Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa
File: Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa (raw, json)
Hash identifier: uxJnaNOj0aLy6ueLIlW5j64XM1ApCkRg1gx3k5sT5mc=
Subject key identifier: 65:DF:2A:04:B1:87:E6:82:2E:D0:B0:33:CA:B7:18:2C:14:EB:58:AE
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0B47
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa
Signing time: Fri 01 Sep 2023 08:34:06 +0000
ROA not before: Fri 01 Sep 2023 08:34:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 180.92.0.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2887 (0xb47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 1 08:34:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=65DF2A04B187E6822ED0B033CAB7182C14EB58AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:00:62:fb:dc:2a:27:d1:0d:ac:36:d8:0f:b9:
f0:c3:ab:0a:4e:29:8e:90:82:83:df:7a:82:3d:cb:
a4:e6:a6:22:5d:bb:56:25:75:3b:85:76:d4:f4:93:
c4:8b:d2:96:5b:5e:0d:98:56:ff:3f:1f:f3:f6:ea:
aa:43:ca:39:14:f2:64:04:be:6b:09:c7:b4:c5:f5:
7b:aa:38:9a:32:17:f4:3c:35:b0:5a:10:4c:2e:c2:
f3:0d:0a:54:f4:6f:93:d8:8a:e8:e9:18:d2:fa:7e:
2a:da:f8:0b:e6:5b:22:9a:81:ad:0b:69:27:60:10:
4b:36:08:ee:62:c4:8b:17:9b:95:d8:4a:72:32:c2:
e9:00:69:b6:2a:e2:e5:9c:79:11:39:b1:fe:c6:a9:
ee:a7:c3:2e:1e:e9:11:72:71:9c:81:dd:49:ef:4a:
00:06:b5:4b:a6:80:5f:95:7f:50:85:65:00:42:87:
c9:30:5d:3a:53:ff:76:2c:3e:f2:00:d6:29:14:ab:
ae:66:2c:91:b6:e3:06:a6:b9:ef:ec:42:75:99:d5:
1b:1c:2e:6d:aa:02:4c:ce:d5:75:22:11:2e:c4:b9:
a4:d8:0c:ab:19:74:a8:cc:f2:e5:c1:01:b1:00:c9:
8f:34:91:8f:9b:25:6c:78:29:16:d1:28:44:03:65:
08:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:DF:2A:04:B1:87:E6:82:2E:D0:B0:33:CA:B7:18:2C:14:EB:58:AE
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.92.0.0/20
Signature Algorithm: sha256WithRSAEncryption
be:c6:4d:16:8d:9d:87:70:5b:2a:8a:5c:7f:d6:80:b5:1b:ef:
cc:f2:b7:e0:05:3b:b6:9e:79:94:36:3c:2b:71:65:72:43:cc:
24:0d:54:8f:07:df:90:e0:39:84:89:9b:ba:4d:b3:fb:a8:8c:
dd:b8:eb:35:23:4a:60:35:5a:58:35:b2:5b:6d:6e:51:24:50:
20:b3:15:87:fb:2f:42:d0:1b:be:06:6c:4b:e7:60:a6:73:23:
28:81:5b:0e:a6:1b:ab:dc:eb:f0:1c:81:e4:fd:6c:82:bc:b4:
e9:12:5e:aa:7b:53:53:ce:64:f2:43:65:02:0a:45:80:a9:df:
7b:13:d6:b7:a3:15:4c:24:e7:1f:ef:e9:9c:cf:a0:07:cb:54:
6d:f2:d2:da:ec:5f:dc:ec:fe:13:77:91:31:f0:c2:71:db:6d:
df:b3:3b:24:f4:9c:07:d9:93:a8:6a:4b:e6:f8:c6:4e:eb:1e:
be:76:4b:ff:9f:17:4f:eb:80:83:c2:a8:b1:10:ee:71:47:e3:
ce:d7:fc:34:de:d7:c1:32:0c:3b:b6:5a:6b:5f:9a:f7:70:8a:
78:15:f6:79:85:bd:e4:01:58:c3:d8:a0:6d:d8:41:44:79:f1:
61:98:51:94:76:30:f0:35:ab:59:18:e2:94:21:d8:9d:ea:d6:
91:dc:8f:31
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE
RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMzA5MDEw
ODM0MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1REYyQTA0QjE4N0U2
ODIyRUQwQjAzM0NBQjcxODJDMTRFQjU4QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQAGL73Con0Q2sNtgPufDDqwpOKY6QgoPfeoI9y6TmpiJdu1Yl
dTuFdtT0k8SL0pZbXg2YVv8/H/P26qpDyjkU8mQEvmsJx7TF9XuqOJoyF/Q8NbBa
EEwuwvMNClT0b5PYiujpGNL6fira+AvmWyKaga0LaSdgEEs2CO5ixIsXm5XYSnIy
wukAabYq4uWceRE5sf7Gqe6nwy4e6RFycZyB3UnvSgAGtUumgF+Vf1CFZQBCh8kw
XTpT/3YsPvIA1ikUq65mLJG24wamue/sQnWZ1RscLm2qAkzO1XUiES7EuaTYDKsZ
dKjM8uXBAbEAyY80kY+bJWx4KRbRKEQDZQgxAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUZd8qBLGH5oIu0LAzyrcYLBTrWK4wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv
+/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU
Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvWmQ4cUJMR0g1b0l1MExB
enlyY1lMQlRyV0s0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BLRcADANBgkqhkiG9w0BAQsFAAOCAQEAvsZNFo2dh3BbKopcf9aAtRvvzPK34AU7
tp55lDY8K3FlckPMJA1UjwffkOA5hImbuk2z+6iM3bjrNSNKYDVaWDWyW21uUSRQ
ILMVh/svQtAbvgZsS+dgpnMjKIFbDqYbq9zr8ByB5P1sgry06RJeqntTU85k8kNl
AgpFgKnfexPWt6MVTCTnH+/pnM+gB8tUbfLS2uxf3Oz+E3eRMfDCcdtt37M7JPSc
B9mTqGpL5vjGTusevnZL/58XT+uAg8KosRDucUfjztf8NN7XwTIMO7Zaa1+a93CK
eBX2eYW95AFYw9igbdhBRHnxYZhRlHYw8DWrWRjilCHYnerWkdyPMQ==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org