Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ttdACQZCKy9g_QwEbnLVhOHCXYA.roa
File: ttdACQZCKy9g_QwEbnLVhOHCXYA.roa (raw, json)
Hash identifier: ZfZCwdfvceVQuBsg44LZbUDJNcN9yv/Jxvzcu0u/vGU=
Subject key identifier: B6:D7:40:09:06:42:2B:2F:60:FD:0C:04:6E:72:D5:84:E1:C2:5D:80
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0FB6
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ttdACQZCKy9g_QwEbnLVhOHCXYA.roa
Signing time: Fri 01 Sep 2023 08:29:27 +0000
ROA not before: Fri 01 Sep 2023 08:29:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 150.116.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4022 (0xfb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B6D7400906422B2F60FD0C046E72D584E1C25D80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a9:0a:0c:b5:63:02:49:b9:37:d8:11:37:fa:
5f:67:90:5a:bd:2f:31:10:5e:eb:56:47:f8:cf:8f:
92:c1:c4:90:a8:37:84:f2:53:63:1d:0f:9e:8a:e4:
81:6c:fc:8f:99:a3:50:a2:e8:45:7a:4d:dc:53:5e:
9e:b6:b1:52:4c:0a:3d:50:01:37:cd:77:48:47:82:
39:a7:b7:31:f8:5f:3c:e9:d8:47:be:82:bf:c8:50:
22:cd:c2:af:80:fb:2f:b7:e6:2d:81:9f:3c:59:8f:
4c:72:e7:34:dd:f4:48:cb:91:54:7c:37:7d:c1:35:
f0:c9:2e:da:e0:96:d6:be:e0:ec:f6:78:ef:3f:61:
0d:d7:56:c0:85:02:07:09:05:a1:73:1d:19:fe:1a:
02:ce:67:8b:a2:62:c0:a3:05:f1:41:fe:90:c6:ac:
7d:1c:96:7d:7e:1b:ca:14:8d:e3:b2:a4:09:a5:00:
6d:3e:f9:a5:70:b3:07:23:af:a1:4f:02:70:2c:09:
c8:e2:d4:f2:21:3a:0d:de:8c:7d:8a:ba:cd:00:74:
8a:05:16:dd:9a:04:ab:14:c0:70:d8:71:e2:a6:c9:
b7:03:03:3e:9e:51:c9:a0:e2:95:80:24:9c:cf:33:
f0:dd:14:a7:c0:06:fc:3b:84:16:96:77:b4:39:07:
11:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D7:40:09:06:42:2B:2F:60:FD:0C:04:6E:72:D5:84:E1:C2:5D:80
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ttdACQZCKy9g_QwEbnLVhOHCXYA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.239.0/24
Signature Algorithm: sha256WithRSAEncryption
65:de:49:56:4f:4d:a8:47:4b:5b:0e:a0:08:09:a2:a6:af:2f:
39:e5:75:fb:43:ab:5f:0b:c6:f8:be:6b:2c:d2:d9:28:87:d8:
09:0c:a8:8f:af:df:ab:65:27:8b:fc:3e:d9:51:7a:96:97:79:
49:68:a0:56:2d:77:b7:2a:c4:c5:44:91:3c:e4:69:a0:2c:70:
cb:be:24:59:90:68:cb:92:e2:9e:95:cd:e9:f7:f0:f9:28:71:
22:62:02:eb:33:31:38:54:76:d4:84:51:b8:77:0f:17:9d:dd:
a1:39:62:ba:4f:7c:ae:c2:8a:f5:57:77:6a:55:2d:7b:31:4c:
a1:ed:11:96:28:d4:c5:db:e0:bc:d4:a9:87:1f:a6:0c:2b:cf:
eb:87:58:00:4f:bf:80:9c:cc:0f:12:b9:02:15:36:f3:be:26:
c5:ae:fd:e2:b0:51:39:56:9d:3a:b4:c0:7f:d0:0f:06:0a:0e:
86:20:3e:f1:cb:50:bf:2d:a9:60:77:49:d3:05:05:a2:35:97:
08:3d:71:6b:ec:05:9e:ea:6f:ff:bd:a5:20:2a:cb:30:da:eb:
63:b3:59:79:4b:47:e5:aa:48:73:e7:9c:fc:6a:ac:3b:e9:69:
49:56:9a:b5:8f:9f:b8:b6:3f:82:0b:0c:f3:a1:bc:e8:73:4d:
60:5a:89:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org