Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa
File: qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa (raw, json)
Hash identifier: nyijychB313wAjxGDEReIYtEmQX3Bq4NPOYW71jKwc0=
Subject key identifier: A9:42:78:83:DA:AC:4E:A7:BC:66:55:62:51:F8:C4:10:83:FC:26:34
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0F5A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa
Signing time: Fri 01 Sep 2023 08:29:01 +0000
ROA not before: Fri 01 Sep 2023 08:29:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 223.26.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3930 (0xf5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 1 08:29:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A9427883DAAC4EA7BC66556251F8C41083FC2634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ae:b0:0f:38:cd:d0:89:71:68:2e:92:b7:65:
95:30:e4:bf:21:8a:90:f3:2d:eb:49:07:5f:b4:01:
56:7e:7d:ba:10:9a:4a:cd:65:db:20:1e:f9:49:7b:
4f:a1:6e:9e:a0:89:ea:1d:1c:a8:b4:a1:78:12:41:
63:7c:76:85:c9:46:5f:4a:35:84:32:6b:2b:ff:14:
46:00:4e:1a:23:48:45:78:a6:3b:6a:2a:48:26:b4:
a7:a2:f7:70:af:42:6c:a2:18:d9:3e:23:5f:5c:20:
54:1b:3c:ee:eb:49:e8:86:33:10:68:92:8d:0c:4b:
b6:4c:51:5d:4b:a1:a9:41:32:47:6b:37:1b:7d:05:
a3:16:0a:19:d8:a1:cd:81:8d:b4:01:27:ae:a8:5f:
dc:03:02:c1:f1:eb:36:70:d5:1f:04:ec:33:f1:bd:
21:72:cc:ec:73:0a:ac:4f:e5:bd:a0:a0:8c:00:90:
26:72:02:a3:cd:33:6f:d7:81:3c:a4:f5:ad:79:ff:
17:d6:30:ac:73:86:4d:51:c6:b0:d8:48:7c:50:41:
96:e0:34:d0:fb:b0:0a:9d:81:ed:3d:04:52:1e:7b:
df:3d:a8:ad:ca:8a:3d:24:c6:12:b4:55:69:3e:7b:
7d:d1:23:56:f6:a0:12:7c:ab:e4:60:6b:67:c7:6b:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:42:78:83:DA:AC:4E:A7:BC:66:55:62:51:F8:C4:10:83:FC:26:34
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.26.88.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:cc:69:43:e6:34:cf:ae:54:9b:82:b3:4c:12:f0:44:d6:e1:
d0:1e:1c:b4:ef:fe:37:f9:b4:ba:7b:3f:24:81:b8:00:89:a6:
b6:d2:72:51:b7:eb:ef:df:89:75:0f:5e:61:b8:1b:5f:71:5b:
a4:18:a0:29:7e:44:3a:87:b9:9b:32:e8:92:41:a8:8a:48:ee:
1c:31:1e:c8:3c:bb:97:81:c6:ec:12:d0:f2:70:7c:08:70:ee:
02:b8:ab:8d:f6:66:36:bd:ab:b3:6f:b2:6a:6c:32:f1:31:77:
e6:06:08:78:13:28:81:7f:53:20:b4:c1:a0:f5:fc:1d:2b:ca:
46:88:56:fd:45:c1:3c:58:bf:d3:46:43:43:e6:a4:48:f0:98:
47:27:ce:9b:ae:01:fe:e5:b6:14:5a:a0:e0:76:16:03:5d:19:
c9:9c:94:cf:7f:ad:31:b0:f8:3f:83:10:88:0a:db:39:3c:38:
27:ae:15:33:08:14:22:9c:8e:f3:f9:8a:cf:91:6d:5a:3a:08:
b3:2d:14:4d:f7:cd:d4:23:41:d0:67:27:70:4b:b6:93:b1:5a:
74:70:8f:30:51:ce:4d:0f:69:d7:8a:cb:03:97:1a:1e:db:f3:
4e:14:7c:b5:87:ad:0d:53:e9:72:bf:2d:f8:c3:63:98:c3:24:
a3:02:5b:f1
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICD1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw
ODI5MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE5NDI3ODgzREFBQzRF
QTdCQzY2NTU2MjUxRjhDNDEwODNGQzI2MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIrrAPOM3QiXFoLpK3ZZUw5L8hipDzLetJB1+0AVZ+fboQmkrN
ZdsgHvlJe0+hbp6gieodHKi0oXgSQWN8doXJRl9KNYQyayv/FEYAThojSEV4pjtq
KkgmtKei93CvQmyiGNk+I19cIFQbPO7rSeiGMxBoko0MS7ZMUV1LoalBMkdrNxt9
BaMWChnYoc2BjbQBJ66oX9wDAsHx6zZw1R8E7DPxvSFyzOxzCqxP5b2goIwAkCZy
AqPNM2/XgTyk9a15/xfWMKxzhk1RxrDYSHxQQZbgNND7sAqdge09BFIee989qK3K
ij0kxhK0VWk+e33RI1b2oBJ8q+Rga2fHa29BAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUqUJ4g9qsTqe8ZlViUfjEEIP8JjQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xVUo0Zzlxc1RxZTha
bFZpVWZqRUVJUDhKalEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQC3xpYMA0GCSqGSIb3DQEBCwUAA4IBAQC1zGlD5jTPrlSbgrNMEvBE1uHQHhy0
7/43+bS6ez8kgbgAiaa20nJRt+vv34l1D15huBtfcVukGKApfkQ6h7mbMuiSQaiK
SO4cMR7IPLuXgcbsEtDycHwIcO4CuKuN9mY2vauzb7JqbDLxMXfmBgh4EyiBf1Mg
tMGg9fwdK8pGiFb9RcE8WL/TRkND5qRI8JhHJ86brgH+5bYUWqDgdhYDXRnJnJTP
f60xsPg/gxCICts5PDgnrhUzCBQinI7z+YrPkW1aOgizLRRN983UI0HQZydwS7aT
sVp0cI8wUc5ND2nXissDlxoe2/NOFHy1h60NU+lyvy34w2OYwySjAlvx
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org