Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/kUkkwESaucsYQulGMijfGBh-VrY.roa
File: kUkkwESaucsYQulGMijfGBh-VrY.roa (raw, json)
Hash identifier: cnPH+nh4D02BovzOHvaRlahybrR0Go/JsojjqlM0lgg=
Subject key identifier: 91:49:24:C0:44:9A:B9:CB:18:42:E9:46:32:28:DF:18:18:7E:56:B6
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 0DB0
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/kUkkwESaucsYQulGMijfGBh-VrY.roa
Signing time: Tue 29 Sep 2020 09:59:04 +0000
ROA not before: Tue 29 Sep 2020 09:59:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.123.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3504 (0xdb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Sep 29 09:59:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=914924C0449AB9CB1842E9463228DF18187E56B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a4:51:1c:4c:9f:8f:e6:de:fe:80:53:03:a0:
0a:5d:0a:1f:fe:82:b7:ba:e5:6d:13:17:98:d4:fd:
1b:9e:9e:fd:76:79:83:75:77:56:98:91:38:a7:a9:
f6:84:7e:25:27:01:ed:98:cc:37:58:b3:80:61:49:
14:e6:bf:d9:17:48:b9:c7:cb:95:5f:be:77:f5:3f:
05:bc:60:4a:ed:64:ef:74:1a:4e:0c:9d:8a:ea:7a:
bb:8f:7e:69:f4:cf:e7:34:20:dd:5e:d0:b0:c5:a6:
34:6a:66:e6:aa:b2:1d:e4:d7:8d:e8:75:b3:ce:93:
fb:9c:ff:d2:7c:13:c3:71:d3:39:54:df:5c:da:1b:
99:47:be:03:83:1a:46:ab:f6:00:ca:49:46:59:21:
2a:00:8b:f5:3d:e6:03:5e:43:87:2d:c7:42:c4:ce:
96:73:a6:be:46:95:e5:05:76:47:33:b9:ed:6d:88:
3e:95:85:4b:a5:c0:ae:58:43:db:b7:16:5b:f2:08:
32:33:47:8a:ee:a2:39:35:47:73:bc:ef:c1:d7:01:
77:ac:f4:54:67:3c:25:b6:a0:ce:89:e3:12:9d:44:
c3:ed:d5:81:fe:9b:59:e9:52:c9:7f:72:23:c7:80:
cd:0e:21:bc:f1:b9:6a:19:f9:9d:4a:85:00:0b:59:
0f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:49:24:C0:44:9A:B9:CB:18:42:E9:46:32:28:DF:18:18:7E:56:B6
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/kUkkwESaucsYQulGMijfGBh-VrY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.240.0/22
Signature Algorithm: sha256WithRSAEncryption
49:5e:6a:24:7a:9c:a8:a0:ea:b3:c6:cc:e4:a4:52:f1:19:9a:
83:3f:ab:38:93:e1:b5:da:c3:90:0f:a9:ef:82:d7:08:f2:4a:
45:1d:02:e0:aa:81:62:1f:4a:f0:8c:3d:13:13:42:87:1d:47:
90:30:5a:3b:85:1b:6f:0f:de:70:4e:f8:8d:db:03:33:57:70:
dc:c6:26:69:6d:4a:10:98:1b:06:30:c1:cb:0a:73:a4:0d:ec:
f6:c6:95:1c:59:67:7c:be:b9:cf:d8:da:b5:a7:1e:ed:ff:a0:
e0:c2:07:07:4c:08:67:7f:6d:83:79:ff:d8:8f:65:69:d2:c1:
ee:a2:0a:29:52:ef:3f:96:ff:c4:31:85:c0:9c:54:10:a6:21:
8e:f8:4b:e4:a9:be:a1:e9:96:fb:3c:ae:1e:5a:38:65:85:00:
b7:28:d3:a3:d7:85:bf:41:e9:50:28:a5:7f:ab:9e:74:18:34:
f3:57:f3:23:06:39:17:99:d3:b5:21:6c:cb:2d:0d:39:cd:93:
c8:80:c0:11:4e:6d:e4:d3:83:2d:ce:a3:e7:7e:e6:ac:0f:d1:
01:f6:eb:56:02:51:0a:a7:16:59:03:c0:a9:9b:42:58:a9:4c:
a1:23:a9:fa:34:44:c9:b4:cc:4c:f6:f0:f2:69:d4:55:d1:3d:
f9:25:88:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org