Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hSnZjuXfIw5t48m9GOhVkm94vao.roa
File: hSnZjuXfIw5t48m9GOhVkm94vao.roa (raw, json)
Hash identifier: H2P3+/5vCnC1N/M/7XLHhdIcFkUd7NEfbaASHuwvuA4=
Subject key identifier: 85:29:D9:8E:E5:DF:23:0E:6D:E3:C9:BD:18:E8:55:92:6F:78:BD:AA
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FA8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hSnZjuXfIw5t48m9GOhVkm94vao.roa
Signing time: Fri 01 Sep 2023 08:29:23 +0000
ROA not before: Fri 01 Sep 2023 08:29:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 203.163.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4008 (0xfa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8529D98EE5DF230E6DE3C9BD18E855926F78BDAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3d:13:02:a7:30:a9:71:72:58:90:82:a7:64:
10:e0:f3:72:32:46:b1:20:39:2b:01:a8:ee:45:ac:
2a:b7:03:ad:15:ad:35:8b:e2:71:fb:31:a0:53:8e:
86:10:0f:2d:d9:b4:7e:1f:b6:ea:9e:de:de:a5:e4:
22:6d:e4:ce:b9:95:01:c4:91:e7:a9:7b:d8:d5:24:
46:6e:06:1e:e1:e3:61:3a:3c:2d:d7:82:e8:e2:25:
6c:9c:6f:71:d9:4d:10:a6:a7:da:73:e3:81:c8:20:
6f:06:3a:e2:5a:ad:1f:a3:a7:3a:48:aa:0b:80:7c:
28:47:89:27:ae:b1:61:36:af:09:a0:36:d7:02:23:
aa:23:e8:6e:c0:15:fe:eb:a9:09:33:24:a0:f0:14:
20:ce:47:24:8a:6a:83:4a:30:65:5e:4c:d2:02:ac:
79:ff:32:f0:73:08:88:20:33:b1:eb:5e:04:71:54:
b4:b4:cc:64:45:97:f9:29:48:28:31:35:12:d3:15:
88:15:e3:c0:fa:2d:6c:d4:b0:61:eb:8f:da:6d:c6:
dc:87:8a:5f:a5:f5:19:96:58:74:cd:e1:f8:e8:ce:
9d:00:c3:76:91:7c:ba:44:c9:da:1e:12:ed:52:9c:
fe:10:90:6d:44:d0:09:cc:9f:df:f5:ac:ce:7c:b7:
c9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:29:D9:8E:E5:DF:23:0E:6D:E3:C9:BD:18:E8:55:92:6F:78:BD:AA
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hSnZjuXfIw5t48m9GOhVkm94vao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.163.193.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ad:32:ec:3f:77:36:56:48:2f:cf:3e:fc:0c:75:a0:a2:f7:
93:15:8d:0d:b2:03:39:3b:fe:cd:93:51:1e:a0:df:c6:25:31:
71:50:8f:f9:c2:b0:6f:d3:87:3a:e1:45:70:aa:6d:20:74:b4:
48:3e:aa:63:6d:ca:f3:58:d3:de:1d:82:45:a2:c8:03:85:f2:
08:22:09:f1:fd:fd:0d:39:d6:e5:5d:1f:ea:3b:91:78:f7:1a:
52:40:b9:af:70:ed:d4:df:04:6c:cb:47:15:ec:72:00:76:38:
a9:39:0a:fc:0e:c0:d4:3a:2f:27:de:c4:61:6a:64:96:6a:86:
43:a4:30:0c:74:5d:1e:4a:87:63:a5:b6:bb:af:a7:bb:63:45:
1a:61:1c:59:4e:e4:c9:d1:c3:cd:77:cd:7e:9c:86:0f:7e:89:
db:dd:84:0f:da:9f:0b:43:e6:35:de:fc:08:70:b2:a7:70:30:
9b:00:59:87:65:23:94:55:1e:95:19:89:69:70:28:10:b5:c6:
69:16:c4:e5:c8:df:fe:63:38:d0:d7:e1:b0:8b:a6:11:7a:6b:
38:d3:78:4f:02:1d:f7:a7:0a:1e:cf:2a:7d:04:c3:5f:a1:ef:
89:02:2a:15:94:73:ec:19:81:0d:11:d9:9f:7f:a5:0b:6d:a2:
f1:53:c6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org