Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/wf8lDAunDMObaBjaS7lXfNu5CDM.roa
File: wf8lDAunDMObaBjaS7lXfNu5CDM.roa (raw, json)
Hash identifier: 3OY/4zfdCU3Fmf5A3cNoddDZ+LCZmcujMkz1RoceEq4=
Subject key identifier: C1:FF:25:0C:0B:A7:0C:C3:9B:68:18:DA:4B:B9:57:7C:DB:B9:08:33
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 048A
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/wf8lDAunDMObaBjaS7lXfNu5CDM.roa
Signing time: Mon 26 Aug 2024 05:34:32 +0000
ROA not before: Mon 26 Aug 2024 05:34:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18178
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1162 (0x48a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Aug 26 05:34:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C1FF250C0BA70CC39B6818DA4BB9577CDBB90833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:14:f3:c7:36:fe:37:63:ff:a4:99:98:92:f4:
f9:63:46:9b:4d:95:84:7c:40:dd:ac:10:0e:38:9f:
1a:f5:9c:05:c0:ad:4b:12:6f:af:00:ce:09:f1:69:
a5:78:e2:a7:c2:16:0a:56:94:55:5d:2a:e8:b1:73:
cd:31:2f:e8:7f:28:d8:d6:d9:d8:c5:d7:75:b9:de:
b1:5f:e0:c6:b0:d1:d4:74:26:d8:c3:b7:94:a4:c1:
dc:06:2a:30:20:d1:fd:56:ea:4a:f2:93:f7:95:43:
09:be:be:65:53:5e:4e:a5:e6:4a:9e:49:ec:f5:91:
08:8a:0f:92:46:49:ca:f0:6f:2a:de:d5:2f:e8:dd:
8c:b0:35:9a:5a:05:90:1d:66:4b:b6:20:d8:22:8b:
ca:00:90:6a:fc:c0:77:08:88:c2:54:68:c3:9a:54:
74:eb:33:cb:ad:e4:ee:90:91:82:80:b8:19:78:f5:
02:3a:6a:e3:b9:fa:69:8b:80:9e:c0:54:50:23:81:
25:84:4f:45:30:6c:ec:7c:25:cb:7e:45:7e:dc:ce:
92:3b:ed:94:c3:10:56:0f:94:d3:a5:60:71:19:5e:
8b:e5:c9:5c:26:b6:11:d9:e7:05:81:d5:ff:fa:d7:
ad:4b:63:e6:d4:53:53:c5:af:a5:b7:75:00:c5:29:
11:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:FF:25:0C:0B:A7:0C:C3:9B:68:18:DA:4B:B9:57:7C:DB:B9:08:33
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/wf8lDAunDMObaBjaS7lXfNu5CDM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
72:a6:12:3e:b7:3d:74:5d:e4:5b:6b:dd:a7:af:ef:92:b3:40:
7a:3d:7a:ab:76:44:1a:d4:ad:f6:8b:fc:ff:61:d4:db:5f:25:
b5:ae:38:f8:c4:cd:2a:8f:13:bc:fe:df:40:35:f9:cd:7c:c5:
14:c1:a4:09:fe:b8:27:38:fb:96:df:d1:fd:37:1e:e4:30:cf:
15:f3:b1:9a:e4:f5:ae:5d:22:a6:0f:a5:56:aa:eb:72:5d:2a:
1a:12:69:42:e2:a3:c3:2f:03:b6:d0:fe:3c:d4:4f:2d:ab:e0:
38:30:9a:e2:e5:4f:7e:1d:50:db:66:4b:09:ee:f1:f3:9f:70:
8e:db:3e:57:c3:67:5f:71:21:48:80:e9:8a:03:9e:c0:3d:af:
ae:d8:88:03:7e:87:da:3f:8a:1f:ae:98:31:56:46:7f:f9:38:
9a:77:f1:91:f1:c3:6d:87:d7:4a:24:7d:86:25:09:cd:60:5d:
a7:04:2d:c3:33:32:33:d2:65:0c:67:56:46:64:70:4c:3f:3d:
cb:56:41:9d:19:53:5d:4f:45:3e:9e:33:c5:f7:0b:27:e4:ec:
79:07:2b:4d:dd:00:6e:49:fe:a4:92:a6:2e:14:a1:eb:79:51:
ea:bd:84:7d:a8:0c:e7:b2:9d:01:ba:cc:05:33:4e:e7:90:b9:
5d:86:5e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 22:34:31 2024 by rpki-client on console-fra.rpki-client.org