Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LSRJvpg8JWdibVbGwJLW1VHj3nI.roa
File: LSRJvpg8JWdibVbGwJLW1VHj3nI.roa (raw, json)
Hash identifier: Ajw9OQkkeF+kVpihTxqUYZRt8Mcb7CN2/boWwb6pIFA=
Subject key identifier: 2D:24:49:BE:98:3C:25:67:62:6D:56:C6:C0:92:D6:D5:51:E3:DE:72
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BCF
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LSRJvpg8JWdibVbGwJLW1VHj3nI.roa
Signing time: Fri 01 Sep 2023 08:36:47 +0000
ROA not before: Fri 01 Sep 2023 08:36:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9244
IP address blocks: 2403:ee00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3023 (0xbcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2D2449BE983C2567626D56C6C092D6D551E3DE72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:58:55:09:05:4c:ff:e7:4c:6e:6d:43:e3:7a:
db:8e:6f:25:b1:5c:b2:0a:fe:5c:55:f6:50:44:be:
4a:a2:ea:c2:9d:aa:08:ca:68:78:d9:e6:31:c2:b4:
c8:5b:a9:e3:0e:ec:88:b6:56:14:54:a3:4a:f4:e1:
e9:80:34:0a:d6:ce:cf:2f:7b:97:4b:fd:2e:60:2c:
47:21:77:fa:41:46:ed:95:73:91:08:a2:b0:9d:1e:
83:9e:56:bc:fa:a8:be:97:39:32:03:85:c1:f8:c7:
4c:4a:c3:0a:ce:a1:fd:69:0f:93:78:37:f3:79:2a:
a8:d6:9a:2d:b9:a1:33:19:d7:cc:8a:66:cb:cd:c7:
27:a5:31:3d:06:5e:fa:a9:e6:49:8a:85:9d:3d:ab:
a2:d1:5b:e0:40:75:68:8d:92:5c:be:eb:3a:9f:1d:
f1:e9:b7:f9:84:3a:1b:52:c4:fd:2b:15:b7:1b:5e:
86:8a:3e:c0:9d:50:02:7e:50:28:a8:03:c7:c4:15:
8a:f7:1c:1a:ac:3a:35:84:67:7f:8f:7a:b2:78:4a:
c8:33:fd:2a:ff:44:60:ef:86:d5:cd:4c:a8:58:0c:
2d:64:81:47:97:4b:f4:d9:06:1e:98:e1:8c:e7:0a:
aa:42:76:db:1d:ce:ba:84:bb:4e:0d:7f:f4:ae:31:
c0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:24:49:BE:98:3C:25:67:62:6D:56:C6:C0:92:D6:D5:51:E3:DE:72
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/LSRJvpg8JWdibVbGwJLW1VHj3nI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
ad:1d:9b:49:00:35:be:45:39:af:ba:2f:d3:dd:a8:67:0c:6f:
7a:df:88:64:39:43:fa:a9:7d:82:a6:6a:0f:b3:90:cc:48:ba:
36:fd:62:0b:7d:3e:96:e5:a0:ae:53:50:7d:74:92:02:97:46:
e2:be:dc:e2:e8:1a:ce:df:7b:b2:aa:3d:c8:b3:31:dd:73:98:
b1:b3:1b:45:0e:50:68:0e:b7:ff:b7:4b:55:d5:2b:fd:a4:5d:
5a:d1:6e:a1:c2:25:76:c5:d8:2a:50:86:0b:48:e6:c9:9d:93:
04:c0:f5:fe:f6:db:e2:d3:c9:24:8f:1e:05:4a:fd:81:2d:45:
4f:e0:d4:f0:16:38:5c:c8:7b:94:28:db:59:87:a3:d3:20:2d:
71:b1:92:d1:43:47:a4:e0:a9:2d:f4:6d:38:0e:d2:70:c1:29:
10:dd:10:74:b2:d4:bf:9a:9c:65:5c:29:40:91:36:3c:73:79:
ae:3e:8e:45:7d:2d:0b:7d:cb:87:9e:47:19:8e:32:d9:c0:27:
83:49:07:f7:94:0e:09:3d:70:01:26:4a:34:00:33:74:d6:69:
9e:46:bd:04:b5:93:89:34:86:e3:ad:5e:28:80:81:01:d6:c8:
1a:ba:da:fb:a5:2b:15:f7:96:a6:29:7e:dc:d3:d8:0c:e5:10:
24:cc:a7:33
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICC88wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw
ODM2NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJEMjQ0OUJFOTgzQzI1
Njc2MjZENTZDNkMwOTJENkQ1NTFFM0RFNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEWFUJBUz/50xubUPjetuObyWxXLIK/lxV9lBEvkqi6sKdqgjK
aHjZ5jHCtMhbqeMO7Ii2VhRUo0r04emANArWzs8ve5dL/S5gLEchd/pBRu2Vc5EI
orCdHoOeVrz6qL6XOTIDhcH4x0xKwwrOof1pD5N4N/N5KqjWmi25oTMZ18yKZsvN
xyelMT0GXvqp5kmKhZ09q6LRW+BAdWiNkly+6zqfHfHpt/mEOhtSxP0rFbcbXoaK
PsCdUAJ+UCioA8fEFYr3HBqsOjWEZ3+PerJ4Ssgz/Sr/RGDvhtXNTKhYDC1kgUeX
S/TZBh6Y4YznCqpCdtsdzrqEu04Nf/SuMcBlAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQULSRJvpg8JWdibVbGwJLW1VHj3nIwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0xTUkp2cGc4SldkaWJWYkd3
SkxXMVZIajNuSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
A+4AMA0GCSqGSIb3DQEBCwUAA4IBAQCtHZtJADW+RTmvui/T3ahnDG9634hkOUP6
qX2CpmoPs5DMSLo2/WILfT6W5aCuU1B9dJICl0bivtzi6BrO33uyqj3IszHdc5ix
sxtFDlBoDrf/t0tV1Sv9pF1a0W6hwiV2xdgqUIYLSObJnZMEwPX+9tvi08kkjx4F
Sv2BLUVP4NTwFjhcyHuUKNtZh6PTIC1xsZLRQ0ek4Kkt9G04DtJwwSkQ3RB0stS/
mpxlXClAkTY8c3muPo5FfS0LfcuHnkcZjjLZwCeDSQf3lA4JPXABJko0ADN01mme
Rr0EtZOJNIbjrV4ogIEB1sgautr7pSsV95amKX7c09gM5RAkzKcz
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org