b:e7:0e:2f:b6:d5:22:4b:0b:32:e7:
15:d0:d3:f7:07:09:a0:43:a8:06:ab:28:cb:01:89:
92:4d:8c:2b:37:38:70:3b:87:e1:f5:9c:0f:ec:19:
b6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:35:FA:D4:19:0B:4F:B2:3A:D4:67:9A:71:57:87:A9:9D:05:70:6A
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/2TX61BkLT7I61GeacVeHqZ0FcGo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.240.0/23
Signature Algorithm: sha256WithRSAEncryption
04:9c:4c:78:d2:e9:11:53:85:b1:2d:69:53:a7:ea:d6:e2:fa:
97:4f:28:67:98:b4:ca:39:96:44:44:5c:55:7c:e5:8b:85:4c:
fc:21:f4:08:90:ac:73:59:88:5c:af:ca:38:da:9a:c7:11:90:
5d:82:86:50:0a:a7:9f:9a:db:8b:31:2f:48:01:1c:9e:7e:14:
6b:72:d4:00:46:03:25:5e:e9:35:ef:43:f8:82:4f:0d:4d:fe:
1f:db:6c:99:00:7c:dc:64:32:d5:08:ee:4b:f7:05:f5:bb:18:
7c:d3:74:63:3a:68:ea:1b:63:60:2f:26:cc:0d:25:83:e4:1a:
5b:ca:59:72:ab:45:48:7b:10:70:c0:ff:1b:ba:4f:6c:fb:9e:
c7:aa:23:b2:df:e3:7c:b5:21:a8:35:1a:29:90:87:b2:7a:c3:
2b:bb:6f:80:6f:cc:21:17:54:79:d7:05:85:55:58:ca:d8:6c:
aa:c3:d8:4e:bf:0b:2c:d2:40:fd:8f:a4:07:bb:05:86:dc:67:
87:85:5d:5a:b4:6d:ba:3c:ea:db:74:2e:92:d4:2e:d3:e3:9e:
a8:a0:89:c1:6e:93:4a:a5:4b:23:2e:34:fe:80:21:30:a8:01:
93:f4:19:23:fd:0b:70:bc:6d:bd:26:b4:12:a5:26:e9:03:18:
ae:a2:28:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org