Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa
File: 5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa (raw, json)
Hash identifier: 3Pbei0HfC2lQX8eqP5+U/fZSX7Oj3gdEu4ecYRw09KM=
Subject key identifier: E6:28:E8:FC:5C:FD:45:26:8D:B3:4B:B8:63:CD:0D:24:EA:C8:79:51
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0C58
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa
Signing time: Fri 01 Sep 2023 10:20:35 +0000
ROA not before: Fri 01 Sep 2023 10:20:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18424
IP address blocks: 121.50.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3160 (0xc58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 1 10:20:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E628E8FC5CFD45268DB34BB863CD0D24EAC87951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:89:dd:71:ca:a0:01:01:d5:d0:33:cd:a1:b3:
d0:0a:f9:d5:d5:48:7d:61:3b:26:2f:55:15:63:aa:
33:95:49:69:f3:96:4b:bc:31:37:31:83:60:2f:c8:
16:9d:d0:27:09:25:bb:8e:db:15:85:1a:e3:85:a2:
42:74:7b:d5:87:44:c5:ba:64:81:23:d1:16:39:06:
52:21:8c:19:63:19:a0:89:a7:03:58:50:a2:86:d4:
24:3d:08:36:04:7c:78:80:ac:7d:3d:07:a7:01:b4:
bc:83:e9:78:27:6b:c6:ce:90:3f:e9:ef:d6:f8:3d:
6a:20:2b:66:7e:91:3c:cb:66:3d:19:40:55:25:cc:
94:40:de:81:88:64:4d:fc:32:49:5c:01:de:ae:a8:
32:18:cb:29:da:6c:fe:c8:a5:14:de:80:1b:ac:69:
0e:d0:cc:fe:eb:95:1d:7e:42:1c:3e:a4:e2:b2:f0:
1f:9b:89:9a:92:dc:ba:95:f2:27:a4:dd:cc:8f:66:
cd:a9:12:5b:e3:68:07:2b:bf:41:94:1b:50:2d:47:
13:4a:88:19:56:cf:db:b7:66:fa:39:37:11:4e:29:
fb:bd:59:09:6a:2a:e9:14:e7:9e:7d:4f:48:cc:2d:
91:09:23:27:b0:50:f1:69:95:fb:df:68:06:dc:24:
04:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:28:E8:FC:5C:FD:45:26:8D:B3:4B:B8:63:CD:0D:24:EA:C8:79:51
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/5ijo_Fz9RSaNs0u4Y80NJOrIeVE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.147.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:f0:f7:4b:b6:db:c5:f6:54:d1:e2:71:4c:b7:ae:87:5b:72:
2a:fb:17:27:e9:44:a5:75:c9:66:94:9f:3e:7e:29:af:f8:7c:
6b:0d:97:9d:21:37:a2:a1:9d:68:30:11:ad:38:e6:03:f1:05:
ee:1d:af:e5:95:91:36:19:03:96:4d:1d:80:92:1d:e6:c4:db:
42:fd:de:db:30:b6:72:55:95:86:2b:e5:aa:48:4f:ff:6e:97:
f3:d3:c6:92:e1:cf:e5:51:dd:16:3f:6c:c5:71:74:50:7d:81:
28:ae:fd:9a:be:78:31:80:90:66:15:78:75:38:aa:7d:96:b4:
e0:ac:3c:7d:45:8e:cd:77:7d:c2:6e:17:54:26:e1:c5:33:de:
b3:d5:c2:1b:ed:8a:d9:ba:69:9b:76:e1:de:14:39:48:6a:f0:
83:b0:31:66:d0:0e:d8:57:d8:f0:79:61:ec:71:dd:3d:33:d4:
d5:bf:21:ed:c4:92:62:55:51:5b:b4:2a:77:b7:d5:cf:13:8f:
e3:84:df:ef:f2:56:e1:32:a6:fa:c1:92:d8:74:ce:52:b0:a1:
f3:66:8d:63:12:72:4d:c0:57:e3:a8:3c:91:38:c9:9a:24:69:
6b:0a:9a:3a:77:4c:7b:4a:70:12:14:8a:dd:d4:1e:8f:b2:44:
d3:aa:ad:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:22 2024 by rpki-client on console-ams.rpki-client.org