Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Mj13sF0_IlOAL-vQb0lvSt6wAac.roa
File: Mj13sF0_IlOAL-vQb0lvSt6wAac.roa (raw, json)
Hash identifier: CcGKO04OJ0bKQQ/RCAV6undVHCnT62jpupq3N4UjquU=
Subject key identifier: 32:3D:77:B0:5D:3F:22:53:80:2F:EB:D0:6F:49:6F:4A:DE:B0:01:A7
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FC6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Mj13sF0_IlOAL-vQb0lvSt6wAac.roa
Signing time: Fri 01 Sep 2023 08:29:31 +0000
ROA not before: Fri 01 Sep 2023 08:29:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 150.116.160.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4038 (0xfc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=323D77B05D3F2253802FEBD06F496F4ADEB001A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:6c:1b:93:b1:1b:34:ce:1f:6f:11:47:d2:
50:9e:0f:d0:50:b9:a3:bf:5c:64:eb:ad:e6:34:38:
73:55:c9:5c:62:e1:a2:2c:d3:8f:12:8f:77:4f:bf:
6a:e7:92:26:45:e0:cc:bb:03:6d:7f:5f:33:d1:cc:
40:e2:e6:c7:36:be:33:ad:37:13:56:30:44:a9:4d:
01:6c:41:55:d1:3f:bd:ac:30:22:12:f7:87:32:eb:
47:32:90:95:9d:24:0b:74:c3:7a:5d:18:92:62:85:
1c:ac:97:7a:cf:83:23:fa:6c:6c:26:de:46:3d:7e:
08:16:ec:d6:92:e1:dd:0e:51:73:d9:20:a7:c2:92:
2b:56:62:5a:42:1c:6d:7c:85:fc:18:93:ac:cc:4a:
e1:fc:08:56:c9:09:9d:fc:f6:12:01:05:cb:c1:d1:
97:49:49:79:cc:1c:f4:c9:47:cf:69:4c:77:35:7a:
b9:a6:58:af:63:56:8f:71:54:70:8e:77:3b:21:b3:
c0:08:23:a3:0c:87:34:7d:9a:63:74:77:ab:6d:ae:
87:24:06:d3:03:f6:3a:30:e2:bf:aa:d3:85:73:35:
6c:26:8b:b7:c8:8d:5f:00:cb:61:d8:3f:12:83:dd:
b7:53:d5:9d:79:a3:9d:6b:91:c4:03:f1:af:1e:06:
14:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3D:77:B0:5D:3F:22:53:80:2F:EB:D0:6F:49:6F:4A:DE:B0:01:A7
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Mj13sF0_IlOAL-vQb0lvSt6wAac.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.160.0/21
Signature Algorithm: sha256WithRSAEncryption
43:1d:b8:67:00:47:ab:cb:7b:69:d8:7f:1e:63:ec:fe:5e:26:
f3:8a:ac:63:8e:b0:2e:d1:07:44:cf:31:1b:51:fd:80:f1:75:
bc:b3:ab:2d:20:e0:7c:1c:1a:26:ae:38:68:38:d3:89:71:54:
7b:27:2e:d4:14:63:91:b7:d6:6d:93:08:2c:53:be:06:7c:b6:
b8:2b:02:6a:27:e5:a7:87:60:8c:dc:3b:bb:c6:11:c9:2c:1f:
68:79:3e:67:e9:78:04:57:74:e3:fd:47:8e:e9:05:34:84:83:
ae:0b:a9:b6:44:a4:64:89:3d:8f:56:bb:fd:43:db:34:bd:e0:
5f:99:fa:63:71:7e:6d:9a:13:9c:94:d0:13:21:d4:6a:9b:03:
27:e5:3f:00:03:e8:d2:c2:fc:5d:c8:99:42:ed:e9:ed:88:c6:
1a:26:37:bb:69:64:f1:de:2c:b7:ba:00:e0:04:85:24:19:0f:
19:d4:fa:3b:8a:be:cc:91:69:82:e2:0e:e9:d5:bf:77:1d:de:
ae:fc:9e:1c:b9:ca:87:e9:b5:2c:6a:e8:83:1e:27:c8:89:18:
11:c9:e7:ab:a7:51:6a:dc:5b:26:71:41:92:cd:72:68:76:e3:
30:2c:e7:be:fe:df:2b:64:1e:27:a0:54:b7:1d:db:7a:a7:f4:
8e:82:1f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org