Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/xIyRdMmI1dtiCbEaV0nfRfLuTic.roa
File: xIyRdMmI1dtiCbEaV0nfRfLuTic.roa (raw, json)
Hash identifier: WJvGwDG24salfa80T1H82XOz3P5wduo/BUb0bPXf6bY=
Subject key identifier: C4:8C:91:74:C9:88:D5:DB:62:09:B1:1A:57:49:DF:45:F2:EE:4E:27
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C7E
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/xIyRdMmI1dtiCbEaV0nfRfLuTic.roa
Signing time: Fri 01 Sep 2023 08:26:38 +0000
ROA not before: Fri 01 Sep 2023 08:26:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 27.147.8.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3198 (0xc7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C48C9174C988D5DB6209B11A5749DF45F2EE4E27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:49:54:a1:5e:f3:a9:6e:de:63:97:82:1f:77:
9c:c5:4c:19:39:3c:f2:af:38:af:0e:c4:74:b8:c3:
08:37:5a:6e:5e:7d:21:51:20:b7:1a:c1:e9:e7:7e:
6a:1c:7b:34:a9:74:6e:16:bf:ed:56:ca:8a:4d:d9:
4b:56:e5:85:60:c5:2b:e9:47:3b:e6:8c:db:61:bc:
82:40:55:2c:13:f2:66:c9:34:f6:10:0e:8f:0d:0c:
44:18:29:9a:d9:4e:72:3f:72:8c:4e:8c:44:3e:89:
41:82:39:96:0e:7c:5f:c6:56:42:c0:c2:0b:d1:16:
18:63:77:29:46:31:6e:d4:d0:48:c9:05:18:17:68:
9f:38:c4:a3:14:c5:0f:69:0d:4b:f2:68:f4:7b:9f:
25:1c:01:ab:17:05:33:01:bb:32:85:75:ab:a7:20:
dc:b9:64:d8:a2:be:29:41:81:82:ae:d4:66:39:10:
99:04:38:64:fc:c9:18:71:36:60:41:3d:72:58:48:
4b:5c:41:29:72:70:23:85:5a:c3:5f:b8:46:07:c6:
43:37:e5:f1:1a:14:4b:da:8e:f4:92:44:86:5d:0d:
2c:74:9c:d5:8f:fd:65:56:dc:75:2e:e4:56:67:94:
f5:0a:dd:09:97:c0:d6:79:f6:6d:3a:ab:67:b4:29:
92:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8C:91:74:C9:88:D5:DB:62:09:B1:1A:57:49:DF:45:F2:EE:4E:27
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/xIyRdMmI1dtiCbEaV0nfRfLuTic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.8.0/21
Signature Algorithm: sha256WithRSAEncryption
73:b6:bd:2f:99:d4:8d:55:17:6e:94:87:77:e0:ee:71:9d:29:
5c:4e:c2:2c:ea:02:93:39:3c:9d:34:a9:f2:60:91:fa:b6:bd:
90:37:a0:86:ce:28:13:10:ef:3b:e1:a5:9e:18:c8:26:96:7b:
b6:9b:69:37:2a:f2:ea:61:f0:1b:92:81:24:9e:bc:5b:67:ea:
00:8f:ed:6e:99:52:fb:a9:b0:73:11:8f:bd:47:8f:c3:97:ef:
5a:8b:1c:87:df:c2:b8:49:24:50:9c:5d:94:4a:22:9a:16:56:
28:2f:76:04:96:5d:67:0b:ba:25:a6:ef:4f:97:fa:68:fb:4c:
d7:e3:d7:f8:dc:df:97:97:99:2e:d1:83:01:41:4c:88:a6:5f:
14:1d:24:fe:a7:7a:c1:bf:3a:53:ca:46:7f:8a:74:55:8c:6f:
43:81:9e:75:3a:f9:4b:72:09:bf:0c:13:b0:fc:9e:32:0d:16:
92:76:b7:de:89:38:2c:91:dd:b1:7c:fd:00:d9:90:81:b3:7f:
37:b6:bc:2b:7a:e1:cb:b4:39:e3:0a:d9:60:78:d4:f8:bd:ac:
9c:2f:7a:4b:5e:1d:01:95:74:2b:91:72:ab:a8:c9:47:5b:f0:
34:7f:1c:f6:73:7e:ae:93:60:6d:2c:be:1a:f7:b4:25:4e:fa:
41:8c:97:42
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw
ODI2MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0OEM5MTc0Qzk4OEQ1
REI2MjA5QjExQTU3NDlERjQ1RjJFRTRFMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmSVShXvOpbt5jl4Ifd5zFTBk5PPKvOK8OxHS4wwg3Wm5efSFR
ILcawennfmocezSpdG4Wv+1WyopN2UtW5YVgxSvpRzvmjNthvIJAVSwT8mbJNPYQ
Do8NDEQYKZrZTnI/coxOjEQ+iUGCOZYOfF/GVkLAwgvRFhhjdylGMW7U0EjJBRgX
aJ84xKMUxQ9pDUvyaPR7nyUcAasXBTMBuzKFdaunINy5ZNiivilBgYKu1GY5EJkE
OGT8yRhxNmBBPXJYSEtcQSlycCOFWsNfuEYHxkM35fEaFEvajvSSRIZdDSx0nNWP
/WVW3HUu5FZnlPUK3QmXwNZ59m06q2e0KZL5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUxIyRdMmI1dtiCbEaV0nfRfLuTicwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC94SXlSZE1tSTFkdGlDYkVhVjBu
ZlJmTHVUaWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MI
MA0GCSqGSIb3DQEBCwUAA4IBAQBztr0vmdSNVRdulId34O5xnSlcTsIs6gKTOTyd
NKnyYJH6tr2QN6CGzigTEO874aWeGMgmlnu2m2k3KvLqYfAbkoEknrxbZ+oAj+1u
mVL7qbBzEY+9R4/Dl+9aixyH38K4SSRQnF2USiKaFlYoL3YEll1nC7olpu9Pl/po
+0zX49f43N+Xl5ku0YMBQUyIpl8UHST+p3rBvzpTykZ/inRVjG9DgZ51OvlLcgm/
DBOw/J4yDRaSdrfeiTgskd2xfP0A2ZCBs383trwreuHLtDnjCtlgeNT4vaycL3pL
Xh0BlXQrkXKrqMlHW/A0fxz2c36uk2BtLL4a97QlTvpBjJdC
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org