Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VIBO/Qmz8SuqrTcZrLdimYhvV5Vi_qWI.roa
File: Qmz8SuqrTcZrLdimYhvV5Vi_qWI.roa (raw, json)
Hash identifier: Hvhw1pVPg5/g0ZO0ygnj9knR35x0bUHQy0HxjObTaS0=
Subject key identifier: 42:6C:FC:4A:EA:AB:4D:C6:6B:2D:D8:A6:62:1B:D5:E5:58:BF:A9:62
Certificate issuer: /CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Certificate serial: 0B7C
Authority key identifier: 52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/Qmz8SuqrTcZrLdimYhvV5Vi_qWI.roa
Signing time: Fri 01 Sep 2023 10:19:12 +0000
ROA not before: Fri 01 Sep 2023 10:19:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24157
IP address blocks: 43.255.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2940 (0xb7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Validity
Not Before: Sep 1 10:19:12 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=426CFC4AEAAB4DC66B2DD8A6621BD5E558BFA962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0e:3a:3b:ab:0a:dc:c2:81:a1:d1:fc:b7:08:
ec:23:3a:97:87:db:bd:3e:35:45:3f:5d:ff:1a:a8:
1f:3f:8e:84:f0:c4:41:bb:35:ac:df:e6:26:71:09:
6e:63:60:57:25:8b:69:40:c8:3a:3c:b5:e6:7b:54:
8a:b9:af:63:3b:a2:fb:e4:d4:ca:71:d0:c9:fc:e4:
bb:de:23:bd:04:8b:67:59:44:03:b6:a6:c9:42:8a:
6d:ee:cb:55:9d:3d:fc:17:fb:39:55:b4:d2:a1:92:
82:74:a9:93:82:04:a4:4d:bc:f3:54:01:b7:ae:7a:
90:48:3e:55:3d:ba:4e:28:7f:35:ad:aa:43:7c:87:
70:8f:31:dd:18:40:fb:1b:84:7d:58:a4:54:12:ac:
d7:0f:13:01:fe:0e:69:51:0a:fb:6c:2e:33:8b:7c:
d2:05:44:53:22:99:0d:83:0b:20:3f:b8:1c:2b:cc:
3c:a3:d6:36:c6:92:d7:07:dd:34:26:0a:f2:0c:42:
76:e7:cb:44:14:1a:8c:4c:54:4b:87:90:49:84:c4:
12:9c:b3:84:ee:52:0e:5e:7c:dc:85:94:3a:31:32:
01:82:d3:f3:06:ee:ae:c4:e8:57:f3:cc:ef:14:3a:
4b:3f:23:da:3d:5b:b9:f1:4a:c2:f7:f7:91:66:15:
7c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6C:FC:4A:EA:AB:4D:C6:6B:2D:D8:A6:62:1B:D5:E5:58:BF:A9:62
X509v3 Authority Key Identifier:
keyid:52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/Qmz8SuqrTcZrLdimYhvV5Vi_qWI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.180.0/22
Signature Algorithm: sha256WithRSAEncryption
68:51:a5:50:10:f4:72:b0:8a:27:f4:92:84:e0:e1:2e:67:b0:
3d:b4:52:d5:dc:f1:2b:04:bf:54:f5:89:0b:6a:7f:f1:3d:53:
83:a3:b1:ac:0d:7f:1d:3a:5f:24:ac:ab:b9:e0:f1:af:a6:42:
2e:63:3c:ee:7a:bb:be:8f:da:86:c3:b4:77:5a:d9:29:eb:db:
bc:84:b1:2c:1d:59:52:de:3d:b2:59:4c:14:38:91:d6:ed:15:
c2:e9:b7:39:58:5b:1b:b5:1a:e2:dc:9d:fb:2f:9b:35:05:c4:
16:f8:bf:60:3b:87:00:b4:d7:ee:4a:ef:cf:12:e5:84:ad:65:
14:e0:94:e2:dc:63:52:c4:de:bb:66:a6:7f:4f:e6:87:fd:be:
03:6c:a1:91:67:df:72:30:35:0e:f1:d8:db:d4:1c:4f:d3:1d:
31:9a:a6:89:41:b1:d4:f8:02:6f:a1:0b:c5:64:96:cf:0b:2b:
96:d3:e7:2c:97:66:a2:7e:94:a5:d9:0c:a1:03:34:ad:a5:86:
bc:a7:a7:1a:4f:90:4c:da:9c:b5:d0:9d:76:e6:35:76:0b:02:
a0:52:5e:36:30:c2:a7:8c:ba:35:0c:a4:b3:7a:4b:41:bc:44:
5f:15:6f:b0:f4:31:e8:47:5a:60:d3:89:4c:a1:1e:22:70:c7:
0e:00:da:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:48 2025 by rpki-client