Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/Qp0CvDC3KvbmdJNflUPwTJCJhZE.roa
File: Qp0CvDC3KvbmdJNflUPwTJCJhZE.roa (raw, json)
Hash identifier: Gesw6cZMXcziPkvO1a3HwXcoiU/P8aOIP3MlOaYlpnU=
Subject key identifier: 42:9D:02:BC:30:B7:2A:F6:E6:74:93:5F:95:43:F0:4C:90:89:85:91
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 107D
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/Qp0CvDC3KvbmdJNflUPwTJCJhZE.roa
Signing time: Thu 15 Sep 2022 02:48:58 +0000
ROA not before: Thu 15 Sep 2022 02:48:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 21859
IP address blocks: 103.123.242.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4221 (0x107d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Sep 15 02:48:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=429D02BC30B72AF6E674935F9543F04C90898591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0d:6d:bd:1e:0d:4d:ef:16:62:2c:8c:67:f3:
0f:f3:ef:d6:76:7c:91:cd:b2:7e:c8:9c:24:24:fd:
0d:47:12:a9:31:0b:d1:cd:85:80:51:a9:80:d6:6b:
3c:0f:c6:67:fc:3e:64:51:a6:0d:9c:50:a5:b7:25:
07:51:42:83:6a:2e:8c:4f:b3:1a:32:0f:3b:a8:7e:
57:46:38:6b:20:60:09:04:ca:dc:ad:09:c8:c5:1c:
ad:0f:e6:ab:52:f7:74:21:12:b4:bf:b7:e4:96:2d:
91:48:9c:e9:6f:7f:a6:4f:3f:c8:99:10:79:9d:ae:
ec:1f:d4:c9:77:8b:71:53:9a:3a:c7:5d:0e:92:a5:
fb:e2:77:c2:76:10:bc:f3:dd:17:6b:a9:59:10:1a:
17:d4:cc:e1:a7:6a:ee:ea:bc:a4:ad:f0:9e:ae:f4:
76:ef:bd:2e:89:57:50:47:6d:b5:ad:e7:07:88:a2:
47:8e:1e:5b:60:fd:00:e2:8f:a6:64:29:da:53:a5:
d1:37:f1:b0:d2:d0:98:82:a2:14:ef:3b:f3:6b:ca:
46:03:a2:1c:1e:6b:65:b9:da:42:f1:f5:21:08:25:
fe:56:25:79:ca:c0:d1:2f:a9:22:22:ef:3c:6e:b8:
f3:8c:bc:fe:74:1e:29:a4:2d:f1:c5:29:76:dd:4f:
7e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9D:02:BC:30:B7:2A:F6:E6:74:93:5F:95:43:F0:4C:90:89:85:91
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/Qp0CvDC3KvbmdJNflUPwTJCJhZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.242.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:a1:b0:a8:7e:14:dc:ca:11:86:35:2c:78:c8:3a:0d:0c:82:
5c:ec:24:e6:bf:5f:bd:63:47:30:f5:aa:ac:a9:56:e1:c9:68:
29:b2:95:3f:68:80:20:06:b6:6f:c8:47:b5:eb:3f:3e:cc:6f:
30:b4:3a:2b:0e:6c:ee:88:b8:b6:4f:fb:71:dc:b2:b9:01:0b:
37:e6:89:6f:da:3a:2b:6b:c4:bc:58:7f:13:3e:64:27:ec:ed:
af:bc:b5:51:70:e5:24:a0:a3:33:df:80:30:ab:79:74:f4:72:
40:dc:a1:8c:68:7b:3f:6d:f2:01:fb:e4:1a:90:26:a7:d7:90:
fa:f8:fd:12:bb:86:31:a0:80:79:0f:99:ee:98:f2:e8:e8:43:
59:fe:de:ab:dc:26:da:cb:89:30:21:c2:26:61:7e:c5:54:21:
20:89:d6:4a:80:e3:1c:95:65:91:7f:68:04:50:cd:90:a5:eb:
35:e1:cb:05:30:0c:2f:35:03:d7:5d:b4:e5:c5:e5:fe:be:d3:
ab:2d:8c:ea:4f:bd:9c:08:a2:c6:ea:17:39:12:e9:fc:1e:54:
fd:2a:89:b4:71:ab:59:f5:83:83:ac:2f:20:42:ab:a2:be:25:
37:7e:61:35:42:01:6b:62:67:0f:20:7d:65:df:0f:1f:42:e7:
68:c6:2c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org