Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y0ITHs2lxR6YPZnudGsgfv4Gs-A.roa
File: Y0ITHs2lxR6YPZnudGsgfv4Gs-A.roa (raw, json)
Hash identifier: F0QpLHY9ne0pwd61gw6FepUWgCk0LsKFQco1thf+N2U=
Subject key identifier: 63:42:13:1E:CD:A5:C5:1E:98:3D:99:EE:74:6B:20:7E:FE:06:B3:E0
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F7E
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y0ITHs2lxR6YPZnudGsgfv4Gs-A.roa
Signing time: Fri 01 Sep 2023 08:29:12 +0000
ROA not before: Fri 01 Sep 2023 08:29:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63199
IP address blocks: 150.116.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3966 (0xf7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:12 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6342131ECDA5C51E983D99EE746B207EFE06B3E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:13:19:ce:a1:1e:c5:94:72:70:c1:6c:eb:
1f:7b:e2:bf:8c:e8:18:8f:c4:43:9a:03:6d:45:83:
ef:56:c3:4b:7b:3c:22:76:c8:d4:18:28:06:86:da:
1f:2d:45:f6:7d:c8:77:12:00:b3:bd:85:c7:02:82:
0e:4d:5d:a8:61:78:7c:ba:17:5d:15:e3:9d:73:bb:
34:5d:f8:31:59:f4:92:58:4e:b4:8e:a6:18:a4:7a:
38:fa:f1:96:17:fc:24:73:cd:cd:2d:63:00:20:05:
ad:cb:d1:80:26:eb:eb:04:3f:d6:b1:27:b8:74:c7:
4a:1b:c7:47:e7:ce:3d:73:7d:10:ab:dc:0d:2b:1c:
23:15:41:e7:61:6f:d0:fb:76:66:77:20:34:e4:5c:
d4:91:14:4e:06:3a:db:29:10:cd:c2:21:fa:29:87:
c9:92:da:9b:a3:f5:6c:82:25:4a:33:89:ee:51:d3:
6e:ee:14:f7:f7:cd:0a:4b:5d:71:48:0b:8b:a0:8f:
3b:c8:5f:7e:62:8b:55:16:58:6e:96:43:07:82:1e:
9e:b6:6c:76:99:ba:ae:c7:33:44:38:f4:a4:04:4e:
72:13:50:29:5d:28:ba:a1:3a:d8:18:17:02:14:68:
98:b2:f9:3b:26:5c:91:74:56:4f:59:92:2e:9f:bb:
54:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:42:13:1E:CD:A5:C5:1E:98:3D:99:EE:74:6B:20:7E:FE:06:B3:E0
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Y0ITHs2lxR6YPZnudGsgfv4Gs-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.4.0/24
Signature Algorithm: sha256WithRSAEncryption
48:eb:20:91:38:89:0c:7f:32:9e:8a:ef:79:ec:bc:4b:2a:47:
43:15:e7:8e:a8:00:d5:d1:d6:f7:25:0e:f7:05:57:43:c2:0f:
ad:f8:7a:24:a9:05:de:01:b8:ca:8e:87:47:a4:1b:62:30:45:
42:c7:23:74:97:87:a4:8f:ed:b9:27:c2:1e:36:98:f1:82:3e:
5c:06:71:c0:43:b9:6c:34:60:4a:bd:66:68:74:4a:6b:a5:58:
9f:7e:d7:54:3d:12:9d:1b:9f:19:04:0b:5e:5b:91:a8:ab:6e:
5c:37:45:0e:76:e3:40:f2:c7:52:c1:b9:d9:0e:02:a0:b8:41:
c3:b0:c8:96:ba:14:d0:38:02:29:5e:b0:a5:42:58:23:38:b3:
9a:4a:e9:4b:5e:07:34:f1:6d:31:51:6f:2e:67:75:37:bd:c4:
57:c7:ed:5b:2c:12:54:3e:59:60:b3:7f:cd:7e:97:aa:e3:04:
1f:22:85:a0:26:8c:28:a4:be:ce:49:b7:af:b2:1e:7b:51:21:
89:b9:46:03:e4:c7:fd:76:66:9e:df:3a:0b:82:9f:d7:1c:4e:
50:24:11:bf:07:cf:a7:9b:3b:82:0a:18:27:d1:7b:0e:74:7d:
65:50:02:12:02:1d:ab:ad:36:fe:ac:cd:ad:6f:b7:b5:00:b3:
44:03:0a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org