Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CbmZNXhqC0Js-4djNj-lbA71EJA.roa
File: CbmZNXhqC0Js-4djNj-lbA71EJA.roa (raw, json)
Hash identifier: 7K+OPPE/qQBnYxT0Zgy/yazzKTU6zKc0GMti7yxbRn8=
Subject key identifier: 09:B9:99:35:78:6A:0B:42:6C:FB:87:63:36:3F:A5:6C:0E:F5:10:90
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FD8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CbmZNXhqC0Js-4djNj-lbA71EJA.roa
Signing time: Wed 13 Sep 2023 07:52:47 +0000
ROA not before: Wed 13 Sep 2023 07:52:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 57976
IP address blocks: 150.116.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4056 (0xfd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 13 07:52:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=09B99935786A0B426CFB8763363FA56C0EF51090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5a:a9:63:cc:08:2e:a2:db:7f:3e:93:3f:24:
13:d3:0f:45:0c:79:a4:f5:88:85:1f:11:1a:03:e4:
f4:db:e0:3d:c0:a3:4c:02:b9:07:a9:5e:ab:6a:09:
0e:b2:ea:6e:b7:9c:5f:6d:3f:b1:08:4f:5b:c9:4e:
21:58:94:b2:15:00:07:ea:bf:c4:03:12:3f:da:34:
e6:36:43:d1:a2:95:2d:0d:b7:a3:6d:a1:e2:6a:57:
05:cb:de:0c:6c:80:d7:10:d8:55:68:98:dc:27:3e:
20:67:e5:b4:e2:c1:ca:d2:ac:7e:08:0a:56:7b:a7:
09:ee:71:db:31:a9:4d:3a:86:35:8e:88:a0:2a:4e:
23:84:b3:fb:ec:d0:89:72:3a:b9:5a:0f:ed:b6:39:
3a:11:14:13:4d:26:a6:18:29:94:38:5f:b4:86:8b:
fa:5a:ac:7e:f1:43:34:9c:e8:6f:6b:ac:0c:32:32:
cc:45:43:5f:66:0e:9e:37:98:57:18:1a:dc:2d:2b:
4e:1b:00:5e:3d:43:c8:3a:f8:1f:e6:c6:4f:22:de:
64:43:4d:9c:24:c9:6a:49:69:d0:8d:87:fa:7e:6b:
0f:e5:94:b0:69:3c:99:c8:d4:a8:27:12:5b:3c:08:
3b:28:15:d1:98:f9:a0:9b:e9:29:4b:7d:ae:8a:90:
20:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B9:99:35:78:6A:0B:42:6C:FB:87:63:36:3F:A5:6C:0E:F5:10:90
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CbmZNXhqC0Js-4djNj-lbA71EJA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.9.0/24
Signature Algorithm: sha256WithRSAEncryption
63:08:79:11:d6:0c:19:19:a3:68:43:41:4a:4c:b4:ee:a5:5c:
8d:53:49:ba:7d:8d:ec:c4:f5:2a:71:3a:ae:f1:06:ce:10:cc:
09:d6:b6:f8:b5:56:d2:1a:8a:92:5c:d8:70:85:99:95:8a:00:
f5:0e:3d:de:bd:ad:47:ff:e7:08:f1:aa:b8:ed:6f:12:0c:04:
8c:fa:3d:81:43:42:ed:52:7d:54:1c:66:ff:59:ef:5b:70:16:
54:02:44:4b:46:ec:eb:6b:19:d8:41:cd:63:a1:43:41:17:f0:
26:6a:c0:dc:4a:65:1f:3f:e6:42:4b:44:62:6d:4b:97:ee:37:
20:31:e9:0c:9f:34:de:cb:21:c7:94:30:d1:15:f9:b3:12:2e:
ab:a5:ad:57:02:82:43:ea:e9:2e:6d:9b:ce:7c:c7:ed:35:35:
17:34:ad:ff:62:80:23:15:1f:a9:d9:9e:02:4f:a5:a2:50:56:
ed:18:b0:61:79:03:93:37:3e:ad:8d:16:fe:f5:15:94:9f:1e:
f1:e7:46:69:7a:22:0a:8f:2e:44:2f:be:7d:78:dd:da:87:3c:
64:b9:4c:d0:7b:02:77:4e:42:16:51:35:97:1d:a6:d7:0c:12:
dc:10:96:59:37:e0:f5:ad:35:41:f0:3d:f4:95:f5:03:a2:f9:
cb:1b:2c:0a
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICD9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MTMw
NzUyNDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA5Qjk5OTM1Nzg2QTBC
NDI2Q0ZCODc2MzM2M0ZBNTZDMEVGNTEwOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSWqljzAguott/PpM/JBPTD0UMeaT1iIUfERoD5PTb4D3Ao0wC
uQepXqtqCQ6y6m63nF9tP7EIT1vJTiFYlLIVAAfqv8QDEj/aNOY2Q9GilS0Nt6Nt
oeJqVwXL3gxsgNcQ2FVomNwnPiBn5bTiwcrSrH4IClZ7pwnucdsxqU06hjWOiKAq
TiOEs/vs0IlyOrlaD+22OToRFBNNJqYYKZQ4X7SGi/parH7xQzSc6G9rrAwyMsxF
Q19mDp43mFcYGtwtK04bAF49Q8g6+B/mxk8i3mRDTZwkyWpJadCNh/p+aw/llLBp
PJnI1KgnEls8CDsoFdGY+aCb6SlLfa6KkCCFAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUCbmZNXhqC0Js+4djNj+lbA71EJAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9DYm1aTlhocUMwSnMt
NGRqTmotbGJBNzFFSkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnQJMA0GCSqGSIb3DQEBCwUAA4IBAQBjCHkR1gwZGaNoQ0FKTLTupVyNU0m6
fY3sxPUqcTqu8QbOEMwJ1rb4tVbSGoqSXNhwhZmVigD1Dj3eva1H/+cI8aq47W8S
DASM+j2BQ0LtUn1UHGb/We9bcBZUAkRLRuzraxnYQc1joUNBF/AmasDcSmUfP+ZC
S0RibUuX7jcgMekMnzTeyyHHlDDRFfmzEi6rpa1XAoJD6ukubZvOfMftNTUXNK3/
YoAjFR+p2Z4CT6WiUFbtGLBheQOTNz6tjRb+9RWUnx7x50ZpeiIKjy5EL759eN3a
hzxkuUzQewJ3TkIWUTWXHabXDBLcEJZZN+D1rTVB8D30lfUDovnLGywK
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org