Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TYCATV/yPL3UyPJs8yUUgq79E5T72fKCOw.roa
File: yPL3UyPJs8yUUgq79E5T72fKCOw.roa (raw, json)
Hash identifier: y5+03hmQy1BYlxTbmD/5sb/HpPStRf690rauI7PBH+o=
Subject key identifier: C8:F2:F7:53:23:C9:B3:CC:94:52:0A:BB:F4:4E:53:EF:67:CA:08:EC
Certificate issuer: /CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121
Certificate serial: 0ADE
Authority key identifier: DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/yPL3UyPJs8yUUgq79E5T72fKCOw.roa
Signing time: Fri 01 Sep 2023 10:14:22 +0000
ROA not before: Fri 01 Sep 2023 10:14:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 203.111.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2782 (0xade)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121
Validity
Not Before: Sep 1 10:14:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C8F2F75323C9B3CC94520ABBF44E53EF67CA08EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:df:27:3e:4e:47:b0:6d:bc:38:46:51:e7:c3:
23:34:d7:a4:ef:89:42:7a:7e:2d:c9:5c:7d:06:1a:
65:cd:f0:f0:e5:38:21:a0:a5:41:aa:31:f1:c3:59:
b8:74:5d:d9:70:36:9e:14:6f:16:21:7a:bf:e2:8e:
22:3b:cb:23:7c:02:51:cc:aa:5d:0e:2f:4c:2c:b4:
7e:01:87:4e:b4:8d:58:a4:b9:44:d7:da:58:d9:a3:
3a:0d:00:00:b5:c8:c7:ef:e2:90:e9:eb:fd:ce:18:
bd:11:f3:dd:15:2f:da:ab:e1:f6:f9:98:00:5b:22:
be:39:85:67:20:32:9d:48:25:27:62:4e:15:24:fc:
cc:7f:bf:db:2e:8a:d3:31:e5:19:e9:13:a1:8b:df:
df:d4:fd:b4:c0:3d:53:53:a5:05:7e:d2:84:75:22:
d0:1e:5a:b1:9f:5c:ad:37:63:71:27:d9:63:6e:eb:
b6:76:5e:25:00:c2:5b:5c:59:26:58:7d:13:2e:69:
bb:fe:b4:dd:36:f7:86:73:07:08:f0:ef:31:51:08:
dc:82:32:b3:45:4a:e4:96:10:7d:db:4b:c7:b2:ab:
05:e4:e2:d0:3b:de:a1:67:51:ec:3d:9f:76:98:1f:
81:c7:2d:ab:5e:e5:7a:3c:be:4d:67:58:72:6a:5a:
4b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F2:F7:53:23:C9:B3:CC:94:52:0A:BB:F4:4E:53:EF:67:CA:08:EC
X509v3 Authority Key Identifier:
keyid:DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/yPL3UyPJs8yUUgq79E5T72fKCOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.111.208.0/20
Signature Algorithm: sha256WithRSAEncryption
03:4c:9c:b5:aa:d2:dc:3b:0b:11:3f:93:a6:cc:36:45:d0:85:
60:31:82:d7:06:43:33:f5:9e:68:15:09:ee:5e:8c:82:f7:8f:
a4:f1:ee:36:f0:17:e8:c3:21:df:59:92:b2:7c:c4:0a:a2:2d:
7a:05:46:f7:20:95:7d:a2:35:7f:8b:ac:e0:e6:3d:75:20:af:
eb:4c:00:c5:b0:b7:48:c6:7e:2b:ac:fe:64:02:1e:07:95:3f:
c0:40:8d:d0:79:be:50:18:ee:3c:ce:96:03:aa:1a:5d:88:eb:
26:98:a6:33:86:50:f9:c9:aa:80:cc:cf:e1:d1:23:3d:56:91:
e4:2f:38:da:56:37:eb:fc:1d:f1:c1:c6:aa:0a:4d:f8:9d:aa:
27:65:56:be:33:a0:84:30:fc:8c:4c:37:e0:fa:8a:78:2a:17:
1c:a0:ee:3d:95:3a:df:9a:23:4f:5d:5d:09:09:f3:4b:a9:c8:
7e:f1:7f:d5:d4:d9:dc:c3:f1:81:9f:54:c4:4c:bf:a7:c0:72:
70:20:fe:cc:3b:63:0f:56:7b:08:79:d8:3a:33:67:0a:69:70:
71:58:20:5b:96:46:42:a9:0d:6e:7b:39:00:d3:fd:50:66:79:
c0:86:2d:12:18:6f:e2:6c:89:a1:88:75:74:89:19:17:a2:7b:
88:a4:b0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org