Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lIsiLRu2Zv7meHeysY4-IdlUbu8.roa
File: lIsiLRu2Zv7meHeysY4-IdlUbu8.roa (raw, json)
Hash identifier: iN3ap3yqtgxbHne9Q445Eqi9VPS6QuOSGLBwfE626MY=
Subject key identifier: 94:8B:22:2D:1B:B6:66:FE:E6:78:77:B2:B1:8E:3E:21:D9:54:6E:EF
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FC8
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lIsiLRu2Zv7meHeysY4-IdlUbu8.roa
Signing time: Fri 01 Sep 2023 08:29:32 +0000
ROA not before: Fri 01 Sep 2023 08:29:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 150.117.104.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4040 (0xfc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=948B222D1BB666FEE67877B2B18E3E21D9546EEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e3:76:2b:ac:f8:5c:f3:a6:7c:5f:c7:ff:24:
d2:1b:07:eb:99:c0:db:df:b1:6e:a7:12:f4:18:5a:
73:16:38:9c:3b:8f:c1:4a:44:7f:cc:b1:8f:0d:a6:
da:90:2f:62:24:02:04:09:8c:95:ba:ad:04:36:2b:
ef:a8:19:d9:b5:29:e3:e6:99:4a:63:41:12:58:d2:
1c:71:9a:37:3d:84:0c:41:f5:2b:e3:9b:41:d7:ac:
a3:45:95:b1:b4:90:3b:42:70:4d:6e:17:1b:38:3a:
4d:07:59:10:a9:08:89:c5:9c:17:07:ba:67:29:0c:
23:f5:e5:a1:80:00:b6:b4:d9:69:66:95:a0:97:58:
63:b6:86:7c:18:e0:b4:e6:e6:a3:b6:67:5c:68:a7:
62:04:33:ec:3a:9f:5b:fd:90:d4:55:ba:1c:b8:b5:
9f:03:3b:76:4b:85:55:ff:a9:e2:52:8c:3b:f9:f1:
9e:82:d8:4f:4c:02:78:c1:8d:85:3f:c8:b1:06:01:
df:8d:f3:64:00:16:ee:f5:1b:d3:8c:75:c5:99:b1:
3c:3e:41:e8:3e:5b:fb:15:e8:44:90:8c:ec:ce:04:
9c:ca:c5:87:47:c9:e9:b1:2a:79:24:81:39:cc:d0:
7c:c3:27:d1:b7:40:4a:e5:6f:8a:d4:60:27:fd:6e:
29:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8B:22:2D:1B:B6:66:FE:E6:78:77:B2:B1:8E:3E:21:D9:54:6E:EF
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/lIsiLRu2Zv7meHeysY4-IdlUbu8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.104.0/21
Signature Algorithm: sha256WithRSAEncryption
b1:f6:15:9d:5e:93:16:ee:b7:11:c6:78:22:11:84:0d:92:9c:
32:35:ba:37:32:78:1d:6d:02:f8:c9:bf:d2:fe:49:cd:80:3c:
5c:f9:5e:a9:a0:fa:2c:e1:ae:8f:39:d4:aa:82:11:af:15:85:
c3:b4:b4:9e:63:c8:33:55:44:17:44:ec:e8:33:17:38:54:f4:
9d:1a:98:86:64:82:04:73:7d:b6:b8:af:b7:5f:0a:e4:40:53:
fd:e8:62:79:a0:3a:3b:86:0a:05:43:36:ce:7f:cb:3a:87:e8:
de:1f:20:12:7d:d8:8c:23:ac:59:62:46:c5:56:de:17:e6:82:
1b:ca:b8:8c:0d:e1:07:e0:8e:9a:20:a5:d7:4c:c7:42:b3:27:
24:40:bd:0a:05:5e:bc:fa:26:3b:68:50:ae:ee:21:3c:3e:59:
06:bf:2c:c1:a9:75:72:a1:1f:00:13:ed:9d:01:e4:14:be:3a:
e7:a2:58:44:ef:e6:c4:0f:40:97:91:2d:74:82:e9:48:15:2a:
82:8b:7e:ed:bd:59:41:be:20:51:6f:86:9c:38:61:2c:cf:f9:
85:f8:88:f0:cc:45:a6:05:de:4a:a7:49:91:41:33:0e:d1:6a:
ea:0a:f1:bf:2a:31:87:26:d0:c3:38:3b:b4:28:56:55:c8:ec:
55:70:75:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org