Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/yK7_S5vwmSKiQi6i3qFbmP6iP9c.roa
File: yK7_S5vwmSKiQi6i3qFbmP6iP9c.roa (raw, json)
Hash identifier: ykeXYRsedKrmcSYas3KaGPI4i4KYpb3E6xSHcbpve1g=
Subject key identifier: C8:AE:FF:4B:9B:F0:99:22:A2:42:2E:A2:DE:A1:5B:98:FE:A2:3F:D7
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0E9A
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/yK7_S5vwmSKiQi6i3qFbmP6iP9c.roa
Signing time: Fri 01 Sep 2023 10:21:34 +0000
ROA not before: Fri 01 Sep 2023 10:21:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38047
IP address blocks: 103.133.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3738 (0xe9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Sep 1 10:21:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C8AEFF4B9BF09922A2422EA2DEA15B98FEA23FD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6d:0d:38:31:50:a6:b8:10:a3:ce:ad:da:c0:
58:dc:c8:63:b9:39:56:d1:7c:8c:46:5f:3a:90:d1:
ee:a9:51:dc:de:b7:01:30:c1:6d:2c:de:fe:bc:91:
2e:68:65:99:9a:53:6f:e5:da:2a:da:39:19:82:54:
cf:51:38:48:25:17:c3:11:87:58:fb:d2:67:6c:f8:
19:4a:61:e2:0f:c3:df:75:29:a3:94:3b:0e:ca:94:
29:af:4c:38:fb:42:ce:c3:09:38:35:2a:83:6c:42:
bc:f8:3e:94:c2:a8:b5:1e:a3:97:99:01:bb:66:50:
b1:ca:15:52:d8:1e:df:c5:1a:a3:e7:49:8e:b2:f8:
3f:5e:7e:68:6d:4c:95:07:df:27:ab:e4:30:11:68:
24:71:40:4e:4f:cd:c9:58:4a:87:6b:f1:18:50:27:
55:c7:8d:ac:4f:ec:5e:c2:a5:70:57:e0:65:1b:8e:
79:c2:fd:21:9a:ba:04:6d:09:b7:13:2b:34:4c:a2:
94:aa:5c:e2:c6:f3:4e:d7:ac:6c:4f:0c:f8:33:93:
c9:be:9b:b5:bc:39:a7:52:a4:c6:45:e5:a4:79:82:
5b:43:9b:f0:a4:13:ba:e6:0c:a2:cd:4c:1b:a4:66:
72:85:56:9f:86:0e:17:92:da:0b:97:ef:ba:7f:9d:
99:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AE:FF:4B:9B:F0:99:22:A2:42:2E:A2:DE:A1:5B:98:FE:A2:3F:D7
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/yK7_S5vwmSKiQi6i3qFbmP6iP9c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.153.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e3:c4:4a:bc:7c:63:af:49:56:21:50:18:c5:56:3a:78:09:
84:b3:35:e3:f0:ff:80:51:7f:8a:56:f7:7c:fc:2f:de:7c:80:
97:a1:8c:d2:36:c6:fe:f8:6d:e0:93:5f:cd:63:86:c3:97:52:
20:f0:18:3a:0e:d4:67:af:35:14:93:cb:07:c3:79:85:37:38:
9a:63:d3:ae:5b:8f:7f:41:5e:92:63:f0:bb:d9:e8:87:a8:2a:
bd:14:7f:b8:20:7a:a6:75:40:0f:8a:d1:52:bb:48:93:3c:77:
3d:1d:90:26:51:e7:2b:c1:be:7d:2b:81:71:1a:f0:b3:cb:7d:
04:75:b0:f1:c7:ea:b7:c2:60:57:1b:6f:78:d3:36:25:9d:7a:
19:37:35:34:1f:80:60:ca:7d:6c:e4:a9:bd:08:91:a2:9b:b6:
2f:59:20:b9:5f:ee:32:f9:38:a4:ee:cf:f1:e3:c4:8e:0a:e1:
87:fd:43:23:ba:0f:81:ab:82:b7:3c:f4:cf:9f:a8:ef:87:bb:
64:c3:a6:8c:88:98:15:01:67:ec:b3:2a:ed:8b:e9:95:00:8b:
62:60:17:e1:3e:ae:e3:ac:43:da:87:08:ea:0b:ba:1b:0a:2e:
7d:69:4c:46:dd:16:f3:21:fd:a6:ed:40:08:77:63:90:bc:f0:
14:bc:9d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org