Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pA9SvDK3Wz5FnYOTGJgO3Vk965A.roa
File: pA9SvDK3Wz5FnYOTGJgO3Vk965A.roa (raw, json)
Hash identifier: A1EfL3cyFcLqWg61BsCJ+R2WIRmf39HwDkNlIjruH0U=
Subject key identifier: A4:0F:52:BC:32:B7:5B:3E:45:9D:83:93:18:98:0E:DD:59:3D:EB:90
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F7B
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pA9SvDK3Wz5FnYOTGJgO3Vk965A.roa
Signing time: Fri 01 Sep 2023 08:29:11 +0000
ROA not before: Fri 01 Sep 2023 08:29:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 150.117.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3963 (0xf7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A40F52BC32B75B3E459D839318980EDD593DEB90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:43:48:30:65:9f:a5:4b:91:a2:d3:40:35:cd:
c4:1d:2a:bd:e5:af:52:c4:35:73:e4:07:5f:89:d4:
41:ac:85:df:fd:91:f7:9a:48:78:3d:d3:2b:83:f2:
24:e6:9b:78:0c:7d:18:72:85:67:1d:11:af:6b:a7:
92:4e:43:33:d0:2a:5a:cc:a3:b3:0a:9b:71:62:4c:
1e:e4:98:b4:54:6c:6e:1a:21:ba:54:0b:f8:bc:13:
83:a7:6b:07:77:1b:87:f0:ed:a7:42:38:67:46:2c:
8f:55:58:55:fa:72:1f:ad:31:86:c3:a8:d6:39:35:
e9:67:b8:d2:af:a3:11:4f:5d:83:39:00:ed:e5:ab:
7a:bc:dc:e1:26:cc:96:c9:17:2a:17:24:e4:89:a4:
6f:4c:cb:82:cf:02:49:a8:4f:38:0d:17:49:24:9d:
18:fe:ac:4b:29:d1:39:ea:cb:57:63:b0:af:e2:1c:
de:f0:61:e6:27:11:62:a0:bf:81:ba:ff:3c:84:96:
96:cb:86:5f:b5:03:fb:9a:62:8f:75:22:38:07:94:
15:f2:6a:86:03:86:af:81:84:b3:5d:cc:3a:f8:4d:
12:3b:e2:65:3e:4a:13:7c:09:28:aa:4c:2f:4e:70:
7a:8a:62:03:c5:eb:9d:18:e7:c1:25:bd:11:de:94:
10:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0F:52:BC:32:B7:5B:3E:45:9D:83:93:18:98:0E:DD:59:3D:EB:90
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pA9SvDK3Wz5FnYOTGJgO3Vk965A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.112.0/21
Signature Algorithm: sha256WithRSAEncryption
af:ad:c5:f0:f4:63:20:82:e0:3e:ac:4a:5b:18:e1:71:e0:de:
8f:57:ce:6a:42:50:5b:4c:35:7f:06:8f:73:61:31:76:f0:e9:
82:b8:a0:de:98:66:ab:b7:db:60:48:e0:f0:b3:f7:77:c1:3e:
06:00:0c:92:e1:3e:ca:2f:4a:7e:70:cd:d1:b7:99:bd:fa:e0:
a1:29:17:24:e7:23:a9:13:bf:4c:a2:91:79:36:b5:80:31:68:
ec:70:a2:76:de:7b:6c:03:86:44:51:f7:89:83:1c:7e:1b:81:
c6:e0:8a:28:8c:16:a8:7e:ff:f9:c5:8e:61:65:45:49:84:62:
ba:49:ab:c0:18:1b:0e:f6:98:f4:f7:ad:d7:b7:75:3f:34:bd:
89:02:e3:1e:86:bc:4c:39:f5:70:7e:d8:1e:bb:60:f7:33:c9:
fc:c1:96:c3:ee:93:40:f5:53:94:5d:17:c1:b4:40:2d:b9:06:
19:44:f3:a4:82:c6:53:cc:60:2e:3e:17:77:0b:7f:06:1a:b1:
80:f7:f6:b9:17:b5:05:ca:89:4b:35:44:49:99:a8:94:7d:36:
8b:52:9a:d7:c1:67:23:ae:10:03:bb:ad:a1:17:58:9a:67:d7:
0f:92:d9:39:d6:65:c2:3d:8b:93:7a:86:83:a1:02:26:05:33:
e5:4c:9b:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org