Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/2j4uNG8xEC6OdqXjCdiq6dyQm08.roa
File: 2j4uNG8xEC6OdqXjCdiq6dyQm08.roa (raw, json)
Hash identifier: C97JNrBGdlOlW3aKJE8c1GcRtbFB1kCRiOKUFQBqoXg=
Subject key identifier: DA:3E:2E:34:6F:31:10:2E:8E:76:A5:E3:09:D8:AA:E9:DC:90:9B:4F
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0B36
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/2j4uNG8xEC6OdqXjCdiq6dyQm08.roa
Signing time: Fri 01 Sep 2023 10:19:28 +0000
ROA not before: Fri 01 Sep 2023 10:19:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131618
IP address blocks: 103.122.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2870 (0xb36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 1 10:19:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=DA3E2E346F31102E8E76A5E309D8AAE9DC909B4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b1:1c:16:7b:d8:7a:c5:2b:85:ae:ee:87:a5:
ad:75:57:86:ad:d2:ba:4d:fb:f4:f2:c7:e7:83:c0:
c4:63:34:72:4f:0b:37:0d:cc:8c:75:b8:06:2f:50:
18:64:bc:c5:2b:1d:2d:5e:d0:83:99:19:39:0f:9f:
46:05:cb:ea:3f:af:09:a2:42:2c:fd:12:4b:ef:19:
e3:b0:08:02:63:06:2f:9a:a7:54:c4:a8:6d:4a:3c:
1c:88:71:f5:ce:88:64:9c:ef:9b:a9:2b:1a:74:92:
38:24:e8:34:b3:a0:6d:71:9d:47:e2:95:83:ed:03:
94:32:76:77:aa:1d:87:07:20:77:69:b0:4f:dc:15:
0d:a4:1b:8f:9f:8c:b2:0a:05:b0:3b:7d:4e:f2:37:
80:b9:1d:6b:0e:2a:80:08:42:7d:06:04:9c:dc:d1:
e8:4a:be:ca:16:d1:91:f1:68:ab:61:60:59:a7:c9:
5b:c2:cc:f7:f1:2d:0e:b9:e5:7d:89:91:b9:c8:ea:
c2:8c:18:bb:ab:6c:bb:9f:f7:da:4a:49:40:ad:84:
df:a9:35:24:ca:92:c4:81:33:3d:74:c8:73:d7:3d:
eb:44:10:00:e5:85:03:0d:02:81:66:b1:98:2a:b3:
16:f7:d9:4c:41:41:15:e9:64:07:4b:e1:2b:1c:20:
db:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:3E:2E:34:6F:31:10:2E:8E:76:A5:E3:09:D8:AA:E9:DC:90:9B:4F
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/2j4uNG8xEC6OdqXjCdiq6dyQm08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.227.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ba:56:75:36:b6:5c:22:f1:6b:bb:a1:32:f4:9e:c9:ce:58:
75:d9:a4:54:ef:92:47:2c:1b:3b:27:e9:0f:8e:0d:af:56:7c:
5a:9a:42:2a:be:82:ab:69:3d:3e:ec:1e:51:c4:f4:b8:ae:d8:
0f:c0:5a:48:7e:b6:10:df:ae:a6:a7:6e:f3:50:ff:e6:9b:2f:
4d:e4:b3:d4:15:a3:46:e2:5f:a6:b8:51:e1:93:d6:5a:22:2f:
1b:22:d0:e8:04:41:1e:5f:38:de:28:cd:5f:a3:f6:c0:ac:73:
f0:7e:08:c4:b5:07:40:f7:be:16:0d:ac:fb:4e:23:f5:71:2b:
85:1e:89:f1:ce:ca:46:54:49:3b:68:86:b3:bc:47:40:52:3f:
60:5e:91:10:e8:53:4e:9f:ca:b3:30:83:78:79:be:d8:6b:a1:
2c:6e:eb:22:35:65:51:4b:95:4d:7f:fd:cd:d0:ea:28:68:79:
fb:55:3c:24:64:57:58:ec:6f:dc:83:82:74:53:16:23:e9:1a:
8f:6f:ec:22:96:a6:2f:bb:b0:f0:8e:ad:ca:c6:3f:66:e3:01:
98:dd:dd:c9:e6:8a:7b:eb:c5:de:d5:05:a5:04:d6:ff:22:ae:
ce:12:a3:55:20:94:c4:f0:ec:55:38:f8:14:5c:dc:17:95:1e:
1a:61:7d:14
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org