Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/VB3wfS6seKkTz8x9vzkcGtgU3cA.roa
File: VB3wfS6seKkTz8x9vzkcGtgU3cA.roa (raw, json)
Hash identifier: kpGqk5QXVo2BeUVY3LRZ472taINZRG72NmvInjNeIls=
Subject key identifier: 54:1D:F0:7D:2E:AC:78:A9:13:CF:CC:7D:BF:39:1C:1A:D8:14:DD:C0
Certificate issuer: /CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Certificate serial: 0FF7
Authority key identifier: DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/VB3wfS6seKkTz8x9vzkcGtgU3cA.roa
Signing time: Wed 29 Sep 2021 02:56:08 +0000
ROA not before: Wed 29 Sep 2021 02:56:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 2403:a8c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4087 (0xff7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Validity
Not Before: Sep 29 02:56:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=541DF07D2EAC78A913CFCC7DBF391C1AD814DDC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:de:23:18:02:2e:c7:c1:6c:7c:c2:d1:66:27:
5b:f1:7a:8c:03:a5:af:79:4b:0a:93:d0:f7:ba:dd:
93:9d:55:70:4b:b7:13:bb:6a:29:fa:e3:ce:c0:88:
52:f7:d9:ce:7a:f8:49:a3:cf:ed:af:79:a6:c8:a7:
2a:ce:89:e8:5f:3e:d6:26:a4:77:3a:09:62:13:72:
e4:55:31:42:e9:44:d3:0c:01:8e:ab:ce:f2:cb:86:
90:b5:fb:b7:44:95:f4:17:13:bd:bc:49:ec:6c:78:
0e:83:d8:e5:de:b8:a6:59:55:87:da:1c:6b:49:3b:
5c:f0:a5:49:a6:4d:9b:0e:3a:49:ee:99:36:66:c3:
c9:7b:87:05:22:bd:15:29:50:19:dc:03:90:f5:34:
81:2e:fe:b4:1e:de:bd:28:25:b4:08:5f:53:dc:7d:
a3:28:3c:6e:b0:44:91:3f:e9:d3:7c:e1:17:1e:89:
00:e9:3a:75:94:9d:b5:93:c8:eb:e8:b7:1f:72:37:
ca:0e:fe:cb:56:0b:31:4e:0f:49:81:af:5b:74:81:
40:e2:bb:43:4c:61:4a:47:2f:f5:c8:1d:a8:57:e0:
af:51:50:5d:35:4b:2d:1b:ec:eb:45:70:8c:4f:04:
7e:61:0d:26:dd:7e:07:df:12:fb:65:34:e7:39:ec:
0d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1D:F0:7D:2E:AC:78:A9:13:CF:CC:7D:BF:39:1C:1A:D8:14:DD:C0
X509v3 Authority Key Identifier:
keyid:DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/2zQozMTBLPTxW6-C6rtMagYwRkI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/VB3wfS6seKkTz8x9vzkcGtgU3cA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:a8c0::/32
Signature Algorithm: sha256WithRSAEncryption
9d:96:fe:29:2d:c2:d8:03:74:e2:4a:20:5a:52:84:6a:de:ec:
ec:9f:3b:eb:26:87:b0:cf:2f:3f:79:89:21:2c:55:6e:9b:21:
59:74:2a:8e:b5:26:d2:3c:55:44:c5:d4:d3:9f:c2:22:bc:17:
ff:2e:68:f4:35:3d:0f:cf:e3:7f:f7:74:16:c9:cc:87:29:20:
df:f0:76:ee:ac:a6:30:7a:d8:50:e6:67:36:67:3e:11:ea:09:
15:6e:ac:51:52:3d:95:29:d3:59:de:5d:60:53:5c:f9:0e:ee:
3e:9c:86:2a:d1:fd:d0:f9:55:4c:f1:00:8a:e4:99:74:00:58:
a5:58:1a:e5:6c:da:fb:f2:91:7b:90:96:f8:a7:fe:1d:4d:66:
71:de:c6:8c:28:72:ba:7d:96:63:e6:f9:e8:fe:05:b5:b7:73:
fe:a3:b7:ac:7d:ac:8c:d6:4a:86:92:32:e3:48:61:57:fb:73:
59:e8:e3:a3:e8:45:23:96:9b:be:8c:66:da:40:ea:cc:e9:12:
2c:4d:7e:f9:3b:f2:bf:ed:95:04:9b:6a:e0:05:a1:bc:15:0e:
6f:65:b4:1b:18:f7:12:93:c7:6e:6f:55:d5:09:4a:a6:55:2f:
b4:2b:d6:7a:c5:a4:1b:70:c2:0a:ea:5e:93:8f:10:1d:01:6f:
c5:34:c7:5e
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICD/cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIz
NDI4Q0NDNEMxMkNGNEYxNUJBRjgyRUFCQjRDNkEwNjMwNDY0MjAeFw0yMTA5Mjkw
MjU2MDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU0MURGMDdEMkVBQzc4
QTkxM0NGQ0M3REJGMzkxQzFBRDgxNEREQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCr3iMYAi7HwWx8wtFmJ1vxeowDpa95SwqT0Pe63ZOdVXBLtxO7
ain6487AiFL32c56+Emjz+2veabIpyrOiehfPtYmpHc6CWITcuRVMULpRNMMAY6r
zvLLhpC1+7dElfQXE728SexseA6D2OXeuKZZVYfaHGtJO1zwpUmmTZsOOknumTZm
w8l7hwUivRUpUBncA5D1NIEu/rQe3r0oJbQIX1PcfaMoPG6wRJE/6dN84RceiQDp
OnWUnbWTyOvotx9yN8oO/stWCzFOD0mBr1t0gUDiu0NMYUpHL/XIHahX4K9RUF01
Sy0b7OtFcIxPBH5hDSbdfgffEvtlNOc57A3JAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQUVB3wfS6seKkTz8x9vzkcGtgU3cAwHwYDVR0jBBgwFoAU2zQozMTBLPTxW6+C
6rtMagYwRkIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVWSVNF
SE9TVC8yelFvek1UQkxQVHhXNi1DNnJ0TWFnWXdSa0kuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBLzJ6UW96TVRCTFBUeFc2LUM2cnRNYWdZd1JrSS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFVklTRUhPU1QvVkIzd2ZTNnNl
S2tUejh4OXZ6a2NHdGdVM2NBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC
AAIwBwMFACQDqMAwDQYJKoZIhvcNAQELBQADggEBAJ2W/iktwtgDdOJKIFpShGre
7OyfO+smh7DPLz95iSEsVW6bIVl0Ko61JtI8VUTF1NOfwiK8F/8uaPQ1PQ/P43/3
dBbJzIcpIN/wdu6spjB62FDmZzZnPhHqCRVurFFSPZUp01neXWBTXPkO7j6chirR
/dD5VUzxAIrkmXQAWKVYGuVs2vvykXuQlvin/h1NZnHexowocrp9lmPm+ej+BbW3
c/6jt6x9rIzWSoaSMuNIYVf7c1no46PoRSOWm76MZtpA6szpEixNfvk78r/tlQSb
auAFobwVDm9ltBsY9xKTx25vVdUJSqZVL7Qr1nrFpBtwwgrqXpOPEB0Bb8U0x14=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:58 2025 by rpki-client