Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Qh9Cm1RRJHUyesKU0450ovi-vPs.roa
File: Qh9Cm1RRJHUyesKU0450ovi-vPs.roa (raw, json)
Hash identifier: ixGC8LR4A0m/QeoWUNpnJtkz27noMnsLAZzedxtT1kU=
Subject key identifier: 42:1F:42:9B:54:51:24:75:32:7A:C2:94:D3:8E:74:A2:F8:BE:BC:FB
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F6F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Qh9Cm1RRJHUyesKU0450ovi-vPs.roa
Signing time: Fri 01 Sep 2023 08:29:08 +0000
ROA not before: Fri 01 Sep 2023 08:29:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 223.26.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3951 (0xf6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:08 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=421F429B54512475327AC294D38E74A2F8BEBCFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:40:18:15:f6:c5:64:e0:06:71:28:67:c8:bb:
d1:3c:4d:21:55:b8:4e:ee:f9:a6:de:ff:4f:e4:c9:
ea:e9:27:c1:1a:c4:6a:ed:f2:1d:7e:2c:cb:97:00:
00:03:3c:ba:6e:b6:4a:d8:63:b1:23:7e:3a:82:43:
cc:7a:26:84:7d:bb:d8:4b:64:ad:4e:29:63:10:b9:
1a:cc:fa:02:3d:79:17:17:4f:db:98:04:35:fb:10:
0e:f5:7e:e3:4f:1b:4b:0b:d2:a8:1d:43:0d:4a:01:
51:b9:29:fb:7c:dd:ee:37:ad:10:64:58:df:c9:bb:
3c:03:11:a2:95:52:98:2a:33:75:24:f7:38:ee:7e:
bd:27:58:4f:46:8c:56:f0:81:10:1c:50:35:48:e8:
28:f4:e7:be:af:05:ff:da:8b:30:79:67:c2:95:ec:
21:1d:1e:28:36:a3:28:16:50:32:b2:cd:82:dd:64:
15:60:bd:23:54:9f:08:d8:50:16:77:13:fc:86:3b:
4d:5a:1d:aa:bc:50:6d:41:54:5d:61:3c:90:af:1d:
02:a3:ed:b4:8c:8f:46:11:fb:d9:87:58:c8:bb:2f:
88:55:ab:82:1e:c1:3c:bd:bb:bd:70:29:ac:71:a9:
68:02:c4:2f:dc:32:37:45:89:9e:00:12:13:c4:9c:
c4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1F:42:9B:54:51:24:75:32:7A:C2:94:D3:8E:74:A2:F8:BE:BC:FB
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Qh9Cm1RRJHUyesKU0450ovi-vPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.96.0/21
Signature Algorithm: sha256WithRSAEncryption
69:77:a0:17:22:a0:f9:0d:e7:c7:88:0f:9f:87:71:c1:01:34:
6d:80:a0:0f:ed:4f:f6:5d:a2:1e:58:cb:00:48:30:af:ab:f3:
87:d4:c4:59:29:65:b0:ea:aa:6d:a2:ff:b2:37:9f:34:7b:45:
a2:1f:ac:2f:e5:a5:76:8e:13:62:4e:b0:7d:43:81:34:2d:d0:
b4:38:4d:e1:4c:79:1a:54:c2:f6:33:2d:3c:69:b9:dc:77:95:
63:0c:42:96:d1:bd:79:63:69:96:c0:5e:44:e9:9c:30:9e:d5:
cc:64:f9:b4:df:a8:e6:e3:b4:ca:06:dd:b4:f6:3a:0c:dd:68:
cb:98:de:b9:aa:c2:72:1f:0a:9a:83:71:6e:be:56:4b:a3:8b:
fd:29:b2:43:f9:fa:93:c0:13:51:aa:f2:dc:a0:cc:1c:54:65:
d8:49:46:ad:83:ab:44:1e:f1:5d:47:05:28:93:79:e0:c4:cd:
79:53:71:df:56:9a:d1:41:23:63:81:be:b0:1f:a1:8f:b8:2d:
a2:87:32:dc:83:91:2e:b2:a0:fe:3f:aa:73:24:82:a3:93:d5:
27:f4:f0:14:0c:95:42:ee:ca:71:21:55:b6:74:37:bf:90:49:
cd:bd:ff:38:fa:c6:b6:8f:b3:9b:e8:3b:34:20:c8:40:ac:de:
50:b2:bd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org