Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Q_4K7rEceyKFtdoGXSqSawSzbeo.roa
File: Q_4K7rEceyKFtdoGXSqSawSzbeo.roa (raw, json)
Hash identifier: OcwfnWJATb+o3w9yEK54h8qt4pFlT3y0lx47rOkR5Dc=
Subject key identifier: 43:FE:0A:EE:B1:1C:7B:22:85:B5:DA:06:5D:2A:92:6B:04:B3:6D:EA
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0C69
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Q_4K7rEceyKFtdoGXSqSawSzbeo.roa
Signing time: Fri 01 Sep 2023 10:20:40 +0000
ROA not before: Fri 01 Sep 2023 10:20:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18424
IP address blocks: 121.50.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3177 (0xc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 1 10:20:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=43FE0AEEB11C7B2285B5DA065D2A926B04B36DEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:16:69:df:e1:a3:03:6d:4b:bf:0d:db:87:fd:
71:9f:3f:c0:ff:b9:dd:2f:59:64:25:00:d0:67:6d:
c6:f5:0e:92:1c:67:08:40:f8:10:5b:94:0b:78:b3:
5d:28:81:78:99:11:87:4e:45:ba:4e:2e:12:4f:c5:
b3:db:81:94:f4:ca:e9:58:62:42:81:8b:52:ce:e3:
ac:b7:b6:e0:54:e0:b3:ae:2c:9d:6e:de:97:93:42:
34:ee:19:f0:c9:1c:db:b8:5a:a0:76:15:0e:58:a9:
95:82:10:08:5e:98:af:7e:6a:6f:0d:a6:65:06:cf:
ff:84:5b:5a:b7:7f:fc:d0:aa:5e:a7:73:9a:c1:b1:
b8:62:2e:dc:32:6d:bf:34:0c:97:01:5b:cb:5e:ae:
6b:af:7d:05:b6:50:88:95:71:22:27:b4:4b:ba:d3:
28:4f:f5:0d:a7:c8:fb:77:c8:90:c0:0c:7a:ac:ec:
50:d2:a5:ef:8d:04:d8:0e:2a:97:d4:e3:2b:31:2f:
e2:31:33:a1:b2:d6:10:30:25:ea:00:0d:3e:75:75:
f4:a1:bc:b1:ef:e7:dc:22:c2:4e:74:0a:97:cd:7c:
e3:f6:ce:cb:4e:44:e1:14:f3:8d:48:5d:df:91:36:
ed:5f:97:2a:4a:f9:27:c3:54:b7:21:2a:44:a2:bd:
71:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FE:0A:EE:B1:1C:7B:22:85:B5:DA:06:5D:2A:92:6B:04:B3:6D:EA
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Q_4K7rEceyKFtdoGXSqSawSzbeo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.151.0/24
Signature Algorithm: sha256WithRSAEncryption
17:62:e5:96:e5:f0:20:3c:62:de:2d:a9:09:08:8f:95:14:94:
48:48:ef:f9:21:f8:62:19:b7:13:bd:42:6f:b9:4e:69:3b:e2:
73:31:55:2f:bc:da:c5:96:c8:c1:bf:fb:34:25:52:a2:e8:3b:
49:a2:33:a8:05:cf:df:fa:0f:3a:7c:5e:0e:29:e1:bb:0f:f0:
5b:9c:3d:a9:9c:3a:35:bd:95:5c:02:f8:e7:e6:74:41:a6:e0:
b1:30:aa:3a:96:1c:3e:5c:c9:11:3c:d0:e1:16:3f:fa:89:a3:
b4:89:fb:f7:5e:53:ca:85:f1:89:e0:99:f6:50:f5:9b:02:78:
9a:3b:5c:cb:ca:ea:0b:5d:5a:c7:9e:36:3f:81:d1:0a:58:3e:
e8:a9:2f:de:b1:7b:63:93:ca:98:55:52:22:63:b4:45:51:ef:
f6:c2:d2:e4:12:d8:8d:f3:55:a6:29:20:0a:18:bf:db:ae:cf:
c4:d1:41:d4:ee:d3:31:44:c4:17:71:27:f7:5f:fc:a1:0a:b1:
2d:95:ff:b8:e3:be:f2:03:39:65:5c:68:9d:67:94:ae:50:9b:
94:43:6b:98:b9:6d:09:7a:51:2b:48:68:38:43:b5:71:d3:b3:
f1:da:c6:4a:9c:b9:7d:35:7e:bc:5b:dd:8f:9b:52:a0:2c:34:
47:68:db:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org