Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa
File: EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa (raw, json)
Hash identifier: CnIb2R1cFieKjfy3Uj7Ol2mWfLvbInSsie3w7mtL2es=
Subject key identifier: 10:F8:EB:97:C8:B1:F4:1C:31:18:EE:D2:9C:CF:59:BE:47:F4:81:5A
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B8C
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa
Signing time: Fri 01 Sep 2023 08:35:39 +0000
ROA not before: Fri 01 Sep 2023 08:35:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 61.65.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2956 (0xb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 1 08:35:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=10F8EB97C8B1F41C3118EED29CCF59BE47F4815A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:da:20:5e:a7:0c:f4:35:a9:3c:05:79:e2:
92:51:f0:6b:f5:6b:5c:9f:60:5d:28:c7:4c:f9:04:
50:9b:fd:66:9f:98:fa:63:a4:44:09:2c:7e:69:13:
94:e1:9f:11:67:cb:0e:ee:2e:aa:9c:8b:87:53:ee:
8c:79:61:95:08:73:e0:38:ad:1c:ae:90:35:80:6a:
94:44:53:c3:cf:8d:0c:16:c0:9f:78:40:e5:91:2d:
42:09:68:56:d6:55:ef:77:e4:ad:4d:ed:21:ee:d7:
e0:94:be:31:6d:ed:e7:06:4c:85:8f:fe:60:36:0a:
9e:cb:61:3a:f9:77:98:fe:a1:3e:f3:99:bf:96:dd:
7c:bc:48:b7:2a:84:10:ee:79:c1:a0:86:bb:d6:2b:
f2:22:12:ae:15:bd:b2:83:3c:ed:10:12:52:cc:6e:
14:62:86:83:6c:00:33:ff:3b:a6:e9:6e:4d:5b:a4:
ad:21:19:5a:26:b7:8a:df:88:42:4f:06:44:32:b3:
82:3b:c4:1c:49:09:9f:f7:d5:71:2c:67:e2:ec:c3:
86:8a:d5:0e:c3:92:aa:bb:2d:7f:ba:f9:35:20:f9:
12:d4:35:8f:06:3f:ac:7f:05:fb:66:a2:bf:8c:5b:
60:d5:1b:c3:b3:62:28:bb:78:36:36:d4:83:94:3a:
bd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F8:EB:97:C8:B1:F4:1C:31:18:EE:D2:9C:CF:59:BE:47:F4:81:5A
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/EPjrl8ix9BwxGO7SnM9Zvkf0gVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.236.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:ac:30:c1:e7:6f:b0:1a:f8:f6:c3:cb:22:f7:97:90:56:f3:
94:c2:aa:41:b4:d3:34:f4:85:a6:c4:c2:a7:79:aa:ad:a2:e7:
4c:72:af:d5:d8:4b:97:db:ca:80:fb:88:8e:66:9b:d2:65:a8:
02:a1:1b:5e:2d:39:df:32:8f:fd:cd:80:a2:57:0c:9e:f5:9b:
bb:21:ef:80:39:1d:42:97:e3:84:77:7b:98:78:ae:f3:77:64:
2a:68:e6:bb:5c:45:a7:50:11:5b:7d:26:0c:99:ab:ad:50:8a:
60:78:c1:f0:cc:b9:a1:ec:53:0e:8d:a7:04:e8:58:79:d9:06:
c7:85:6a:aa:b1:9e:2a:19:6c:35:37:62:05:08:85:48:d7:e9:
b3:0a:b2:c0:02:2f:64:c1:7b:45:97:15:a2:11:96:f1:79:57:
fc:44:4d:43:29:a7:ce:59:de:df:ae:12:c4:12:d9:38:05:ff:
69:0b:1b:bf:3c:d7:24:f8:90:80:ed:2c:10:70:0f:ba:90:1c:
08:3b:ea:7b:0c:f6:c9:af:67:7c:24:5a:01:e9:ca:f9:d6:f7:
ed:85:96:7a:6b:57:8a:2f:07:d6:26:b7:4a:71:f9:62:8d:f8:
f4:7d:e7:6b:14:bb:97:62:17:f0:ee:e4:cf:9b:ec:26:5b:c8:
05:0f:12:cd
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw
ODM1MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDEwRjhFQjk3QzhCMUY0
MUMzMTE4RUVEMjlDQ0Y1OUJFNDdGNDgxNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEQNogXqcM9DWpPAV54pJR8Gv1a1yfYF0ox0z5BFCb/WafmPpj
pEQJLH5pE5ThnxFnyw7uLqqci4dT7ox5YZUIc+A4rRyukDWAapREU8PPjQwWwJ94
QOWRLUIJaFbWVe935K1N7SHu1+CUvjFt7ecGTIWP/mA2Cp7LYTr5d5j+oT7zmb+W
3Xy8SLcqhBDuecGghrvWK/IiEq4VvbKDPO0QElLMbhRihoNsADP/O6bpbk1bpK0h
GVomt4rfiEJPBkQys4I7xBxJCZ/31XEsZ+Lsw4aK1Q7Dkqq7LX+6+TUg+RLUNY8G
P6x/Bftmor+MW2DVG8OzYii7eDY21IOUOr3vAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUEPjrl8ix9BwxGO7SnM9Zvkf0gVowHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9FUGpybDhpeDlCd3hH
TzdTbk05WnZrZjBnVm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCPUHsMA0GCSqGSIb3DQEBCwUAA4IBAQCzrDDB52+wGvj2w8si95eQVvOUwqpB
tNM09IWmxMKneaqtoudMcq/V2EuX28qA+4iOZpvSZagCoRteLTnfMo/9zYCiVwye
9Zu7Ie+AOR1Cl+OEd3uYeK7zd2QqaOa7XEWnUBFbfSYMmautUIpgeMHwzLmh7FMO
jacE6Fh52QbHhWqqsZ4qGWw1N2IFCIVI1+mzCrLAAi9kwXtFlxWiEZbxeVf8RE1D
KafOWd7frhLEEtk4Bf9pCxu/PNck+JCA7SwQcA+6kBwIO+p7DPbJr2d8JFoB6cr5
1vfthZZ6a1eKLwfWJrdKcflijfj0fedrFLuXYhfw7uTPm+wmW8gFDxLN
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org