Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DNSNET/_WJliCnsxxd2SXdlqYdxnh5Wri8.roa
File: _WJliCnsxxd2SXdlqYdxnh5Wri8.roa (raw, json)
Hash identifier: PrhXgS5E+0okTsFSLGqu2DSawTd8ZSbq5czLfwtJD/o=
Subject key identifier: FD:62:65:88:29:EC:C7:17:76:49:77:65:A9:87:71:9E:1E:56:AE:2F
Certificate issuer: /CN=277895E64BE41B7182664E1345CD57E5D36A1AF2
Certificate serial: 7A
Authority key identifier: 27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/_WJliCnsxxd2SXdlqYdxnh5Wri8.roa
Signing time: Tue 24 Oct 2023 11:31:39 +0000
ROA not before: Tue 24 Oct 2023 11:31:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38842
IP address blocks: 2406:f340::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122 (0x7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=277895E64BE41B7182664E1345CD57E5D36A1AF2
Validity
Not Before: Oct 24 11:31:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FD62658829ECC71776497765A987719E1E56AE2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b5:6c:e5:d6:3c:5e:24:62:f6:1f:2a:3a:89:
bf:79:d4:33:99:04:3a:ed:90:7d:d9:c9:7f:38:f8:
f0:c5:aa:27:36:04:63:78:68:4d:a1:57:49:78:15:
69:f9:4b:f0:0f:c4:1b:f7:c6:7c:1f:48:35:df:ef:
a3:72:09:9f:e2:67:c1:3c:80:28:ec:25:df:95:b4:
76:8b:4e:7e:dd:52:ec:6f:35:8a:9a:dc:a3:09:24:
3e:77:aa:8f:32:6c:1d:3c:9a:e5:09:76:49:d1:5f:
f7:4e:0a:26:f4:73:22:7a:f2:0f:8b:4b:25:9f:a7:
19:ee:4e:29:25:ae:99:eb:24:fa:03:26:97:12:54:
36:79:72:37:e7:6d:b1:81:38:73:41:d0:e3:ec:3d:
15:46:4d:86:0a:b1:ad:14:d3:92:f7:16:43:50:06:
79:b1:48:7a:02:a9:af:58:72:f8:e6:04:44:d1:93:
64:32:cf:f3:14:04:6b:e2:6d:85:2f:01:e4:75:81:
45:45:db:52:ca:31:33:3f:66:ec:1d:5c:87:c3:07:
41:56:76:b9:5b:de:71:be:b2:ba:b2:0d:6e:70:aa:
a7:f6:49:d7:31:1d:d6:2c:32:9d:3f:86:19:bb:62:
b0:73:fb:8a:47:ee:e9:ec:f6:fc:dc:65:60:31:36:
5c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:62:65:88:29:EC:C7:17:76:49:77:65:A9:87:71:9E:1E:56:AE:2F
X509v3 Authority Key Identifier:
keyid:27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/_WJliCnsxxd2SXdlqYdxnh5Wri8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:f340::/32
Signature Algorithm: sha256WithRSAEncryption
01:74:90:57:da:45:2f:81:50:b9:46:04:0b:b3:41:5f:03:00:
c9:07:38:09:6f:99:e9:84:3a:7f:45:7d:50:e7:de:5c:a2:8d:
e7:d9:b1:1c:e9:3f:16:e4:8f:32:47:89:bf:95:b9:bb:37:ca:
c2:b4:05:c9:ec:a6:f1:7b:7e:2d:32:62:2d:f5:73:15:4d:79:
61:02:48:a3:1f:ad:67:28:83:df:84:39:d6:24:ae:fc:6f:e9:
eb:5a:37:86:f6:e8:72:90:94:b5:19:24:d0:16:c6:ce:de:3d:
47:f7:ae:7b:12:04:20:41:ec:bb:43:58:a4:08:2b:27:2c:6f:
01:fd:d8:9e:cb:58:37:a9:e2:42:1c:51:00:da:e3:c6:0b:0b:
1f:78:41:35:ab:63:c8:3e:c2:f2:d6:33:bb:93:31:5f:46:5c:
01:95:1c:d2:bd:55:82:35:c0:6a:28:45:66:09:3b:cf:3e:1d:
f3:ad:2c:cd:08:75:c6:27:f5:77:cc:ee:6f:92:e4:31:e1:99:
aa:c5:96:5d:95:70:c2:96:3c:43:40:c0:1b:f6:4e:75:b1:0b:
dc:74:3f:1d:89:9a:e6:8a:a3:0c:eb:d9:e2:56:30:67:8c:72:
5f:44:48:77:86:4c:ba:d8:ee:ac:32:17:45:36:88:b2:c2:66:
f1:bb:35:e1
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgIBejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNzc4
OTVFNjRCRTQxQjcxODI2NjRFMTM0NUNENTdFNUQzNkExQUYyMB4XDTIzMTAyNDEx
MzEzOVoXDTI0MDgzMTAzMTA1M1owMzExMC8GA1UEAxMoRkQ2MjY1ODgyOUVDQzcx
Nzc2NDk3NzY1QTk4NzcxOUUxRTU2QUUyRjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALa1bOXWPF4kYvYfKjqJv3nUM5kEOu2QfdnJfzj48MWqJzYEY3ho
TaFXSXgVaflL8A/EG/fGfB9INd/vo3IJn+JnwTyAKOwl35W0dotOft1S7G81iprc
owkkPneqjzJsHTya5Ql2SdFf904KJvRzInryD4tLJZ+nGe5OKSWumesk+gMmlxJU
NnlyN+dtsYE4c0HQ4+w9FUZNhgqxrRTTkvcWQ1AGebFIegKpr1hy+OYERNGTZDLP
8xQEa+JthS8B5HWBRUXbUsoxMz9m7B1ch8MHQVZ2uVvecb6yurINbnCqp/ZJ1zEd
1iwynT+GGbtisHP7ikfu6ez2/NxlYDE2XEECAwEAAaOCAe8wggHrMB0GA1UdDgQW
BBT9YmWIKezHF3ZJd2Wph3GeHlauLzAfBgNVHSMEGDAWgBQneJXmS+QbcYJmThNF
zVfl02oa8jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ETlNORVQv
SjNpVjVrdmtHM0dDWms0VFJjMVg1ZE5xR3ZJLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9KM2lWNWt2a0czR0NaazRUUmMxWDVkTnFHdkkuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ETlNORVQvX1dKbGlDbnN4eGQyU1hkbHFZ
ZHhuaDVXcmk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQG
80AwDQYJKoZIhvcNAQELBQADggEBAAF0kFfaRS+BULlGBAuzQV8DAMkHOAlvmemE
On9FfVDn3lyijefZsRzpPxbkjzJHib+Vubs3ysK0BcnspvF7fi0yYi31cxVNeWEC
SKMfrWcog9+EOdYkrvxv6etaN4b26HKQlLUZJNAWxs7ePUf3rnsSBCBB7LtDWKQI
KycsbwH92J7LWDep4kIcUQDa48YLCx94QTWrY8g+wvLWM7uTMV9GXAGVHNK9VYI1
wGooRWYJO88+HfOtLM0IdcYn9XfM7m+S5DHhmarFll2VcMKWPENAwBv2TnWxC9x0
Px2JmuaKowzr2eJWMGeMcl9ESHeGTLrY7qwyF0U2iLLCZvG7NeE=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org