Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/3pQh12-pbOn7s7L1CCyVkJ0235o.roa
File: 3pQh12-pbOn7s7L1CCyVkJ0235o.roa (raw, json)
Hash identifier: vOTN2hNFVxioCtNvtMfLn7sM6yRciXdNyzyUhHY9318=
Subject key identifier: DE:94:21:D7:6F:A9:6C:E9:FB:B3:B2:F5:08:2C:95:90:9D:36:DF:9A
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 119B
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/3pQh12-pbOn7s7L1CCyVkJ0235o.roa
Signing time: Sun 08 Oct 2023 11:30:37 +0000
ROA not before: Sun 08 Oct 2023 11:30:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63905
IP address blocks: 103.123.240.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4507 (0x119b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Oct 8 11:30:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DE9421D76FA96CE9FBB3B2F5082C95909D36DF9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:75:8a:f4:47:31:23:8f:36:a9:78:ce:a5:
8e:1a:69:93:bc:a1:1e:ca:1a:81:8f:fa:dc:e9:5d:
66:56:74:53:2a:88:d6:cd:fb:a4:a0:14:df:00:89:
66:dd:32:1c:d4:22:7c:a2:48:f4:3a:71:d9:a1:c5:
03:26:40:3d:30:81:b8:f9:f5:2f:e0:93:c3:0c:78:
b0:7c:82:27:d8:11:36:44:a9:4b:be:3a:c5:f6:de:
36:8e:6b:bb:ee:39:c4:31:d9:45:60:9a:3b:31:9f:
66:8c:f7:1a:6d:d3:b0:ff:6a:ae:26:f8:f8:1e:70:
8a:f0:0c:54:ba:1c:0e:ce:53:58:89:9d:2f:e9:cf:
d4:28:6b:a4:93:39:99:97:2a:09:8d:9e:40:8b:2c:
98:bf:bb:00:05:59:f9:8f:40:72:bf:de:ea:0f:9f:
cc:fd:51:f2:17:03:f8:d0:28:fd:28:32:97:11:df:
fa:92:f4:53:ca:cb:59:8d:49:74:ea:3a:ef:00:88:
10:45:77:ba:0c:7a:d5:86:b8:36:85:dc:b0:09:da:
ac:4b:c8:04:0e:9f:78:12:c0:af:07:77:1e:29:af:
3b:d7:ff:30:db:52:7c:a9:48:23:e6:e0:3b:ea:9d:
fc:c2:f0:94:3a:74:40:61:3e:5a:27:5c:f9:37:b3:
1b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:94:21:D7:6F:A9:6C:E9:FB:B3:B2:F5:08:2C:95:90:9D:36:DF:9A
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/3pQh12-pbOn7s7L1CCyVkJ0235o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.240.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:e2:ec:7e:8d:51:cc:fc:12:73:3e:1e:b3:27:7f:2b:a8:a9:
bc:4d:d8:3a:93:bb:04:5b:39:b1:4f:6e:e5:43:a5:9f:7b:0e:
45:0b:ca:74:2b:91:bb:10:b9:1c:40:bb:33:5f:8b:5a:79:06:
30:23:0b:7d:86:7d:7e:c7:67:cf:48:c1:76:a9:40:66:c4:85:
79:b3:4e:43:98:bc:9b:17:ef:04:6f:86:9e:bb:e4:ff:4c:8c:
68:0a:fa:06:ba:28:4e:e8:63:d7:3c:c6:03:d7:03:c4:0c:7e:
4f:c5:80:a8:23:cb:e5:b2:fc:d8:74:91:0a:62:c6:4a:32:52:
ff:30:ff:85:b1:24:11:35:20:0a:88:7f:1a:a2:9b:cf:d9:f8:
cc:81:ca:5b:92:c3:37:da:c7:36:15:6d:74:2d:97:02:29:b1:
92:83:90:0c:62:85:da:f6:05:0b:9d:e5:53:8a:48:4c:c5:c0:
37:ce:0f:06:43:6c:6b:a6:a7:04:c3:2c:77:59:f2:73:4b:7b:
e4:ee:6e:42:bf:35:6f:95:9d:6c:10:f6:cb:8d:01:9d:df:86:
bf:85:39:75:65:43:4f:0f:fa:23:a3:5f:b2:6c:d0:54:4f:bf:
dc:60:39:41:1f:63:f1:c2:45:f8:27:7a:09:4f:6f:2b:e2:f1:
bb:ee:84:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 12 07:28:14 2023 by rpki-client on console-fra.rpki-client.org