Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/t6bzYol_NGVJLWRNkDM-JN0Wsfg.roa
File: t6bzYol_NGVJLWRNkDM-JN0Wsfg.roa (raw, json)
Hash identifier: bdiLgV5YNym8kF/bLkhcxFMdYAkgshuG0HEO7kTK0k8=
Subject key identifier: B7:A6:F3:62:89:7F:34:65:49:2D:64:4D:90:33:3E:24:DD:16:B1:F8
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0CD4
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/t6bzYol_NGVJLWRNkDM-JN0Wsfg.roa
Signing time: Fri 01 Sep 2023 09:39:49 +0000
ROA not before: Fri 01 Sep 2023 09:39:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38843
IP address blocks: 124.150.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3284 (0xcd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 1 09:39:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B7A6F362897F3465492D644D90333E24DD16B1F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:90:3a:00:a1:80:56:f6:ae:39:65:88:5a:46:
20:33:66:79:fd:57:2b:da:0a:6b:4e:e2:5d:89:97:
61:56:0f:42:3b:87:c3:ec:34:83:71:81:e1:aa:a9:
f1:36:93:3d:7e:03:16:da:f3:b8:cc:b9:50:5a:f5:
3e:7f:26:e1:4b:ff:0b:b1:59:d5:17:8e:1f:7b:5a:
db:f8:65:5d:e0:d9:86:68:47:cd:1c:34:a3:7c:1e:
7c:51:58:0f:28:69:3d:50:b3:64:4c:fe:5d:b3:af:
df:a9:a6:88:b6:5b:b3:a4:a8:0e:33:64:a9:a8:be:
d7:2f:2d:c2:e6:d9:5f:52:f0:51:8f:9b:1a:e6:c9:
cb:7e:aa:fb:fa:1a:34:df:cb:92:5a:d9:19:39:c3:
9c:5e:b0:6a:5d:39:3b:7b:f5:4f:26:cb:2d:d4:59:
d4:6b:62:da:7c:bb:cc:98:cc:33:94:18:ac:7e:a0:
67:44:e6:0b:ca:7b:a2:60:b9:a0:69:3a:74:a4:b7:
75:20:00:68:04:e7:f1:b2:90:22:b4:00:4c:45:49:
07:9c:5f:f0:f1:fd:23:31:28:9f:bb:7c:66:1b:f7:
63:42:35:65:99:47:8d:f6:d5:99:0b:a8:b4:15:70:
0d:2e:7b:70:98:a1:97:a5:76:1f:d3:e5:15:b6:bd:
a7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A6:F3:62:89:7F:34:65:49:2D:64:4D:90:33:3E:24:DD:16:B1:F8
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/t6bzYol_NGVJLWRNkDM-JN0Wsfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.130.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d4:aa:94:54:cf:98:b6:d7:bd:5e:b8:1e:5a:cf:10:ff:6a:
05:86:35:9d:2e:1e:a0:77:c2:f8:47:20:7c:49:5b:20:44:7c:
ac:49:11:34:e5:99:68:26:95:1f:be:fb:d8:e1:e9:f2:cd:48:
5e:db:ce:ce:6f:c1:aa:a9:8d:13:09:cc:d2:4b:7b:78:d8:93:
59:73:d3:92:e1:e0:c8:80:e1:dc:57:66:b8:d3:80:89:f2:60:
7e:11:d1:44:35:2a:ec:ca:da:83:39:d4:47:ab:bc:45:2f:2d:
67:74:d9:ec:51:cc:e1:48:2c:cc:d1:53:da:dc:98:11:d2:40:
05:6b:00:1a:ea:e5:05:ce:f3:f8:eb:9c:50:00:b0:b8:c1:c8:
a5:fe:c0:e2:84:01:25:cd:90:68:f8:74:08:25:39:61:26:24:
82:67:9f:cd:f2:2d:55:96:bf:11:52:40:01:95:63:1a:c7:d0:
85:9f:40:35:27:09:ed:b3:a4:4f:ff:d9:49:55:58:de:bc:7b:
b5:07:89:e8:ad:ac:33:0d:c0:bd:82:57:4d:c3:73:2c:96:5d:
ae:f8:09:14:ff:80:6e:89:dd:d0:cc:40:b3:00:f4:d2:9a:58:
2e:ed:1c:20:24:84:98:72:97:91:4a:d3:30:33:ee:d0:63:70:
e2:3c:aa:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org