Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/RnL1VxB6Ry4VaT_ZlUhGcf6wick.roa
File: RnL1VxB6Ry4VaT_ZlUhGcf6wick.roa (raw, json)
Hash identifier: pWl4n4pv6qrz0DgnQWxKvzOouk88Kxxjq6C+Y13D4Oc=
Subject key identifier: 46:72:F5:57:10:7A:47:2E:15:69:3F:D9:95:48:46:71:FE:B0:89:C9
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BC3
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/RnL1VxB6Ry4VaT_ZlUhGcf6wick.roa
Signing time: Fri 01 Sep 2023 09:45:04 +0000
ROA not before: Fri 01 Sep 2023 09:45:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3011 (0xbc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4672F557107A472E15693FD995484671FEB089C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d4:ad:b6:3b:ad:00:72:c7:85:ca:27:fc:73:
7b:d7:49:79:6d:31:37:f4:38:38:db:cd:1e:a6:8b:
ba:30:bf:40:7c:e7:96:59:6d:fa:19:e9:0c:e0:cc:
a4:03:b9:6b:d8:a7:a5:d6:f0:c3:94:6f:47:81:cc:
e1:e2:6a:3b:f3:74:fe:bd:1e:74:3b:50:00:83:84:
26:3a:13:18:ec:b4:75:ac:d0:63:dd:17:4e:8d:f6:
f2:7c:40:1d:4e:92:07:a6:1c:aa:10:b7:12:b0:84:
3d:b8:73:b9:90:09:d5:b9:a3:bc:42:27:5c:ff:14:
bb:37:5f:9e:d0:f9:0d:ee:77:2d:d2:0a:b6:eb:c5:
12:11:f0:97:d4:8a:c6:d5:a9:f5:82:3f:73:8a:e8:
c9:68:ed:db:88:cd:1f:70:88:f1:c3:58:6b:8d:83:
9d:35:15:bd:05:91:73:19:1f:b2:f9:b1:af:01:ca:
df:0e:03:28:94:f6:73:92:cb:cc:00:54:16:9e:21:
1c:1b:99:27:91:99:fb:e9:0b:29:b7:d7:6a:60:67:
52:b4:c8:e7:af:07:40:29:86:82:fe:fb:8d:26:19:
d5:35:a0:c4:92:5b:c0:5a:1d:0e:d5:f5:0d:b9:e3:
23:8c:68:2d:f6:05:dd:e5:f9:4e:c1:bb:d8:d2:44:
69:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:72:F5:57:10:7A:47:2E:15:69:3F:D9:95:48:46:71:FE:B0:89:C9
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/RnL1VxB6Ry4VaT_ZlUhGcf6wick.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
14:ed:67:21:dc:45:3b:d7:c5:c2:64:0b:ef:70:fa:bf:73:62:
68:24:86:ae:4b:2e:99:8e:41:54:a7:f6:2f:2f:20:37:05:2b:
fd:8d:0c:9f:fb:56:8f:39:eb:c3:bf:ec:d9:2c:d2:b7:b6:8e:
ad:fa:07:01:60:af:27:a5:63:73:7f:dd:18:50:45:31:9a:a1:
1d:46:14:32:1a:b3:39:0e:2f:52:0d:c7:e1:1f:32:f4:d9:08:
15:0c:47:37:85:aa:f3:76:23:96:f9:fc:72:74:fb:45:c9:df:
f2:11:b9:6e:d9:1b:fa:dd:c0:77:71:0e:81:a0:aa:99:47:c4:
cf:eb:a8:97:64:9c:18:f2:22:a1:e2:ef:1c:7a:9a:e2:f7:2f:
d5:d1:04:af:10:02:54:c6:4f:55:be:a9:7b:1a:52:9a:ab:fe:
21:b3:61:ec:ed:a0:5f:41:97:85:d7:51:d8:e1:77:02:cd:9b:
4c:a1:4d:18:0e:16:61:e7:2c:82:65:89:53:11:aa:3b:84:a5:
56:1d:b7:46:84:8f:92:42:2e:68:e5:a7:08:a1:58:b8:26:b7:
87:45:b1:e8:88:b4:52:b1:60:27:dd:05:87:2e:22:d2:cf:ec:
08:df:c8:fa:8b:2e:b8:f3:cf:6e:e8:49:bb:03:e3:ec:5a:21:
2f:08:64:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org