Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4Rm1xTemiO23ZC7o2ol-nHIlNQc.roa
File: 4Rm1xTemiO23ZC7o2ol-nHIlNQc.roa (raw, json)
Hash identifier: rtdYeqK9xQOG75JK6kLDR64mynYQcUmvRTEP/cNfp58=
Subject key identifier: E1:19:B5:C5:37:A6:88:ED:B7:64:2E:E8:DA:89:7E:9C:72:25:35:07
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 10BB
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4Rm1xTemiO23ZC7o2ol-nHIlNQc.roa
Signing time: Fri 02 Aug 2024 07:52:44 +0000
ROA not before: Fri 02 Aug 2024 07:52:44 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63199
IP address blocks: 150.116.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4283 (0x10bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 2 07:52:44 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E119B5C537A688EDB7642EE8DA897E9C72253507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:68:8c:3d:b4:8b:e7:9f:37:f0:f7:4a:ae:6d:
9f:26:c5:4d:06:7e:47:6f:24:d3:d3:f9:27:1f:57:
26:8d:f5:1c:20:0e:47:ef:37:8e:e5:4b:31:86:e3:
c2:10:be:7e:d7:41:1c:a3:36:36:6f:a0:36:c9:31:
d8:17:0b:61:51:cf:9a:2c:75:f6:88:6f:28:75:0e:
5b:b3:04:e8:f8:f4:97:4b:25:5a:d6:8d:04:13:5b:
ec:eb:d1:b2:19:d9:28:e6:62:1f:ab:26:32:24:a6:
28:6c:59:dc:d5:e8:67:83:6a:0b:fa:9c:60:a3:bd:
4b:6a:95:9c:ef:ab:3d:e1:d5:43:29:74:2f:92:06:
77:ef:ef:46:74:4e:dd:e6:44:81:1c:dd:a6:ca:1f:
9f:9a:af:db:4a:41:d4:5d:c0:1f:bd:57:15:18:b8:
a4:47:a4:74:40:24:7e:c7:c7:92:0b:82:61:e4:97:
f2:69:0f:9e:f3:5e:df:bb:54:c3:94:08:09:c6:b6:
d2:c0:7c:45:5d:81:4a:53:6c:03:44:35:a8:a1:8c:
ec:a9:5e:0f:6b:a7:ec:d0:72:17:ce:d0:d5:38:6f:
a2:f1:2e:9c:37:6f:bd:97:3b:ba:93:75:2e:ef:3c:
92:83:71:a3:07:96:f6:91:ee:17:03:7a:e7:aa:39:
6d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:19:B5:C5:37:A6:88:ED:B7:64:2E:E8:DA:89:7E:9C:72:25:35:07
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4Rm1xTemiO23ZC7o2ol-nHIlNQc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.12.0/24
Signature Algorithm: sha256WithRSAEncryption
39:3d:21:b2:b7:09:00:6c:7d:64:e8:52:8d:f6:61:19:c8:92:
9d:15:de:84:d6:ae:43:8b:61:2c:00:4f:8c:6f:37:d4:88:03:
29:4b:09:b4:f3:95:8e:a3:f9:f8:03:75:d0:ca:77:99:14:5b:
43:86:f7:5d:0e:00:92:8a:d5:04:8c:52:cc:8b:dc:71:08:8e:
c9:87:81:95:25:51:41:73:c1:5c:e5:0b:37:eb:cd:02:f5:96:
85:a3:39:72:51:c1:69:78:92:80:b2:ca:fb:88:03:cb:19:ca:
e9:f3:8e:a6:38:5d:1f:c7:8b:5c:c8:34:1e:9e:68:e7:da:3f:
77:94:57:5e:cc:56:03:00:b3:ac:40:a0:05:e2:00:30:f7:b9:
6b:dc:75:45:39:cd:60:88:ce:76:64:9b:2b:09:59:cf:82:e5:
3b:1f:79:a3:80:07:b5:a5:5b:ad:32:17:5c:59:af:f7:11:19:
e7:ff:dd:e0:60:a9:a4:b8:2e:c5:c0:b6:4f:55:19:ee:69:33:
42:b1:e7:b9:1d:2f:5b:64:37:b8:f9:d2:7e:88:f0:0b:d0:9e:
74:34:95:a4:8a:bd:69:30:6b:9d:a2:55:e0:b6:5a:34:d0:03:
0d:3e:34:bf:e3:52:00:3e:e6:85:d8:e6:ec:4e:df:13:cc:ea:
9f:e2:fd:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org