Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/kk5Wjc-YkHfd083q0idJZJ8EZpI.roa
File: kk5Wjc-YkHfd083q0idJZJ8EZpI.roa (raw, json)
Hash identifier: aCKKTYHPbVayRQEAhNPp8uLdBWabNlh5V4lXSvIr6H4=
Subject key identifier: 92:4E:56:8D:CF:98:90:77:DD:D3:CD:EA:D2:27:49:64:9F:04:66:92
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C73
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/kk5Wjc-YkHfd083q0idJZJ8EZpI.roa
Signing time: Fri 01 Sep 2023 08:26:35 +0000
ROA not before: Fri 01 Sep 2023 08:26:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 27.147.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3187 (0xc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=924E568DCF989077DDD3CDEAD22749649F046692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:68:23:b4:3a:96:3a:48:2c:df:2b:11:a6:63:
2d:ec:1c:55:3d:b7:e8:0e:a6:17:a4:e8:b9:92:8a:
14:da:84:14:b9:a7:76:b7:5b:5b:76:5f:9c:2a:b6:
d1:14:51:e5:75:2a:e6:ab:31:4d:37:93:42:8b:dd:
28:c4:eb:cb:0b:41:6c:e3:ae:70:09:99:de:69:78:
7b:01:81:db:4f:68:07:04:f2:ef:45:78:f7:b6:93:
bd:74:97:f0:44:07:02:36:51:9c:90:00:dd:54:6b:
e1:50:3a:af:19:1b:72:98:06:93:00:1c:f4:3d:a2:
8a:cd:e6:da:cc:37:17:20:1d:13:44:63:23:13:31:
79:c1:a3:dc:74:f7:e0:00:57:8c:dd:a8:28:6a:d9:
b7:b5:95:2b:5c:2a:84:e2:7f:24:8c:16:e2:61:9b:
a3:64:c6:62:7a:f6:e5:dd:bb:df:9d:4b:f7:22:3c:
d3:66:4e:b1:1d:d6:d8:ff:ce:a2:43:ef:90:f1:43:
3f:d1:75:28:0a:3e:00:cb:5c:81:d9:56:fd:e0:e7:
d8:f5:e0:d1:43:41:16:d7:37:94:a4:d5:41:8a:bb:
2a:92:c2:97:64:32:db:c7:11:56:b8:d9:bc:d2:12:
19:99:6d:13:fc:e8:88:01:30:57:43:8e:d7:dd:b1:
4f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:4E:56:8D:CF:98:90:77:DD:D3:CD:EA:D2:27:49:64:9F:04:66:92
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/kk5Wjc-YkHfd083q0idJZJ8EZpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.56.0/21
Signature Algorithm: sha256WithRSAEncryption
29:0e:f9:02:15:d5:e2:24:89:52:5f:34:40:39:95:36:8b:86:
f5:ea:4f:a9:0b:fa:47:6c:2a:e1:20:73:15:53:9a:64:e3:4d:
e6:d7:3e:be:18:cb:b8:33:e8:49:da:17:96:94:35:3e:eb:f6:
af:a6:b6:ff:b6:e2:a6:36:c9:a2:d7:11:af:ed:ad:6c:75:26:
e4:16:a7:a7:86:77:f0:05:19:bf:65:7e:d2:92:f3:d6:c0:21:
f1:fe:a1:09:78:87:96:f9:33:6c:38:35:f1:42:56:c8:65:c9:
16:53:6d:6c:f9:42:31:5a:71:f0:dd:ec:de:82:b3:29:c5:4b:
3b:cc:09:d8:30:16:b6:33:37:45:5b:ad:3f:49:47:87:45:75:
39:7a:8a:09:86:7d:62:75:08:db:1f:c4:08:fa:ba:69:a6:33:
f8:d0:54:60:1e:c0:7b:64:8d:2c:26:4f:0b:a6:e9:12:74:7e:
fb:e6:ec:1a:96:de:a6:50:bd:52:41:40:91:21:f3:2f:84:20:
3c:73:95:51:af:a4:59:fd:45:fc:23:e5:e1:03:ae:35:4b:41:
b0:2a:30:87:28:fa:07:bc:7e:b7:95:17:01:58:c6:96:cf:16:
ec:46:10:46:7d:b3:61:20:d3:4b:dc:1a:61:a2:3a:2c:15:db:
aa:c6:a7:34
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw
ODI2MzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkyNEU1NjhEQ0Y5ODkw
NzdEREQzQ0RFQUQyMjc0OTY0OUYwNDY2OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkaCO0OpY6SCzfKxGmYy3sHFU9t+gOphek6LmSihTahBS5p3a3
W1t2X5wqttEUUeV1KuarMU03k0KL3SjE68sLQWzjrnAJmd5peHsBgdtPaAcE8u9F
ePe2k710l/BEBwI2UZyQAN1Ua+FQOq8ZG3KYBpMAHPQ9oorN5trMNxcgHRNEYyMT
MXnBo9x09+AAV4zdqChq2be1lStcKoTifySMFuJhm6NkxmJ69uXdu9+dS/ciPNNm
TrEd1tj/zqJD75DxQz/RdSgKPgDLXIHZVv3g59j14NFDQRbXN5Sk1UGKuyqSwpdk
MtvHEVa42bzSEhmZbRP86IgBMFdDjtfdsU+NAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUkk5Wjc+YkHfd083q0idJZJ8EZpIwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9razVXamMtWWtIZmQwODNxMGlk
SlpKOEVacEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5M4
MA0GCSqGSIb3DQEBCwUAA4IBAQApDvkCFdXiJIlSXzRAOZU2i4b16k+pC/pHbCrh
IHMVU5pk403m1z6+GMu4M+hJ2heWlDU+6/avprb/tuKmNsmi1xGv7a1sdSbkFqen
hnfwBRm/ZX7SkvPWwCHx/qEJeIeW+TNsODXxQlbIZckWU21s+UIxWnHw3ezegrMp
xUs7zAnYMBa2MzdFW60/SUeHRXU5eooJhn1idQjbH8QI+rpppjP40FRgHsB7ZI0s
Jk8LpukSdH775uwalt6mUL1SQUCRIfMvhCA8c5VRr6RZ/UX8I+XhA641S0GwKjCH
KPoHvH63lRcBWMaWzxbsRhBGfbNhINNL3BphojosFduqxqc0
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org