Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/q-nKNcaYPvt8-06XfFdeiDrlmEg.roa
File: q-nKNcaYPvt8-06XfFdeiDrlmEg.roa (raw, json)
Hash identifier: jF6XKXbsFgzCzKuzKa+QO7G4hG8EsHQIWWfQ6amb/8Y=
Subject key identifier: AB:E9:CA:35:C6:98:3E:FB:7C:FB:4E:97:7C:57:5E:88:3A:E5:98:48
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CE6
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/q-nKNcaYPvt8-06XfFdeiDrlmEg.roa
Signing time: Fri 01 Sep 2023 09:39:55 +0000
ROA not before: Fri 01 Sep 2023 09:39:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3302 (0xce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ABE9CA35C6983EFB7CFB4E977C575E883AE59848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:fd:c8:cb:91:da:c2:72:2e:5e:64:6d:e2:
1e:5a:ff:84:96:a6:9e:c9:0c:a3:ec:19:9b:5a:b2:
33:c7:b2:b9:9c:db:1c:20:61:65:06:62:16:64:dd:
7b:45:a7:22:42:cc:0c:e2:2b:6b:64:4d:fa:18:2c:
9f:d1:85:9d:17:bb:8c:df:fe:3a:61:a1:7c:85:f2:
de:3d:68:1d:a3:40:5c:b7:b5:f2:e4:b5:7b:43:92:
85:2f:f8:5c:01:d8:e4:da:cc:fb:c9:72:a4:d5:5d:
5d:50:5f:20:eb:ad:69:32:0b:f5:7c:fe:d9:68:de:
6f:ac:e7:5f:bf:d7:d7:2d:ad:6e:7b:bd:9f:c8:0e:
94:05:df:38:dc:42:51:bc:0a:c7:84:99:b7:aa:09:
90:fc:6d:97:3b:af:22:18:6a:e3:a8:da:27:07:aa:
26:b5:40:1b:6a:75:04:61:8b:95:41:ef:d6:2a:9e:
c2:6a:57:01:fd:fc:43:9b:fb:b8:78:4f:eb:ba:19:
5c:ee:77:b2:90:f6:ec:d3:57:bf:6a:39:91:1d:1a:
1c:e0:61:86:60:c3:b8:b7:6c:07:ff:8f:76:96:d8:
60:42:da:90:46:35:89:3a:af:a7:f2:e1:8b:aa:8f:
7c:0f:e9:a1:23:b6:7c:65:17:fe:6a:09:3f:92:64:
49:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E9:CA:35:C6:98:3E:FB:7C:FB:4E:97:7C:57:5E:88:3A:E5:98:48
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/q-nKNcaYPvt8-06XfFdeiDrlmEg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f9:3a:7c:42:d6:9a:8f:64:dd:9d:d5:06:72:00:8c:24:a4:
2c:ea:25:88:c6:66:a0:b4:10:d0:70:b8:7a:fd:bb:91:24:a0:
d0:47:ce:54:7f:9a:77:f6:0d:0c:97:f3:c0:24:2d:5e:e8:dc:
c3:d0:54:22:dc:99:13:54:d0:96:97:4e:25:44:37:cd:98:1f:
50:12:ae:41:d7:35:18:75:e4:61:82:f2:e9:2a:47:ea:c3:60:
0a:bf:ea:8a:08:0c:29:e8:78:a6:47:eb:0f:81:f4:4f:1c:fe:
e3:25:88:bf:63:c1:a5:6e:cf:7d:e0:87:c3:ec:52:01:9e:fb:
31:2b:cb:a6:6c:1c:79:d2:a5:19:bb:e6:54:ad:fc:53:98:cf:
1c:a7:41:d3:1a:10:3b:34:4c:09:8b:4f:ac:04:74:83:b1:9d:
09:66:3e:20:f6:66:5b:51:6d:cb:83:69:24:ac:0b:d5:3f:44:
c7:cb:ed:46:6e:46:cc:1d:0d:2d:30:1d:7e:6d:cd:c2:ab:60:
6b:3a:8b:4a:6a:63:6f:9f:b3:e1:95:8c:f8:de:47:5e:5c:01:
c7:9a:fe:eb:07:85:47:7f:97:e3:f7:22:cf:ae:8b:10:db:4f:
ec:95:4a:91:40:80:87:4b:95:ef:2a:4a:c7:30:31:5b:6a:04:
6c:b5:e9:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org