Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa
File: wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa (raw, json)
Hash identifier: kD3xVBSbcrFSQNk93fjEUKQAnqC6pmqz7Jse5qg3eoA=
Subject key identifier: C1:F2:74:1F:74:01:39:2B:7D:1F:45:AE:BC:38:BD:98:D3:1C:FE:87
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0B38
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa
Signing time: Fri 01 Sep 2023 10:19:28 +0000
ROA not before: Fri 01 Sep 2023 10:19:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131618
IP address blocks: 103.122.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2872 (0xb38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 1 10:19:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C1F2741F7401392B7D1F45AEBC38BD98D31CFE87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6b:7e:d6:1d:e9:6b:ed:67:51:aa:09:f3:0b:
15:35:19:9d:9c:bb:8c:eb:42:d0:87:bf:c7:de:de:
18:b5:c9:44:f6:c8:19:af:94:7e:2a:1f:a9:7c:94:
7d:22:5b:7d:5f:07:e8:bb:74:bf:0b:65:94:15:1b:
c5:b9:1e:b2:7f:9d:43:82:33:38:a3:6a:c7:d7:b2:
0e:e5:4f:58:96:89:18:05:78:3e:30:d9:9b:0b:8a:
74:bd:e2:7b:6b:04:86:e3:6e:11:d3:08:30:cc:1b:
3a:c0:fe:88:5c:47:4b:51:76:36:6e:87:e8:e3:4c:
cb:39:7f:55:4e:66:29:e7:31:18:3b:53:0d:d6:52:
9e:fe:67:b1:32:f7:aa:e3:a8:19:76:83:ec:5f:fa:
ad:4a:45:60:1b:67:61:4f:63:82:97:c0:08:1c:1e:
86:c1:2e:08:96:1e:9a:37:c1:54:6d:80:60:79:28:
6e:95:bb:04:09:c1:01:22:a4:3b:96:70:2c:49:29:
48:0c:21:54:c7:a3:c7:e7:15:a5:49:ee:0f:62:80:
cc:59:73:16:15:3b:b3:af:85:4c:55:32:f2:25:f3:
8d:f9:2c:c2:87:f8:9b:50:00:7c:5b:a3:45:ff:67:
2e:a0:5c:04:58:9e:9b:25:9a:8a:0e:1e:e6:87:71:
9f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F2:74:1F:74:01:39:2B:7D:1F:45:AE:BC:38:BD:98:D3:1C:FE:87
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.225.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:81:43:11:9a:34:c6:7a:f9:ba:13:43:99:9f:73:78:78:ea:
5a:5f:26:76:68:c1:02:e7:e1:61:72:27:5f:ef:b9:f5:08:0c:
ea:fa:18:39:66:d5:a3:15:b7:4b:2f:7d:a6:2f:23:e1:92:69:
cb:b7:94:02:1a:3b:74:eb:b9:31:a6:24:11:c2:ad:85:98:f9:
38:30:c0:15:94:85:98:05:10:48:3b:a5:4a:93:2a:ea:5b:e8:
46:6c:84:90:8d:14:81:70:b8:a0:15:db:f5:f2:7c:d1:15:86:
3a:e1:57:83:3a:49:75:e6:30:90:74:6e:59:46:3d:1f:76:0e:
0b:04:c7:ee:9e:c1:0e:81:c5:4a:ec:88:6a:ee:fa:61:d4:94:
ff:ae:0f:59:84:14:67:ca:cf:11:7e:12:51:21:b5:87:58:52:
ab:9c:ae:d6:0d:a7:7a:34:3f:11:58:52:83:35:66:81:da:73:
52:d1:56:83:91:84:ea:8f:25:e0:46:77:e2:35:6f:e3:cc:f5:
49:a7:13:60:e5:6e:ff:8c:38:01:eb:dc:22:8b:1d:9a:b1:6e:
41:14:fd:c1:c2:f8:0b:2d:8c:56:2a:c0:30:90:3f:4b:cd:25:
1b:6d:a1:39:38:35:a0:76:5a:d5:74:5d:53:ab:71:cb:a1:b5:
d7:73:d4:c6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org