Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa
File: qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa (raw, json)
Hash identifier: iiMqQY4GGJUgLkqHlsUDZQLfyO3mfnTn3EPIT0gprYc=
Subject key identifier: A9:11:80:1D:8D:0E:0F:8B:56:B8:54:89:7E:EF:94:65:37:05:19:5D
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F85
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa
Signing time: Fri 01 Sep 2023 08:29:14 +0000
ROA not before: Fri 01 Sep 2023 08:29:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 137263
IP address blocks: 150.116.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3973 (0xf85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A911801D8D0E0F8B56B854897EEF94653705195D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a5:13:da:46:d5:4d:fa:69:95:bb:6f:1c:6a:
4c:1f:09:e9:90:1f:60:19:ae:71:27:fb:c3:6a:e5:
31:ed:46:bc:a9:35:ce:96:d8:55:2a:3e:8d:d7:1e:
3f:a8:05:39:b3:76:73:88:fc:b6:df:3f:2c:a1:fe:
16:29:95:cc:cc:17:af:b2:8d:82:d2:f1:11:a9:c1:
18:25:bd:27:3c:f9:de:6a:e7:3e:dc:bc:d0:9a:36:
bf:4e:8d:af:b8:24:61:66:26:eb:b4:78:19:18:f5:
b4:5d:a2:2e:71:73:ea:1b:83:9e:3f:61:14:56:d9:
e3:38:d5:38:3c:64:f7:30:a0:11:25:46:96:63:2c:
2f:31:8a:29:07:62:9a:92:9f:96:20:93:5e:d1:82:
12:27:82:7d:43:db:cf:c0:0b:83:1d:5b:93:67:32:
2e:3d:9b:8f:83:af:d1:f3:d3:93:14:8d:b3:e8:7c:
df:52:1f:b9:a5:cd:6b:40:46:7d:84:9d:d2:f8:90:
b2:b2:64:aa:0a:52:32:2c:02:e0:07:97:0a:90:89:
18:cb:62:74:a7:12:3d:e4:e7:c4:2f:2b:1d:74:ba:
59:21:3c:36:91:0d:36:e4:38:7c:22:79:ff:3a:39:
12:5e:b3:9a:9d:03:d7:63:16:92:47:4a:e0:c7:d9:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:11:80:1D:8D:0E:0F:8B:56:B8:54:89:7E:EF:94:65:37:05:19:5D
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.81.0/24
Signature Algorithm: sha256WithRSAEncryption
65:08:d4:3d:93:fe:c4:58:01:d4:d9:cc:14:27:a8:7c:63:22:
80:0f:8d:ef:55:56:0b:c0:d3:6b:a9:d5:f6:c5:0a:06:cb:b5:
8e:da:b8:f8:ff:af:e0:5d:df:29:f3:19:f7:e1:f5:bf:a5:04:
a1:fe:b3:1e:d3:85:11:9e:95:03:4e:eb:fa:be:4f:34:37:a0:
99:1f:96:7d:34:7d:64:cf:96:10:d0:27:91:a8:2a:be:46:bf:
9e:c0:94:de:b9:9b:d6:e1:70:84:f2:6d:88:00:5f:ae:84:5c:
cf:df:38:fe:32:0b:d7:8e:9c:69:65:c9:ce:35:7e:46:cd:4a:
62:4f:a3:13:19:d0:f5:49:13:2d:79:fc:48:c7:c4:e1:3e:fc:
37:7d:87:d5:b0:d1:c6:f6:7b:ed:c6:eb:57:ee:9a:cf:33:6b:
e7:d0:db:f8:e9:3a:ea:34:c4:c4:ff:5f:78:89:b9:2c:08:91:
de:c1:cf:e0:e7:2b:37:ed:93:5b:e9:80:14:73:e3:55:6a:a6:
bb:24:2f:74:e7:93:84:39:d7:7d:da:2e:88:ea:83:13:52:62:
aa:52:5d:05:52:07:94:c3:bb:7f:d6:ef:9d:2e:6e:d6:64:4f:
61:c4:ad:01:5c:e3:36:77:cd:f6:db:c5:ec:90:03:34:28:70:
a5:ef:89:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org