Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JHw5FAW_6hXVXFyO_BzMC-F5I0M.roa
File: JHw5FAW_6hXVXFyO_BzMC-F5I0M.roa (raw, json)
Hash identifier: pViO3OQxGT8arynQa5fH95xCvCdVTrpsWwuup1qL/yw=
Subject key identifier: 24:7C:39:14:05:BF:EA:15:D5:5C:5C:8E:FC:1C:CC:0B:E1:79:23:43
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F6A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JHw5FAW_6hXVXFyO_BzMC-F5I0M.roa
Signing time: Fri 01 Sep 2023 08:29:07 +0000
ROA not before: Fri 01 Sep 2023 08:29:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131636
IP address blocks: 150.116.6.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3946 (0xf6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=247C391405BFEA15D55C5C8EFC1CCC0BE1792343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:59:b4:63:54:83:b9:d3:bf:19:2e:bc:33:65:
35:a1:d3:40:ae:1c:e4:17:df:a5:cd:ac:d3:dc:79:
c5:6e:bb:33:55:95:20:d8:74:d4:9e:00:2f:da:47:
5d:67:82:47:2b:00:8a:9d:69:18:cc:30:24:03:21:
13:58:1e:c9:23:03:f5:74:5e:08:57:da:46:2c:2e:
14:e8:93:3d:39:07:ee:fe:c7:42:a6:18:74:03:d5:
26:2f:3a:49:65:45:61:da:4c:65:2e:12:7c:0a:22:
8d:18:e1:d8:8c:a6:49:f8:14:9e:a7:85:68:21:27:
a0:4b:bf:56:d3:6a:e1:0d:16:7b:8f:7d:58:2d:e1:
65:24:9a:57:e8:c4:19:74:13:93:f5:a8:b2:b9:5b:
e3:a0:cd:cb:b1:21:0f:eb:16:e2:ab:b7:c9:a9:bc:
56:87:af:bb:5b:3e:ff:8e:ff:6d:7a:c1:f7:95:9d:
4a:42:a1:4a:10:7a:67:e6:c8:d1:8c:2a:4b:f3:a5:
26:1e:56:bf:7d:2b:25:4e:89:fb:b6:88:40:d9:1e:
f6:80:77:2c:44:5b:7b:91:a8:93:cc:49:0b:94:b8:
4e:e5:2e:96:59:cd:2a:a0:b7:08:9f:40:c9:2f:8f:
6d:3f:f9:6d:27:f3:a6:7d:9a:2c:fd:5f:4a:8a:10:
45:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7C:39:14:05:BF:EA:15:D5:5C:5C:8E:FC:1C:CC:0B:E1:79:23:43
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JHw5FAW_6hXVXFyO_BzMC-F5I0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.6.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:db:18:bb:14:21:b3:82:88:44:ae:99:18:72:ab:a2:94:83:
b9:8d:02:60:8e:09:35:9d:ca:4b:03:de:9f:b1:bc:7e:68:71:
97:83:12:cf:9f:81:76:9e:4b:e9:25:16:fb:72:59:c7:18:1e:
9b:b2:93:33:89:3b:5b:c6:4b:ec:2e:24:85:56:51:b2:d5:29:
9b:d4:cc:6c:d5:14:1a:cc:56:d5:79:5a:45:8e:14:2a:d4:c8:
12:57:e0:09:87:76:f6:c7:84:df:ff:a0:e0:84:67:14:0f:3d:
5b:f6:e6:73:f5:04:61:72:d9:9a:19:51:0c:e7:24:a8:54:82:
9e:c7:48:3a:c5:8a:32:81:42:7a:2c:7d:94:62:c6:ec:31:7d:
cd:27:8f:9c:cf:62:b7:70:8c:a7:08:af:b3:75:9b:d7:85:81:
aa:fb:9d:cd:05:53:c1:f8:01:95:30:43:4d:03:1f:23:b9:6f:
b1:c2:8d:e9:95:69:0f:dc:0a:76:f1:da:de:1f:aa:27:7f:ac:
7b:7d:8d:06:64:26:24:02:5d:7a:8f:b5:ee:9d:67:0a:03:f4:
b3:52:12:0f:4b:be:65:da:b0:0f:8c:b8:91:06:9d:54:38:66:
fb:9d:ab:16:50:38:0f:0e:e1:fc:a3:06:06:ba:17:63:af:01:
bd:c1:51:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org