Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/XNEiSKJNJEmWDAhH2-VTFObzFdk.roa
File: XNEiSKJNJEmWDAhH2-VTFObzFdk.roa (raw, json)
Hash identifier: iAzOS+R+N6SIt+Zk8IsbUNTxHPkcnV3p6hjwPDdM21g=
Subject key identifier: 5C:D1:22:48:A2:4D:24:49:96:0C:08:47:DB:E5:53:14:E6:F3:15:D9
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0B70
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/XNEiSKJNJEmWDAhH2-VTFObzFdk.roa
Signing time: Fri 01 Sep 2023 08:30:31 +0000
ROA not before: Fri 01 Sep 2023 08:30:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131611
IP address blocks: 121.50.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2928 (0xb70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 1 08:30:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5CD12248A24D2449960C0847DBE55314E6F315D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:8c:72:27:62:15:ee:b1:a5:ed:ba:ef:43:
46:96:a3:a7:76:a0:f0:b7:26:ab:ed:54:6c:eb:10:
8d:c0:ab:91:16:20:1f:37:6b:93:6d:c8:d8:dd:cf:
8f:5d:c1:bd:ac:d3:9d:95:57:6e:b2:f9:6a:0c:1e:
07:eb:bc:25:8a:5d:6e:7f:e2:fd:36:46:08:cb:b0:
e4:ca:19:11:ce:d9:21:75:45:93:7a:9f:e5:c2:5e:
d2:ce:1a:89:74:25:d5:a5:ea:69:23:04:33:a8:74:
df:be:14:ff:6f:16:0d:25:04:2b:31:ae:53:50:bb:
c1:40:3d:5b:8e:88:35:70:fb:2b:e7:78:35:a0:a6:
42:5c:ef:4d:da:78:42:a8:f2:91:f9:3c:ee:f6:cb:
86:04:b7:7b:49:8c:19:6a:f7:3e:70:7f:55:57:72:
b3:8e:96:bc:52:f8:37:3f:6b:f8:fd:5f:d2:cf:14:
27:86:66:74:32:a1:fa:e3:18:3d:e4:7a:e6:25:1a:
48:66:be:2d:08:c0:39:5d:f7:e3:41:9e:14:c5:d7:
11:11:9c:ca:51:04:57:bd:1a:25:70:30:2c:f3:b3:
f4:da:99:3d:a4:73:3e:58:da:f8:7c:00:58:bb:97:
09:9a:1a:4f:cb:33:f6:39:18:11:15:3f:3d:b5:6f:
3e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D1:22:48:A2:4D:24:49:96:0C:08:47:DB:E5:53:14:E6:F3:15:D9
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/XNEiSKJNJEmWDAhH2-VTFObzFdk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:79:3a:00:82:c7:71:03:3e:0b:09:af:c6:ca:ae:1b:a6:17:
8b:2e:da:d8:04:5c:b3:87:bc:6c:5b:92:12:bf:36:28:67:02:
1b:6a:b7:bc:1e:0a:7a:fe:b6:bb:be:8c:49:28:e2:92:69:66:
20:50:4f:fc:01:ee:eb:48:79:8f:44:63:e3:95:eb:00:54:d6:
91:71:ae:ca:72:42:cf:35:eb:c7:b5:50:5c:d9:e5:bc:c7:ff:
b1:07:77:5d:92:59:b7:97:c2:ea:05:61:23:52:51:a0:48:a8:
a8:92:b0:4b:c8:6f:80:c5:9c:e3:fe:b0:be:70:4e:de:c4:ce:
e5:a3:ac:e9:4d:f0:ba:ed:66:89:76:c1:58:c7:38:04:b0:5d:
f2:5e:ca:90:ef:56:62:81:71:c3:eb:3b:eb:81:c4:2f:8f:19:
ff:2c:83:36:13:53:f3:a5:e8:2f:91:5e:72:a5:35:14:92:89:
57:42:1d:ee:b2:a7:fa:5d:c6:da:7c:4c:52:5e:99:69:03:af:
a9:a8:9c:a5:85:2e:fd:cb:fc:e1:b3:f8:14:7d:6b:85:48:20:
ee:93:51:f5:17:c4:8b:d0:82:dc:d1:20:8b:20:e7:a2:e5:45:
23:9f:58:87:22:43:0f:8d:35:e9:28:4a:16:6f:35:e5:e7:57:
21:9e:f5:9c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org