Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RPvtAh_GCL9Xxve1pKTzY2f0vHQ.roa
File: RPvtAh_GCL9Xxve1pKTzY2f0vHQ.roa (raw, json)
Hash identifier: qxVmv16+sJ0mGZw+Aw7ISVXcvzjNcs0rZDVqdeMCSas=
Subject key identifier: 44:FB:ED:02:1F:C6:08:BF:57:C6:F7:B5:A4:A4:F3:63:67:F4:BC:74
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FA5
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RPvtAh_GCL9Xxve1pKTzY2f0vHQ.roa
Signing time: Fri 01 Sep 2023 08:29:22 +0000
ROA not before: Fri 01 Sep 2023 08:29:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 150.116.168.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4005 (0xfa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=44FBED021FC608BF57C6F7B5A4A4F36367F4BC74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6c:9c:2e:50:6c:c4:45:52:17:53:02:97:3e:
e2:ad:3b:3b:53:cb:64:eb:10:d7:49:b0:3f:74:e8:
fd:26:56:7d:fa:04:eb:66:16:fe:85:cc:cd:c3:bb:
0c:49:3c:67:1c:95:21:96:b0:82:e0:53:b9:56:3f:
f8:dc:f4:08:63:be:af:2f:f6:98:d1:00:df:41:e6:
44:ba:a1:76:34:c2:6e:0c:ac:32:b5:6b:f8:4d:31:
b0:27:cc:a9:27:ea:52:64:55:3a:ec:78:16:5d:be:
1b:54:18:d5:25:39:89:78:15:72:17:95:81:32:30:
b6:b8:6c:21:8a:60:af:5b:e8:05:e7:f2:63:78:46:
30:2b:be:fa:77:cf:e8:3f:2b:a3:f0:83:db:d7:59:
a9:ef:52:f7:76:6c:bf:cf:04:38:3b:95:19:9d:a0:
04:f0:ff:82:ae:ce:f5:c8:17:ca:ce:b7:e7:fd:8a:
69:0e:48:96:b6:6c:bd:49:01:9f:3c:79:16:5d:50:
4b:8f:95:93:95:e2:59:62:85:fa:fd:3c:15:87:cc:
aa:c6:2b:13:02:8d:2a:45:a6:af:9d:f2:66:03:8f:
fa:c5:93:b9:88:46:09:a7:09:e6:3c:1d:18:0f:a6:
30:72:3c:58:fe:83:04:46:c2:dd:5a:00:db:e6:10:
5c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FB:ED:02:1F:C6:08:BF:57:C6:F7:B5:A4:A4:F3:63:67:F4:BC:74
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RPvtAh_GCL9Xxve1pKTzY2f0vHQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.168.0/23
Signature Algorithm: sha256WithRSAEncryption
68:df:5c:67:4a:70:7e:bf:c3:a4:6c:be:ba:9f:74:fe:13:e7:
7f:17:87:05:47:fb:c4:5c:bd:b4:70:12:09:4a:7b:b9:7e:59:
db:0c:98:7d:90:21:96:f2:c0:eb:d0:75:a2:09:d1:15:59:1f:
91:6e:7c:26:c6:c4:94:f7:66:23:07:4e:73:a7:7a:49:5c:1d:
80:c5:e6:49:c2:04:9c:d9:4b:15:5d:22:2e:35:8b:ca:f5:62:
01:e5:20:cb:f4:87:48:ad:67:ff:b8:9f:78:3a:28:59:de:ee:
1f:7c:c2:3c:aa:32:c3:99:5d:2b:1a:eb:84:10:36:6c:f7:50:
33:b5:56:20:63:d0:e2:02:c7:30:b6:e7:ea:ea:87:ca:4f:20:
10:0d:a3:63:4d:d2:f9:aa:af:93:64:40:03:d9:a7:4d:11:d3:
dd:0c:49:32:08:f4:fd:bb:5b:9b:97:e9:f7:7f:5e:64:3b:30:
0c:23:d8:26:9b:e5:cd:b1:93:49:e2:4c:6d:31:7e:15:31:2a:
5b:ab:6e:9c:1f:18:f1:a3:97:90:44:ee:ae:a7:29:5b:96:6a:
df:3c:3e:9a:f6:e7:61:6a:11:86:75:cd:22:a5:11:87:49:ab:
3a:fd:37:35:63:35:95:f2:fe:a1:4e:35:ce:60:07:47:22:ae:
2c:62:74:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org