Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/hJy_XzDRnNOCHdVR8b8gSnpOUF0.roa
File: hJy_XzDRnNOCHdVR8b8gSnpOUF0.roa (raw, json)
Hash identifier: oxf6dzPoli8suf/4qcT1Y9gKhjZoPzD7G3+iupeRfEw=
Subject key identifier: 84:9C:BF:5F:30:D1:9C:D3:82:1D:D5:51:F1:BF:20:4A:7A:4E:50:5D
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 0EF0
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/hJy_XzDRnNOCHdVR8b8gSnpOUF0.roa
Signing time: Sun 07 Feb 2021 06:08:24 +0000
ROA not before: Sun 07 Feb 2021 06:08:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.123.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3824 (0xef0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Feb 7 06:08:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=849CBF5F30D19CD3821DD551F1BF204A7A4E505D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ce:7d:67:41:c0:c4:47:fd:f1:9a:6b:a5:1c:
39:1e:a2:72:97:b2:37:71:3e:f4:92:1d:01:bb:d7:
d5:be:e4:0f:7c:04:1f:86:00:a3:ad:a1:b1:18:ea:
83:de:8a:a3:e5:59:cc:b8:fa:25:12:79:f0:2f:76:
94:7f:41:9b:a7:b5:44:c1:8f:7b:64:2f:8d:fa:da:
96:06:bc:61:79:26:76:25:7a:35:a0:e8:3b:10:85:
c7:95:2e:01:9c:bc:15:53:98:cb:14:f9:ef:5d:4a:
41:69:ba:25:a0:ae:9c:eb:9e:dd:fc:1a:09:e6:6c:
db:a3:da:0e:89:d4:52:e8:a0:7a:0e:5b:c3:9b:01:
c9:0f:2f:9e:b6:40:fd:16:49:09:32:9a:5f:99:09:
71:0e:a4:31:12:7c:2a:1f:6c:7b:50:7e:b8:b4:40:
83:b7:94:e0:cf:ec:ad:72:94:b8:39:6a:3f:d0:57:
90:e4:96:0b:30:99:25:6a:c0:c2:41:30:24:b0:19:
43:7b:13:fe:76:05:99:e7:b1:ad:c7:87:0f:ab:9d:
9e:2a:f7:95:71:39:e4:e5:fd:d9:7e:79:50:b9:db:
ca:05:86:ee:db:81:b5:6e:74:1e:c8:15:11:95:0f:
36:8e:0d:28:e9:f0:00:d9:06:4c:fa:d1:ce:91:22:
c8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9C:BF:5F:30:D1:9C:D3:82:1D:D5:51:F1:BF:20:4A:7A:4E:50:5D
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/hJy_XzDRnNOCHdVR8b8gSnpOUF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.240.0/22
Signature Algorithm: sha256WithRSAEncryption
78:88:45:a5:6c:40:5b:1f:98:e2:cd:7b:77:90:47:71:d4:0e:
d0:77:38:cc:b7:dd:be:cd:b8:a1:c7:f0:f9:a8:70:50:de:30:
8d:07:16:c6:a0:8b:af:b6:50:21:ce:ff:cf:f7:1d:de:af:65:
f2:04:3d:05:3f:0e:1f:da:63:a0:0e:a7:78:e0:f8:b0:64:81:
70:9c:b2:12:0e:c7:2b:6a:db:94:5e:eb:dd:cf:6e:9e:66:2a:
7f:f3:24:8b:fd:f3:ee:5b:d5:f0:73:66:8d:c6:d4:c1:4b:f9:
fa:60:49:f9:e3:1c:6f:97:29:6f:9b:33:e4:de:d9:4f:cd:2a:
d8:2b:e2:ff:6f:0f:92:4e:00:2d:d5:21:7e:d4:f2:a7:5c:eb:
10:22:67:b6:5e:9b:46:ac:fd:5c:f0:65:ad:79:70:c8:86:e5:
e3:d4:4d:bc:c6:46:51:40:1f:2b:fe:d0:3d:71:02:a8:b2:95:
45:d7:26:97:a7:c7:d8:72:51:da:d4:84:10:fa:f7:2a:a7:fd:
9f:84:fd:d9:ec:02:9f:42:df:f7:79:70:83:be:4c:00:b5:8a:
43:e4:b2:d8:79:14:88:50:a2:9e:02:c0:0f:1d:03:9b:f3:51:
8e:0b:b8:6d:db:09:5a:da:63:14:c8:15:c9:a1:31:8a:00:86:
99:85:74:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org