Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Mw2Zx4Ynh0ps-lLh0oNObeazQgo.roa
File: Mw2Zx4Ynh0ps-lLh0oNObeazQgo.roa (raw, json)
Hash identifier: YbDb34t75eJ1hqG2HVd4cYPfeBzzN5IDc9bRu+GHMXc=
Subject key identifier: 33:0D:99:C7:86:27:87:4A:6C:FA:52:E1:D2:83:4E:6D:E6:B3:42:0A
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BC5
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Mw2Zx4Ynh0ps-lLh0oNObeazQgo.roa
Signing time: Fri 01 Sep 2023 09:45:04 +0000
ROA not before: Fri 01 Sep 2023 09:45:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 180.214.176.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3013 (0xbc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=330D99C78627874A6CFA52E1D2834E6DE6B3420A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:8e:88:b7:d2:7c:a3:21:c9:2c:b0:47:d3:6d:
b9:f5:a1:2b:16:03:7c:77:57:cd:2c:65:4f:47:e0:
f5:2a:50:c3:a8:ae:86:23:2f:7b:d9:3e:fd:19:49:
18:ba:5b:7f:d7:fd:e3:08:9d:18:6c:fa:08:f3:f3:
d5:e9:61:42:73:85:59:b0:8f:ed:ff:38:4b:54:5d:
83:c1:3b:42:4d:de:57:63:12:72:e2:23:0a:45:d7:
4f:7b:79:c4:38:b4:2d:c9:d8:49:e0:d5:e8:0a:93:
a2:70:07:27:e1:0a:8f:13:d7:b7:dc:06:4a:d4:bb:
3b:d7:dc:ce:14:af:6a:82:02:2e:8c:08:eb:02:58:
b9:9a:53:15:90:41:fa:59:82:e5:48:7d:51:fe:e5:
fa:2d:64:4d:26:4e:60:93:a7:89:ed:80:51:17:79:
d6:90:fb:bf:a0:56:26:12:64:71:50:6c:f8:70:2c:
44:7a:00:e1:91:d1:e8:5d:a7:e3:df:e4:db:e3:c2:
34:89:2b:d5:6b:7c:26:88:9a:50:61:3b:65:6e:16:
e1:f4:e3:bc:92:7a:bd:da:ff:bc:1c:b9:d1:70:98:
8f:55:23:ac:bc:66:f5:b2:60:7c:8c:08:4b:b9:c2:
8e:b2:d2:cc:85:5b:f3:a1:42:25:91:6f:83:36:1d:
61:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0D:99:C7:86:27:87:4A:6C:FA:52:E1:D2:83:4E:6D:E6:B3:42:0A
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/Mw2Zx4Ynh0ps-lLh0oNObeazQgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.214.176.0/20
Signature Algorithm: sha256WithRSAEncryption
bb:d5:70:fc:38:ed:09:6e:f3:db:74:e0:e2:65:b9:6a:4f:18:
52:ea:17:6e:11:9f:78:74:3d:80:f7:38:e8:a7:d2:4b:02:73:
ee:72:4c:1a:43:42:f0:98:37:4c:c9:88:4e:ce:4b:57:81:f6:
6a:9b:6b:7b:11:f8:c0:19:31:e9:e3:fe:c8:35:5a:38:d5:e1:
39:ff:24:c8:64:89:4c:2f:8f:65:aa:8e:2b:e4:a0:7b:95:46:
17:59:d7:26:0c:7d:6d:e5:80:f5:df:48:0b:31:81:86:cc:83:
bb:dc:dc:cb:c5:ff:32:95:b3:50:42:14:05:b3:5c:e4:7e:ad:
b0:ec:0c:7a:cf:0e:a6:de:40:32:56:fe:f4:89:3f:58:df:89:
d5:80:29:b3:34:d7:a8:9d:49:63:b7:10:af:ed:1f:83:32:f2:
03:7a:d3:af:73:e3:15:36:56:da:dd:f9:ce:11:7f:bb:f2:76:
69:0b:3b:c9:c4:43:c6:10:52:44:95:e4:7c:9f:b8:56:83:ec:
99:8e:91:73:23:14:02:53:a6:bb:dc:9d:6a:8e:5f:f0:c8:d2:
06:b4:98:1b:ce:8a:17:6d:34:40:54:ac:35:0c:f1:ec:ec:50:
6f:eb:e6:72:0c:4e:09:b6:77:59:df:71:62:00:3b:82:8f:78:
f5:77:c7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org