Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/w31E6LyV6TdYRckKrMKrURF1KPQ.roa
File: w31E6LyV6TdYRckKrMKrURF1KPQ.roa (raw, json)
Hash identifier: XUHzKfq/NFUSW9FJIGrvILjn4Bg3tVWXweKSqsYUunU=
Subject key identifier: C3:7D:44:E8:BC:95:E9:37:58:45:C9:0A:AC:C2:AB:51:11:75:28:F4
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0BC2
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/w31E6LyV6TdYRckKrMKrURF1KPQ.roa
Signing time: Fri 01 Sep 2023 09:45:04 +0000
ROA not before: Fri 01 Sep 2023 09:45:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3010 (0xbc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Sep 1 09:45:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C37D44E8BC95E9375845C90AACC2AB51117528F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:44:9b:82:f8:66:d8:aa:24:27:94:dd:c5:2c:
da:c7:f4:12:fb:83:65:5d:c1:2a:74:94:de:c5:a2:
fd:56:58:b2:00:51:cb:58:11:94:61:8c:8a:ac:f9:
aa:1a:14:65:34:4c:4f:bc:98:3d:bd:8c:fc:b5:34:
48:10:4a:62:32:0d:f2:9a:bf:54:55:2c:a5:30:3f:
65:5f:80:14:e5:80:38:b7:dd:e0:d4:81:ff:34:ab:
02:85:81:e2:64:84:21:b6:b6:58:47:84:52:80:5d:
c1:89:1d:73:45:e2:8f:92:9e:77:5c:c4:26:04:a6:
fe:ed:f4:7b:5a:e8:e6:11:de:29:27:68:3d:6e:22:
85:c2:2a:df:65:3e:ef:27:3d:d4:2c:ca:62:d9:c8:
ea:ea:0f:bf:93:74:6e:b3:6c:ce:82:fd:a5:88:a7:
92:b5:b4:d1:53:68:fd:c0:b5:3d:77:5e:56:1e:e4:
b1:cb:94:82:fe:4a:45:b8:2d:33:40:f7:79:ba:82:
71:4c:fc:9c:5d:a8:e8:b3:e1:dc:54:8a:25:19:77:
7c:78:f6:01:a5:4d:e9:1b:14:05:b2:50:e6:14:71:
5e:6c:e9:27:a1:04:db:1f:b8:52:49:21:e0:99:70:
cd:01:55:b3:cd:07:aa:d5:be:0f:6b:53:c3:44:9f:
f8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7D:44:E8:BC:95:E9:37:58:45:C9:0A:AC:C2:AB:51:11:75:28:F4
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/w31E6LyV6TdYRckKrMKrURF1KPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
be:53:cb:d3:de:40:71:0f:f0:06:26:0b:88:85:1b:fa:a1:62:
5c:57:5a:0f:c8:7f:ad:c2:13:71:13:2e:a7:70:41:35:bf:03:
2a:ee:ee:46:42:17:88:1c:f4:28:2b:aa:c3:44:ee:26:14:f3:
08:38:d1:cb:62:9d:1c:48:7c:f6:02:50:60:4c:40:63:c1:79:
fe:26:59:08:9f:51:99:56:b5:b4:44:d3:b5:f1:f6:95:79:2c:
3e:01:fe:15:93:6a:e3:34:fa:3f:e4:0c:a0:4f:b6:88:55:12:
35:eb:76:7b:5b:c1:a5:35:91:c8:39:ba:e8:9e:16:af:89:0c:
1c:e5:59:6d:78:25:50:5b:5d:07:e0:5b:53:99:62:81:9a:c8:
42:a8:c9:2c:56:f6:76:04:23:00:74:55:d7:d9:89:15:ba:a5:
93:f1:a0:79:e9:65:f9:d7:fa:32:1a:dc:33:7f:db:20:bd:63:
da:e0:98:2e:0f:67:14:e6:b6:c9:5b:a1:08:f2:b4:04:04:05:
00:7e:23:8d:4f:82:4c:c8:9c:f9:b7:42:29:bf:23:40:4e:48:
9a:02:ed:b8:77:6b:8d:cd:df:78:e8:c8:d4:26:32:8e:9b:02:
82:ad:ab:5b:23:ae:01:c1:f3:f9:98:dd:e7:6e:9d:ec:0a:9a:
22:80:f3:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org