Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/KM4O_7AsC1HIISYA_tl5IqIstuI.roa
File: KM4O_7AsC1HIISYA_tl5IqIstuI.roa (raw, json)
Hash identifier: 2CZIqKaIEEwq4u8XLt6zgjMb3enuK53YL/DVgrVWfKQ=
Subject key identifier: 28:CE:0E:FF:B0:2C:0B:51:C8:21:26:00:FE:D9:79:22:A2:2C:B6:E2
Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Certificate serial: 0AD5
Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/KM4O_7AsC1HIISYA_tl5IqIstuI.roa
Signing time: Fri 01 Sep 2023 08:25:32 +0000
ROA not before: Fri 01 Sep 2023 08:25:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 43.248.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2773 (0xad5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Validity
Not Before: Sep 1 08:25:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=28CE0EFFB02C0B51C8212600FED97922A22CB6E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b7:8a:77:ed:4f:b2:e5:ab:4f:ff:98:31:76:
6f:d7:14:87:65:11:a7:b7:cf:c2:6f:e7:ba:a7:db:
8d:c2:12:a7:41:6b:81:45:16:e9:33:1a:5a:4b:50:
86:ca:38:04:3c:bc:9b:87:6b:d3:f9:a8:b0:79:63:
c6:d0:b7:3e:08:12:16:5b:78:3b:d1:b0:9a:db:e7:
90:73:8b:0d:4e:cd:6a:41:66:43:fe:17:f4:99:c6:
8c:eb:3f:42:28:8a:ee:c3:8b:9b:54:d3:ce:73:14:
59:25:15:1c:6b:da:c0:43:75:44:f4:a9:80:9c:41:
a1:97:0a:ee:21:22:0c:ca:e6:56:64:e1:e6:d1:36:
fc:f4:e5:60:a6:a3:1c:72:05:eb:18:55:11:8b:d7:
09:c7:a6:de:5b:0e:d0:80:a5:38:45:ee:f1:02:a9:
7c:36:4f:04:f9:ae:e2:34:54:bd:74:22:66:69:83:
84:53:a1:09:35:4f:a3:8b:5f:d0:3a:46:24:d3:14:
4b:b9:05:ad:92:b1:ca:df:1e:5a:8a:b7:02:dc:d1:
49:6e:ec:97:f6:56:11:f6:a0:dd:b3:38:5d:35:d3:
7a:a0:41:50:5a:cb:88:06:ae:c7:bd:0d:0b:bd:ca:
dd:3e:75:fd:d9:60:9b:a6:62:74:6e:7c:f2:65:65:
b7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CE:0E:FF:B0:2C:0B:51:C8:21:26:00:FE:D9:79:22:A2:2C:B6:E2
X509v3 Authority Key Identifier:
keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/KM4O_7AsC1HIISYA_tl5IqIstuI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.248.16.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:a1:94:89:29:a6:60:39:21:bd:33:21:48:cc:46:e1:e1:33:
1d:c9:f5:8a:52:59:19:bd:6d:6f:5d:47:e3:fa:d8:5a:d9:08:
6d:df:5b:5e:de:3f:7a:a9:de:ae:42:83:39:59:33:9b:7f:83:
1a:f1:a3:0e:a5:17:8b:c2:dd:94:cf:d9:ad:2e:d7:c0:bd:38:
11:3b:45:d8:ed:fa:1e:56:41:12:6b:02:af:f1:0c:97:72:ce:
6e:8c:88:41:fa:f1:5a:10:41:28:97:8d:01:af:d8:b6:66:94:
77:59:b7:0c:18:df:5a:77:b7:aa:08:87:a8:e4:a2:a8:15:d7:
51:aa:5f:f7:f0:99:db:4e:83:51:2e:27:9b:09:c2:48:5c:5b:
fe:fe:a1:d0:64:0e:1b:40:29:5c:42:b7:5f:a9:b5:ce:f9:a0:
60:4a:85:14:40:2c:88:80:6a:0d:f0:79:8a:52:b5:07:58:dc:
22:cd:dd:d8:03:a4:84:e3:ea:89:7a:ae:2f:1a:6c:cf:ff:4a:
0d:eb:72:71:24:c6:d6:7d:a9:60:ac:ef:f2:b7:d3:c9:7c:4b:
73:d2:1c:a2:a5:c3:5e:da:16:3b:e2:9e:16:33:25:a0:0b:4e:
33:54:0b:04:6e:32:a6:40:9a:fd:25:08:01:c1:31:33:00:41:
e6:be:c4:4f
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4
MjJEOTkyQjBGNjhCNjFFNkUwQTJFNjE0M0YyQkY4OTE1QkI2MTAeFw0yMzA5MDEw
ODI1MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI4Q0UwRUZGQjAyQzBC
NTFDODIxMjYwMEZFRDk3OTIyQTIyQ0I2RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSt4p37U+y5atP/5gxdm/XFIdlEae3z8Jv57qn243CEqdBa4FF
FukzGlpLUIbKOAQ8vJuHa9P5qLB5Y8bQtz4IEhZbeDvRsJrb55Bziw1OzWpBZkP+
F/SZxozrP0Ioiu7Di5tU085zFFklFRxr2sBDdUT0qYCcQaGXCu4hIgzK5lZk4ebR
Nvz05WCmoxxyBesYVRGL1wnHpt5bDtCApThF7vECqXw2TwT5ruI0VL10ImZpg4RT
oQk1T6OLX9A6RiTTFEu5Ba2SscrfHlqKtwLc0Ulu7Jf2VhH2oN2zOF0103qgQVBa
y4gGrse9DQu9yt0+df3ZYJumYnRufPJlZbcRAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUKM4O/7AsC1HIISYA/tl5IqIstuIwHwYDVR0jBBgwFoAUvYItmSsPaLYebgou
YUPyv4kVu2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUVklT
UC92WUl0bVNzUGFMWWViZ291WVVQeXY0a1Z1MkUuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3ZZSXRtU3NQYUxZZWJnb3VZVVB5djRrVnUyRS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NBVFZJU1AvS000T183QXNDMUhJSVNZ
QV90bDVJcUlzdHVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Aiv4EDANBgkqhkiG9w0BAQsFAAOCAQEAzaGUiSmmYDkhvTMhSMxG4eEzHcn1ilJZ
Gb1tb11H4/rYWtkIbd9bXt4/eqnerkKDOVkzm3+DGvGjDqUXi8LdlM/ZrS7XwL04
ETtF2O36HlZBEmsCr/EMl3LOboyIQfrxWhBBKJeNAa/YtmaUd1m3DBjfWne3qgiH
qOSiqBXXUapf9/CZ206DUS4nmwnCSFxb/v6h0GQOG0ApXEK3X6m1zvmgYEqFFEAs
iIBqDfB5ilK1B1jcIs3d2AOkhOPqiXquLxpsz/9KDetycSTG1n2pYKzv8rfTyXxL
c9IcoqXDXtoWO+KeFjMloAtOM1QLBG4ypkCa/SUIAcExMwBB5r7ETw==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org