Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa
File: dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa (raw, json)
Hash identifier: ySrvrw7h5TsfVUZ3ZiC3UilQFTKqJllBncHSKrx8y3g=
Subject key identifier: 75:31:3A:C2:4D:47:71:DB:5A:71:EF:E9:03:FD:D9:FD:A2:3C:77:E6
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1171
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa
Signing time: Fri 01 Sep 2023 03:14:21 +0000
ROA not before: Fri 01 Sep 2023 03:14:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 150.242.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4465 (0x1171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 03:14:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=75313AC24D4771DB5A71EFE903FDD9FDA23C77E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:64:45:ec:c6:f8:69:43:44:59:ca:34:0c:65:
a0:b9:c4:a1:60:14:f8:8f:e8:a6:ce:2b:77:16:d9:
49:69:54:d4:70:62:45:0d:1d:84:83:d5:1c:ba:81:
73:1a:e6:58:1d:35:98:0b:60:cd:2f:68:ad:aa:65:
97:e4:89:07:ba:7f:4f:04:53:3c:e9:89:ea:9a:8c:
3f:4f:b1:d1:87:47:55:e8:1d:73:d0:80:8d:00:f3:
85:68:59:2d:ab:c5:b3:3d:eb:14:4c:25:4b:1c:f9:
ea:e5:a9:48:32:4a:3b:fb:fe:92:fe:b1:ff:3a:5c:
c0:44:bc:c2:36:ad:71:ce:b4:da:71:08:47:0a:08:
8e:cb:8c:2e:7d:e4:22:c7:88:1c:95:f8:9a:7b:0d:
96:b1:a4:86:d8:f1:74:66:e2:35:ac:e7:d3:f6:1a:
16:6a:2b:3b:23:29:a5:c7:7f:b6:0d:b7:f8:ab:f9:
a6:c1:7e:14:ed:4d:a2:5d:df:ad:05:42:90:2c:86:
21:8b:e0:a8:74:0c:5e:a0:0d:db:a4:3b:28:8a:bc:
37:11:45:3e:be:6d:55:ae:95:cf:a8:7a:81:46:ea:
59:5d:a2:25:be:2e:54:4b:d8:b6:29:80:cf:56:44:
c3:ac:45:64:d4:2e:eb:f9:e2:51:e4:9b:59:6f:87:
c9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:31:3A:C2:4D:47:71:DB:5A:71:EF:E9:03:FD:D9:FD:A2:3C:77:E6
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.242.100.0/22
Signature Algorithm: sha256WithRSAEncryption
48:0d:2b:a6:00:79:fa:97:15:4c:4f:81:a1:41:db:40:f2:ab:
0a:b4:c4:61:bd:42:ee:0b:e5:a1:00:d7:06:4c:01:fd:4b:33:
2d:33:6a:90:5c:78:eb:ec:99:a6:e5:0f:38:0f:a5:bc:a0:89:
20:d6:ca:f1:aa:b3:d2:21:ff:20:2a:0e:43:4e:9a:c0:79:d8:
34:41:df:60:8d:bb:7b:82:8d:48:42:86:9d:8b:10:c2:07:f0:
b0:3a:8d:4f:d1:5c:16:f2:02:4a:cf:89:8d:69:e8:c7:2c:64:
eb:4e:cd:32:d6:07:77:02:39:42:02:1f:13:21:57:0c:6d:7b:
71:c1:5e:8d:b9:e2:b7:5b:db:8a:13:d2:bd:a2:c7:e2:25:cf:
47:17:b1:6d:6f:2a:3e:22:42:a0:d9:cd:4f:7f:b5:bc:78:e4:
77:31:fb:c9:fb:5a:5e:18:fd:a8:06:a6:c3:1d:43:21:b4:94:
3b:5b:a2:5a:de:fb:a1:ee:44:9f:08:b8:95:66:db:c9:fd:7b:
d5:4e:d5:51:17:8b:a3:e5:aa:4a:1a:d3:97:94:a5:ad:b7:0d:
c7:e7:21:5b:56:88:4b:9e:17:f6:6a:45:0e:dc:96:87:06:b6:
c1:f6:f4:b4:de:90:04:7e:f6:05:29:ae:dd:f2:43:ff:35:08:
34:d7:27:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org