Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/lxpnCLB_9PAdi1t-PwwjMMqHx_g.roa
File: lxpnCLB_9PAdi1t-PwwjMMqHx_g.roa (raw, json)
Hash identifier: aLFm+1c5WwqcDClcgOd6yTml/6vJKrUZv280NJPO2f4=
Subject key identifier: 97:1A:67:08:B0:7F:F4:F0:1D:8B:5B:7E:3F:0C:23:30:CA:87:C7:F8
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D10
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lxpnCLB_9PAdi1t-PwwjMMqHx_g.roa
Signing time: Fri 01 Sep 2023 09:59:32 +0000
ROA not before: Fri 01 Sep 2023 09:59:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131150
IP address blocks: 120.119.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3344 (0xd10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=971A6708B07FF4F01D8B5B7E3F0C2330CA87C7F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:33:17:e7:e0:4f:ba:96:e0:8a:a7:9e:97:be:
e1:6d:91:fc:e1:1d:08:81:dc:0d:19:76:27:87:5e:
f2:18:a8:c9:6e:4e:f3:69:7f:a2:42:29:ea:83:e1:
ee:b6:01:be:62:87:60:24:80:09:5d:0a:b0:e6:e3:
36:16:aa:b6:36:70:82:fe:62:37:0c:2a:63:01:82:
43:13:05:ee:9f:ae:4c:99:3b:69:9d:eb:fc:67:6f:
41:ac:9d:66:bd:07:84:7b:41:ca:ec:9a:3a:85:92:
1c:21:99:a7:60:e6:32:aa:4a:91:e2:44:5e:9e:73:
3a:28:55:f4:c3:3c:df:3f:1b:b5:fb:8f:7f:aa:c2:
b9:19:34:1c:ea:e1:4d:5c:7b:ab:0f:93:e5:98:09:
a1:4c:e9:14:75:53:bf:04:c9:e9:a1:8f:4c:70:81:
57:73:6a:0c:74:fc:27:50:03:1b:b0:c9:53:bd:1d:
75:2e:4a:aa:03:93:8f:f2:cd:49:f4:0d:fe:02:8f:
33:a0:e4:bb:c8:06:07:da:c3:47:e4:da:0f:10:3e:
7f:ae:12:75:92:e4:e9:d6:e9:3f:21:63:37:82:69:
5f:5c:59:9e:8f:35:cb:a5:b3:5a:16:37:00:ce:58:
73:c3:3f:78:71:4f:04:18:f5:36:b4:57:93:57:a5:
61:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1A:67:08:B0:7F:F4:F0:1D:8B:5B:7E:3F:0C:23:30:CA:87:C7:F8
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lxpnCLB_9PAdi1t-PwwjMMqHx_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.119.254.0/23
Signature Algorithm: sha256WithRSAEncryption
54:67:f4:9d:b9:29:d0:22:09:01:fb:bd:bd:8b:23:29:0a:cd:
ce:a0:cc:c2:e4:68:fa:31:98:4f:4a:21:81:63:95:ee:43:1b:
a9:54:a2:1c:d9:65:92:2f:18:8d:fc:c9:3a:74:6f:de:f0:f1:
6d:4c:4e:91:fd:a7:9c:8b:20:d6:ca:a0:ff:e2:b8:94:2d:68:
cb:c5:3d:d8:f7:a1:31:8a:b6:9f:18:43:21:61:2c:15:91:cc:
5f:81:15:0c:2c:6d:5a:d3:3c:ba:fc:49:df:1c:50:ca:c4:3b:
5b:1f:1f:6e:1b:74:46:56:17:e1:ad:cd:e9:bc:63:4d:c8:b3:
6d:f1:89:a2:ee:e0:a2:2e:6a:57:19:d0:04:8e:d8:9d:74:18:
64:ad:d1:90:7a:e3:8b:50:a9:2a:6c:3e:68:8d:c2:57:a8:96:
84:d9:e8:61:b0:56:41:ad:d5:66:69:ac:6a:38:cd:4a:e8:29:
ed:bd:19:b4:2b:ef:c5:45:ae:8e:21:52:c3:8d:9b:c3:31:3b:
54:a9:dc:e9:5c:8f:cb:f1:13:cb:34:a2:ec:ff:67:b2:bd:8b:
a9:f4:f2:cf:77:a5:a2:ae:89:1d:fc:83:56:78:b3:a1:78:fb:
fb:04:60:86:3e:44:eb:4a:58:4e:31:3b:d6:c6:38:13:fa:40:
42:f2:a9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org