Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa
File: mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa (raw, json)
Hash identifier: T2c+k1slYBjKGpNUkS+hSiAhobnEOJpzMD7RJYFy1Kg=
Subject key identifier: 98:2C:43:95:CB:A9:F5:0D:93:C5:29:EA:72:60:C4:B3:11:E5:15:29
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0C5C
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa
Signing time: Fri 01 Sep 2023 10:20:36 +0000
ROA not before: Fri 01 Sep 2023 10:20:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18424
IP address blocks: 103.30.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3164 (0xc5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 1 10:20:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=982C4395CBA9F50D93C529EA7260C4B311E51529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ce:9b:ec:14:fc:00:75:92:1a:5d:5b:4c:3c:
c5:78:af:bd:0f:75:b0:24:d6:a8:8a:4f:70:b4:6f:
11:7c:fc:cb:49:be:86:68:22:83:a1:61:49:99:31:
45:c9:6b:9d:bf:9b:71:93:a6:2f:d3:88:f5:63:bc:
ff:c7:1f:7b:55:50:67:c1:b9:3e:5b:7e:59:2e:11:
1a:a1:5e:d9:48:8a:1c:05:d2:ff:bf:bc:0d:3d:bd:
1c:3f:b1:a9:06:d3:91:66:a3:0a:4b:68:4a:9a:e6:
00:17:a0:03:a0:e9:9d:9d:23:4f:26:3e:db:da:ee:
75:4d:e0:f6:c7:5b:2f:8c:1e:c6:15:ea:30:35:02:
61:01:b5:8e:44:9d:19:07:5a:8d:75:97:c2:43:02:
d1:fd:94:41:89:0e:d9:83:75:22:6d:b3:ff:00:8b:
ce:dd:91:2c:ba:2c:c9:87:43:e3:8a:12:81:66:dc:
ad:a3:9d:0c:f8:14:9e:55:2a:25:f1:04:43:cb:2e:
49:52:cb:96:52:63:8c:2f:c4:62:9b:60:23:25:06:
69:f9:10:e9:77:12:3c:94:cf:3e:92:45:e6:99:3e:
79:f7:c6:cc:16:90:07:cf:18:b2:4a:8d:c4:1e:d5:
a5:3a:4f:2e:43:5b:46:05:2a:c3:c3:52:9d:b4:80:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2C:43:95:CB:A9:F5:0D:93:C5:29:EA:72:60:C4:B3:11:E5:15:29
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.44.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:1c:99:27:eb:0a:6b:0c:82:80:21:dc:4b:bb:ac:63:85:de:
d9:f6:03:50:33:37:6e:2d:b8:53:60:d2:09:9b:02:4a:71:f2:
fe:df:6a:61:e9:d5:9d:ce:a4:fa:52:5c:9c:2c:a4:65:0f:75:
0f:da:97:ad:09:e2:17:fa:a1:1e:ee:e8:b9:dd:dd:2e:84:2e:
36:aa:43:5f:a4:5f:8c:41:4e:e9:03:f2:77:33:2b:5d:1d:2c:
0b:ac:9e:86:9e:c9:f7:6e:d2:29:41:b8:e5:83:bb:3e:2b:8a:
6c:1f:99:32:5d:9f:1f:92:cb:38:59:34:b4:2b:19:5b:66:ae:
6e:e3:9a:31:68:17:68:63:9d:b2:f9:a9:7b:ad:03:e2:f9:85:
b0:b6:25:33:ee:39:32:88:e6:54:7d:ca:1f:8d:08:86:62:45:
db:c5:14:58:db:80:a4:5e:b9:07:8b:d1:f7:61:1d:1d:be:b3:
d7:cc:be:ed:ee:ad:39:ba:3a:21:45:37:ea:b5:6d:44:7c:0b:
c5:77:3c:c7:8d:00:ed:86:42:4e:11:f5:d5:a1:50:4c:5c:f7:
3e:36:68:42:d0:e4:b2:53:ef:e4:fc:b4:52:5f:a3:9e:37:f5:
50:c3:ce:7b:b4:6a:81:56:b9:d4:7a:a0:12:ff:43:9c:ad:5d:
28:b9:ef:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:22 2024 by rpki-client on console-ams.rpki-client.org