Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/texPzog4jTLyfdT07L0ewsd78PM.roa
File: texPzog4jTLyfdT07L0ewsd78PM.roa (raw, json)
Hash identifier: Ux701W4r7QL3vd22oD6ViI2FQ7D6UYAOXDwj3Vh9LiU=
Subject key identifier: B5:EC:4F:CE:88:38:8D:32:F2:7D:D4:F4:EC:BD:1E:C2:C7:7B:F0:F3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FCF
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/texPzog4jTLyfdT07L0ewsd78PM.roa
Signing time: Fri 01 Sep 2023 08:29:35 +0000
ROA not before: Fri 01 Sep 2023 08:29:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 150.116.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4047 (0xfcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B5EC4FCE88388D32F27DD4F4ECBD1EC2C77BF0F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0b:10:a6:e9:b0:cc:89:af:fa:9f:4a:25:c4:
a4:91:4a:6f:26:46:81:32:2c:96:a5:48:2a:83:c2:
71:60:43:a4:80:66:33:b8:af:76:0c:4a:c6:45:13:
51:ad:6f:93:72:be:01:55:2c:13:8d:a9:05:e6:b8:
a1:f5:16:ba:1d:c8:fc:14:58:7f:d6:9c:f1:8c:ef:
72:82:f8:8a:08:36:35:f4:c1:91:21:78:3b:50:e6:
bd:b3:f5:ec:25:eb:a9:3d:1b:a8:26:1a:7a:a2:92:
dc:2b:7f:99:a1:7a:fe:2a:98:c7:8c:b7:b0:af:42:
0f:36:fc:7d:e3:55:50:8a:72:f2:1f:35:d4:d3:6d:
fc:ed:9d:c6:75:3d:af:cd:96:1a:d2:6a:94:fc:8c:
ee:ef:8f:8e:74:5d:94:6b:27:d7:9b:53:0a:ef:4e:
08:df:4d:f9:c6:be:c5:9a:c4:29:30:e9:25:91:79:
62:de:07:fc:e4:3a:b0:4b:d2:20:c4:3d:95:5a:e0:
27:fa:63:11:b4:ab:ff:89:50:f4:00:2b:fb:8d:85:
5d:be:f0:1b:ad:bd:5a:01:1a:3c:19:e5:98:c0:1e:
9d:e1:94:e9:c6:df:bd:3f:20:b7:10:24:09:13:b3:
a1:9d:33:45:b8:4d:78:05:9e:15:08:64:e5:65:cd:
a8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EC:4F:CE:88:38:8D:32:F2:7D:D4:F4:EC:BD:1E:C2:C7:7B:F0:F3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/texPzog4jTLyfdT07L0ewsd78PM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.144.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:9f:d5:49:8a:48:18:8d:4c:c8:b1:ee:62:d5:4d:b4:4d:66:
b4:a1:d5:49:42:b5:87:65:8f:c4:72:63:0d:b2:e0:0f:39:1f:
79:d5:3c:76:f3:46:ac:fc:59:ca:95:b8:a3:6f:27:9a:3f:0b:
88:a7:7b:e8:de:a1:50:1e:32:6b:0e:89:7d:30:88:6f:3f:23:
bf:59:10:ec:da:b5:bc:05:0d:dd:27:c2:39:1c:92:f9:4d:4e:
16:ab:fa:d5:c8:78:43:5b:27:c1:5e:e2:1b:3e:a7:9f:a3:4e:
41:72:b4:58:fa:58:37:5d:0e:1b:65:11:5e:5c:ec:1f:82:83:
9a:3c:f6:88:77:08:2a:b7:71:24:27:a1:93:a6:17:75:20:26:
51:6a:9e:3e:45:b9:8f:9e:4f:a2:2c:15:f8:bf:03:e1:d1:9f:
4e:6a:00:77:e2:7c:42:03:13:94:bc:f6:12:4f:1e:c1:23:09:
81:9c:90:ab:d4:43:8f:85:b1:16:39:9c:6d:bc:07:f2:b1:6f:
8c:19:17:b0:7f:a9:1b:c2:94:6a:14:1b:9f:a7:99:a7:1f:d2:
50:c8:88:3b:77:be:90:06:c2:b4:f4:0b:68:e1:ee:ad:8d:0e:
c1:ef:71:d3:1c:64:cf:95:25:0c:60:43:b2:16:f8:23:9c:35:
72:e4:53:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org