Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9mcUwpdUAsfhZyLPQm807VICUo.roa
File: d9mcUwpdUAsfhZyLPQm807VICUo.roa (raw, json)
Hash identifier: GYK2NoZ8JUYV66AhIztNrc3P6OEnfylrS0j1Q9MpVsk=
Subject key identifier: 77:D9:9C:53:0A:5D:50:0B:1F:85:9C:8B:3D:09:BC:D3:B5:48:09:4A
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F86
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9mcUwpdUAsfhZyLPQm807VICUo.roa
Signing time: Fri 01 Sep 2023 08:29:14 +0000
ROA not before: Fri 01 Sep 2023 08:29:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 150.116.176.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3974 (0xf86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=77D99C530A5D500B1F859C8B3D09BCD3B548094A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f7:91:64:b3:54:2e:be:ac:72:a4:1f:f8:ba:
ff:00:90:0f:5f:15:3d:d3:17:fd:e6:48:27:fd:20:
b3:a1:9b:05:32:09:d4:17:2f:36:2c:fd:37:3f:73:
fb:f9:54:02:51:a8:2e:be:cf:26:0b:dc:9b:80:65:
40:d9:4d:31:63:5f:b9:91:82:9e:dc:e3:72:6a:9b:
1a:26:9d:03:93:d6:fe:fb:3f:04:ea:3a:ae:58:3a:
00:5e:3a:7b:39:52:d9:05:d1:88:89:42:44:b2:e6:
a8:e2:28:53:eb:79:03:60:45:22:0d:45:52:7a:a3:
9b:55:df:49:a5:ff:81:28:70:d0:b9:c6:17:22:7c:
47:af:54:2b:ea:b4:b2:3f:6c:2c:8a:8c:53:d1:93:
08:32:44:68:d0:53:00:b1:31:93:e8:75:76:6d:74:
4c:fa:0b:c8:d0:92:5a:1e:f8:d4:5e:be:46:c3:1f:
cb:1d:00:71:57:aa:3d:54:32:9f:59:0b:15:d3:b3:
9f:82:7b:c1:7b:67:4a:19:0d:23:84:86:0d:fb:22:
30:5e:ca:77:55:fb:6c:08:f5:22:2e:9d:bf:2c:d1:
7f:0f:28:78:cd:b0:ae:f4:f3:11:06:bc:3d:a0:b0:
0a:55:79:47:5a:34:4c:82:40:91:c6:a8:42:63:4c:
f9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D9:9C:53:0A:5D:50:0B:1F:85:9C:8B:3D:09:BC:D3:B5:48:09:4A
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9mcUwpdUAsfhZyLPQm807VICUo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.176.0/20
Signature Algorithm: sha256WithRSAEncryption
01:ca:36:31:48:1d:61:49:e9:d0:38:2f:b7:5a:e9:d6:e7:af:
8c:11:c3:36:93:18:21:74:8a:f2:14:f2:7e:0c:26:37:1d:6e:
e4:cf:cf:b3:60:47:e8:50:41:00:d7:16:e4:d7:d4:9e:e1:07:
ab:ba:c2:e3:df:f8:1b:fb:ed:45:14:0f:08:bd:77:8b:cb:07:
cb:5d:c5:49:3c:76:81:31:3b:06:e6:dc:7a:3f:17:de:4e:61:
fb:fa:61:9c:97:7c:1a:5c:1e:c6:c1:29:83:70:31:14:45:94:
e5:28:96:1e:e4:70:8e:35:99:90:9b:23:0a:2a:14:c8:dd:c4:
6e:1c:26:9b:66:81:d0:df:eb:ea:b1:eb:3d:57:ef:0c:82:f6:
1a:f8:6a:10:be:59:95:1d:b3:7f:ff:4a:26:12:3c:13:99:d5:
8b:37:d9:54:59:6c:b1:e6:e0:16:39:f2:6b:a4:11:70:8b:e7:
99:e8:c1:d2:e3:93:a4:36:0a:08:dc:3c:2c:2b:30:36:ab:2e:
a8:ff:4e:2c:ee:76:b7:45:9c:6d:39:e7:d9:f7:69:f6:4f:14:
78:f4:30:70:a7:cb:ef:38:6f:1f:60:21:bd:ec:26:a2:e2:23:
e3:47:03:39:39:d3:49:ca:83:43:02:b3:85:93:ef:ea:db:55:
92:e2:75:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org