Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/oa7XwwbEyH7lpdwO6YYvklkgfEQ.roa
File: oa7XwwbEyH7lpdwO6YYvklkgfEQ.roa (raw, json)
Hash identifier: WUB3y7a3slOLBkkO2srgqLG3uFIVaActyNNKQyPEG9g=
Subject key identifier: A1:AE:D7:C3:06:C4:C8:7E:E5:A5:DC:0E:E9:86:2F:92:59:20:7C:44
Certificate issuer: /CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Certificate serial: 08BA
Authority key identifier: 1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/oa7XwwbEyH7lpdwO6YYvklkgfEQ.roa
Signing time: Sun 07 Feb 2021 11:49:37 +0000
ROA not before: Sun 07 Feb 2021 11:49:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131603
IP address blocks: 103.229.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2234 (0x8ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Validity
Not Before: Feb 7 11:49:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A1AED7C306C4C87EE5A5DC0EE9862F9259207C44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:96:11:14:3b:6b:e9:dd:5c:55:c7:92:c8:e5:
5c:52:0b:3e:b6:6e:5d:ff:58:4c:b9:a3:ea:8f:01:
b4:c0:9f:9c:8e:9f:06:a5:da:d3:c6:f8:71:70:70:
02:3f:ab:a5:88:6c:3b:c0:5a:d4:96:8a:c5:eb:c6:
a2:31:72:97:ff:3e:3b:55:b7:19:b1:29:e6:2d:5e:
3e:08:08:8a:1a:84:09:81:a4:fc:4b:0d:98:f1:cb:
ba:ab:d9:28:ae:e0:ae:f6:2d:99:f2:89:b2:e3:88:
5c:87:ae:39:c1:61:77:34:cb:30:90:60:e1:54:23:
9b:63:75:a1:cd:99:34:ce:cc:08:e9:29:57:cd:cf:
89:04:62:14:10:85:62:82:73:01:f9:d9:7d:47:18:
54:ca:59:bb:34:d9:d5:4a:78:4b:0e:c6:67:f8:d4:
30:de:e5:bf:94:d6:e9:b6:9c:84:22:10:eb:10:d0:
99:82:04:68:a3:29:17:11:47:f3:11:fa:92:88:f2:
bb:47:28:1e:da:34:f1:51:f3:f4:5e:ab:4c:2e:e3:
c1:7e:7e:d2:b1:13:e9:5b:18:bb:0c:87:a4:9d:f7:
1d:78:17:90:1d:51:56:ce:47:58:7a:8a:c7:42:47:
77:6a:9f:c1:3d:2c:bc:0f:ae:b5:62:8c:32:c8:49:
1f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:AE:D7:C3:06:C4:C8:7E:E5:A5:DC:0E:E9:86:2F:92:59:20:7C:44
X509v3 Authority Key Identifier:
keyid:1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/HLHKcKMySPs9rui_QeLap2p9z9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/oa7XwwbEyH7lpdwO6YYvklkgfEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.50.0/24
Signature Algorithm: sha256WithRSAEncryption
18:f9:fe:30:c3:ba:00:94:0c:65:88:fa:d3:1c:55:3c:b0:6c:
a7:b1:02:aa:b0:54:55:6f:30:3c:ae:f2:7c:bf:d0:a4:a3:ae:
3a:46:ef:9b:dd:c0:6a:fb:31:b1:89:66:34:45:a8:3b:44:43:
de:6e:22:89:98:3b:8c:a7:7e:b8:a7:2c:f5:07:df:d5:3c:b4:
c6:0a:35:39:00:91:69:67:4d:87:5c:d7:d0:a3:79:cd:2c:9a:
66:d3:f4:5f:97:96:69:a8:bb:30:dd:47:ea:0b:df:97:9e:5f:
ee:cb:77:12:3a:03:00:3f:7b:9e:86:0a:fb:f0:bc:00:17:75:
39:9c:f1:51:c6:05:bd:77:e0:dd:b4:44:0f:53:4c:3e:e1:41:
25:a0:3d:3c:df:68:9e:93:3a:67:50:eb:2c:c8:61:19:e0:b0:
fc:ec:9c:f1:b4:cb:f1:d1:de:f4:d9:e7:e3:fd:f1:32:eb:4c:
9d:8d:d9:01:e3:8f:29:15:ff:5b:51:5f:d1:22:0b:f9:4f:1c:
16:11:92:17:17:f3:50:c7:fc:e0:ea:65:50:fa:38:37:3c:19:
4e:c7:56:99:7d:81:e2:3f:43:b3:90:f2:1e:fb:64:88:91:a8:
7b:83:38:c1:ad:7d:6f:b7:2b:61:98:70:1d:5a:0d:73:d2:71:
50:30:f8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org