Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GMRzXM7UnP6oCX2YH_FxwdEwwbs.roa
File: GMRzXM7UnP6oCX2YH_FxwdEwwbs.roa (raw, json)
Hash identifier: 28QfD+Fi4iGJt+HFAZzp73lihf2a1vfWwlHnbjaSk4A=
Subject key identifier: 18:C4:73:5C:CE:D4:9C:FE:A8:09:7D:98:1F:F1:71:C1:D1:30:C1:BB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 10C0
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GMRzXM7UnP6oCX2YH_FxwdEwwbs.roa
Signing time: Wed 07 Aug 2024 07:52:55 +0000
ROA not before: Wed 07 Aug 2024 07:52:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 136744
IP address blocks: 150.116.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4288 (0x10c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 7 07:52:55 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=18C4735CCED49CFEA8097D981FF171C1D130C1BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c5:7a:d1:1c:a6:03:fe:62:2b:6e:3c:c0:07:
53:bd:36:03:c8:da:2c:a9:9a:07:53:68:7f:56:8a:
c2:f0:3e:ff:ea:76:e5:78:0a:4f:0b:76:83:57:dd:
54:a8:5a:fb:4a:0c:c7:25:f0:60:95:10:f8:54:70:
4f:9a:6f:45:e9:06:18:4f:25:46:8d:ae:4b:ee:3c:
46:20:b2:d3:a7:ef:4b:dc:76:f5:ae:a7:4c:e5:bc:
83:e5:bb:f7:28:35:4a:8d:a5:2b:f0:e4:37:22:15:
23:2f:b0:40:30:0a:d4:1b:fd:02:1d:d0:80:98:d8:
19:d2:19:85:2b:63:3f:b1:14:60:cf:77:97:17:2a:
3a:94:5d:51:c3:45:38:36:45:c9:48:8a:b7:01:9c:
60:bf:b6:df:06:30:07:d6:a1:4f:41:0a:60:45:c4:
db:73:95:39:cd:ff:ee:e0:0b:20:d5:1b:92:c1:b0:
d5:58:d4:1c:1e:2d:73:fb:b9:00:98:b1:6d:05:4c:
c9:2e:62:ff:b3:c4:14:50:2d:9e:51:0e:2c:99:54:
80:dc:d7:d6:66:aa:0b:f3:e3:c8:1d:b7:f2:d0:98:
14:de:d8:65:ba:13:ad:cf:bb:fa:b4:20:f6:ba:1c:
28:a9:4b:cf:b4:35:96:03:40:0d:6b:7f:6d:5e:60:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C4:73:5C:CE:D4:9C:FE:A8:09:7D:98:1F:F1:71:C1:D1:30:C1:BB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GMRzXM7UnP6oCX2YH_FxwdEwwbs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.13.0/24
Signature Algorithm: sha256WithRSAEncryption
36:4a:cc:51:1e:4b:bd:68:6a:e6:85:94:45:19:62:32:71:2c:
e9:d1:f9:37:19:5f:a4:65:54:3d:fc:c3:1d:2a:73:8e:62:9b:
48:d4:af:62:59:b6:9a:23:66:02:d7:4f:4a:eb:b7:dd:d3:f5:
bb:0d:c3:14:75:92:48:28:05:c9:13:39:79:c1:57:3f:57:ee:
f3:af:3d:41:fa:9c:85:52:86:1f:78:c5:7a:94:43:36:cd:b0:
27:10:18:a2:0f:be:ed:bf:79:b4:0c:a1:45:1a:41:7d:6c:a8:
f2:b8:c1:1b:1d:c0:18:ff:75:ce:37:63:c2:90:6c:ea:e1:4f:
c2:6b:61:14:58:06:6a:85:66:13:71:04:5f:1d:7b:4c:8b:48:
8c:d2:70:59:fe:90:08:59:41:22:51:c6:85:1d:0d:6f:15:44:
dd:59:d0:f9:1c:c1:c7:cd:58:50:59:38:59:84:39:de:b6:85:
6a:22:a4:95:0e:f8:b2:7c:ab:60:50:a6:e8:e5:41:da:ce:15:
c5:57:03:40:b8:af:d5:e8:45:8a:0f:3e:f8:b8:b9:24:e0:9b:
52:28:36:71:9a:37:d8:97:32:c5:c3:85:f3:0a:e1:f7:b8:34:
b6:06:0b:c0:ad:c7:7a:55:78:0b:f7:48:ca:38:71:ec:12:40:
b4:d3:b9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org