Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aWwQFbkadF8y9JLXIgE5JEkY-jY.roa
File: aWwQFbkadF8y9JLXIgE5JEkY-jY.roa (raw, json)
Hash identifier: oE+/0+5L/mL4Gj2q5M+AEc5XYZ0SFFP+H8coNLHM9Y0=
Subject key identifier: 69:6C:10:15:B9:1A:74:5F:32:F4:92:D7:22:01:39:24:49:18:FA:36
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F9F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aWwQFbkadF8y9JLXIgE5JEkY-jY.roa
Signing time: Fri 01 Sep 2023 08:29:21 +0000
ROA not before: Fri 01 Sep 2023 08:29:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 138915
IP address blocks: 150.116.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3999 (0xf9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=696C1015B91A745F32F492D7220139244918FA36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:ef:8b:22:df:a0:98:6d:fe:fb:3e:dc:15:
bb:c3:39:dd:0b:8d:5f:e0:fa:6e:22:63:3a:0f:6e:
30:0d:d1:fd:3d:0d:59:ed:d7:99:94:1e:6d:c2:26:
cc:64:82:ac:26:8c:69:74:8d:82:67:60:36:52:75:
d2:8a:d9:69:71:20:f2:5d:de:4b:60:d5:4e:f4:bd:
7a:dd:8d:a9:da:2b:95:ec:26:40:e2:72:75:c2:68:
0e:09:8d:46:36:7f:66:28:a9:c8:6c:e7:6b:f4:11:
0c:5e:79:0e:77:e4:d0:ab:c4:cb:9a:de:ab:3a:23:
3a:c4:12:21:ff:d8:9b:e2:fb:0e:b4:dc:70:3a:67:
77:8d:4e:35:50:77:8c:aa:01:8c:c4:6c:91:07:a4:
d0:f4:d0:b3:5b:9f:cc:47:7c:74:0f:5c:39:d5:71:
c2:f0:49:52:8e:00:af:b9:3c:3f:ab:1e:ce:36:fb:
51:7d:ad:11:86:f1:f4:44:c5:60:c6:8b:68:49:13:
f5:87:53:da:8e:d4:83:f0:35:6b:de:d1:70:66:55:
3c:a6:15:b5:ee:00:0a:a8:f8:5f:1a:de:00:91:8a:
18:13:89:9e:1d:81:77:15:ed:c1:d9:e5:47:3b:8f:
9e:49:d0:e8:c5:bf:1f:e0:95:24:d8:64:8d:66:c2:
d6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6C:10:15:B9:1A:74:5F:32:F4:92:D7:22:01:39:24:49:18:FA:36
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/aWwQFbkadF8y9JLXIgE5JEkY-jY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.117.0/24
Signature Algorithm: sha256WithRSAEncryption
53:79:db:cd:bd:a5:35:9a:37:cd:a3:00:44:75:4d:ac:aa:9b:
94:e4:c7:81:c5:a5:c4:19:0c:ae:f7:8b:47:03:77:36:d5:09:
dd:76:cb:f1:53:53:ee:58:15:ed:5e:06:eb:ab:4c:ce:42:e5:
f7:5a:3d:63:6d:77:9d:91:ba:a5:0f:fb:46:fb:5c:0d:a8:83:
5b:15:6d:be:fa:c0:c5:9a:64:28:e6:6a:00:e5:0c:5d:d9:f7:
0e:bf:a6:94:ca:c2:fa:be:49:1a:27:32:37:ba:b0:f4:06:a2:
00:db:36:db:6b:3a:1b:7c:2e:db:3a:aa:30:67:a9:43:6f:5c:
fc:35:59:3a:b9:70:10:78:a8:fa:38:f7:31:d5:29:c1:e8:62:
d7:b4:ea:d8:68:70:b9:92:48:ac:6f:68:a9:22:0f:a5:8f:26:
bf:b1:8f:92:92:b7:8e:e7:46:cf:fc:da:44:27:0f:14:eb:8d:
a3:5d:25:15:05:b0:98:42:a5:94:93:61:d7:be:e2:73:5e:f0:
c4:67:6d:98:6a:b6:3d:01:b2:08:aa:ea:32:b5:36:89:9c:ab:
7f:20:75:56:98:12:03:35:18:37:09:f4:99:38:ee:e1:a4:d8:
97:b1:be:28:a2:17:4e:d4:1c:85:ab:24:84:06:26:ae:73:b5:
6e:ff:fc:83
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICD58wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw
ODI5MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5NkMxMDE1QjkxQTc0
NUYzMkY0OTJENzIyMDEzOTI0NDkxOEZBMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwT++LIt+gmG3++z7cFbvDOd0LjV/g+m4iYzoPbjAN0f09DVnt
15mUHm3CJsxkgqwmjGl0jYJnYDZSddKK2WlxIPJd3ktg1U70vXrdjanaK5XsJkDi
cnXCaA4JjUY2f2Yoqchs52v0EQxeeQ535NCrxMua3qs6IzrEEiH/2Jvi+w603HA6
Z3eNTjVQd4yqAYzEbJEHpND00LNbn8xHfHQPXDnVccLwSVKOAK+5PD+rHs42+1F9
rRGG8fRExWDGi2hJE/WHU9qO1IPwNWve0XBmVTymFbXuAAqo+F8a3gCRihgTiZ4d
gXcV7cHZ5Uc7j55J0OjFvx/glSTYZI1mwtZxAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUaWwQFbkadF8y9JLXIgE5JEkY+jYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9hV3dRRmJrYWRGOHk5
SkxYSWdFNUpFa1ktalkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAlnR1MA0GCSqGSIb3DQEBCwUAA4IBAQBTedvNvaU1mjfNowBEdU2sqpuU5MeB
xaXEGQyu94tHA3c21QnddsvxU1PuWBXtXgbrq0zOQuX3Wj1jbXedkbqlD/tG+1wN
qINbFW2++sDFmmQo5moA5Qxd2fcOv6aUysL6vkkaJzI3urD0BqIA2zbbazobfC7b
OqowZ6lDb1z8NVk6uXAQeKj6OPcx1SnB6GLXtOrYaHC5kkisb2ipIg+ljya/sY+S
kreO50bP/NpEJw8U642jXSUVBbCYQqWUk2HXvuJzXvDEZ22YarY9AbIIquoytTaJ
nKt/IHVWmBIDNRg3CfSZOO7hpNiXsb4oohdO1ByFqySEBiauc7Vu//yD
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org