Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1nB_GnYRjiK_pgqT9X5edmvOaRs.roa
File: 1nB_GnYRjiK_pgqT9X5edmvOaRs.roa (raw, json)
Hash identifier: gX21d+HYkwwNup04ylAi+GY3VhZorMzHlLjbhLl5rWE=
Subject key identifier: D6:70:7F:1A:76:11:8E:22:BF:A6:0A:93:F5:7E:5E:76:6B:CE:69:1B
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F70
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1nB_GnYRjiK_pgqT9X5edmvOaRs.roa
Signing time: Fri 01 Sep 2023 08:29:08 +0000
ROA not before: Fri 01 Sep 2023 08:29:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 150.117.168.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3952 (0xf70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D6707F1A76118E22BFA60A93F57E5E766BCE691B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3e:67:2b:48:ec:60:f2:68:3c:36:85:ef:49:
7f:b8:92:c6:65:ca:6a:35:d6:88:a4:f3:37:7a:b1:
25:8d:2b:27:67:71:80:d1:5a:85:f0:80:c0:4a:51:
5c:0f:5c:6d:83:c8:1f:b6:0b:3a:af:5f:d9:df:19:
06:99:97:a3:13:a4:44:d1:4a:50:98:91:3a:15:a1:
7c:db:3b:81:d4:0d:b1:6d:ee:ed:e5:0e:41:a0:0a:
65:68:69:91:e7:54:69:87:91:2f:20:24:74:1b:ef:
a1:93:a7:2f:d3:b7:a3:b4:ed:17:20:41:8f:21:a3:
c1:ac:c3:99:82:fb:5e:a7:c0:ea:af:4b:15:fe:62:
3b:59:2b:9c:22:46:ae:ba:02:6b:04:f4:eb:82:a5:
ee:3e:80:e8:be:24:99:24:1f:a2:cb:a4:29:34:06:
5e:44:99:aa:dc:c5:b4:71:f7:32:67:f7:54:c5:e9:
8c:4a:b5:ff:7c:d1:21:c6:e5:3c:01:6d:f5:c0:3c:
1f:98:9f:ce:e3:03:21:c7:4e:45:57:8f:52:79:a3:
de:99:f8:3e:d8:dd:53:45:d2:8d:16:b2:9f:e0:5a:
c2:46:da:16:e2:b3:aa:92:13:17:3b:45:1e:bb:68:
ff:26:80:c6:27:d0:b3:0d:da:1d:37:b5:bf:c1:4a:
e8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:70:7F:1A:76:11:8E:22:BF:A6:0A:93:F5:7E:5E:76:6B:CE:69:1B
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1nB_GnYRjiK_pgqT9X5edmvOaRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.168.0/21
Signature Algorithm: sha256WithRSAEncryption
03:d2:a9:ee:d1:34:ab:14:01:37:5d:11:31:5d:bc:28:d2:71:
32:5c:42:38:95:38:d4:7c:f9:d0:48:89:c0:c9:6a:fe:ef:b4:
47:12:20:10:17:7b:fc:d3:51:b7:b7:e2:4d:89:1e:cd:c6:2b:
cf:2a:52:52:67:63:11:89:c0:43:17:9b:8f:30:3e:78:45:93:
ab:a6:99:ca:27:b2:51:bd:cd:d9:06:26:e4:07:b8:7e:e6:87:
ce:d4:4d:fd:f5:8f:8e:e1:c0:8d:5f:c9:19:4c:b0:cc:a7:ce:
3f:cd:3a:89:de:9f:9a:5e:92:cc:33:96:dc:3c:cd:9e:e1:7f:
9d:f6:b0:98:02:63:1d:9b:6c:ce:24:40:cd:27:a7:5a:00:1b:
df:8f:a2:6b:ba:bf:da:44:84:fb:22:eb:d3:c1:86:e2:c6:90:
2b:e6:e6:71:31:8b:e3:4e:48:41:7f:b6:43:2f:d6:2b:59:b6:
55:b9:5b:88:8e:5d:07:77:fb:64:30:0e:c9:90:4f:0e:e5:cc:
65:8f:da:e9:b1:dd:5a:b6:c9:fd:49:ea:65:63:9f:dd:ec:1a:
e1:8e:49:12:b2:a4:c9:d4:81:13:e3:97:bc:28:c8:da:78:cb:
79:1f:95:90:4a:5e:1f:b8:c9:44:e8:5e:a0:a7:df:f5:dd:1f:
fd:de:3e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org