Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/cP8X894Nik6Pg_fbCUyEeA4AtDA.roa
File: cP8X894Nik6Pg_fbCUyEeA4AtDA.roa (raw, json)
Hash identifier: 6I6lylt2m89uWp5mJkka75zQRb0DvquDiBKZXku+AtM=
Subject key identifier: 70:FF:17:F3:DE:0D:8A:4E:8F:83:F7:DB:09:4C:84:78:0E:00:B4:30
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BCC
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/cP8X894Nik6Pg_fbCUyEeA4AtDA.roa
Signing time: Fri 01 Sep 2023 08:36:46 +0000
ROA not before: Fri 01 Sep 2023 08:36:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9244
IP address blocks: 61.56.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3020 (0xbcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=70FF17F3DE0D8A4E8F83F7DB094C84780E00B430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:86:61:d6:a3:13:6d:27:f4:fe:93:45:de:da:
b7:2c:da:14:6a:3b:15:8f:04:2b:8c:36:30:77:0c:
d9:2c:93:4f:ef:d8:b6:d1:54:c4:26:58:b1:ff:4f:
df:fb:90:bd:e0:8e:dd:b5:91:d9:22:b7:42:a5:ac:
a8:8d:b7:2d:98:f6:0a:e0:54:d9:04:5d:6b:08:76:
67:56:21:b1:f1:5f:8c:57:9a:0d:e7:7b:ee:70:e0:
5a:3a:2f:3e:22:3e:4b:f1:ed:95:d5:d7:bd:4e:39:
d8:9f:28:15:c4:f4:4e:77:34:32:8e:34:37:5f:bd:
86:ba:ac:8b:dc:19:f2:1d:e9:61:44:d9:52:c4:92:
d2:df:8f:76:93:c2:0c:b5:81:b8:b6:96:f0:d1:98:
1b:08:40:67:a0:18:1f:da:0d:ba:0f:40:2d:80:37:
c5:d1:b3:51:35:bf:e2:d3:6e:09:95:88:ad:c0:14:
99:15:db:b1:0f:66:e3:d4:d4:c2:4c:88:a7:fa:af:
71:06:e7:08:5f:76:6f:89:bd:c2:8b:3c:6d:ff:4b:
b3:31:c4:fb:79:83:78:f6:bc:34:42:5e:42:dd:55:
33:cd:6d:e1:52:0a:90:a4:9f:7e:2e:62:55:34:18:
7a:48:6d:2e:9c:a1:8c:6e:11:a8:d5:68:68:f4:1a:
5a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:FF:17:F3:DE:0D:8A:4E:8F:83:F7:DB:09:4C:84:78:0E:00:B4:30
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/cP8X894Nik6Pg_fbCUyEeA4AtDA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.65.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:ff:42:84:0e:9d:87:83:7f:59:70:58:2f:09:56:da:00:3d:
20:a9:44:5b:7c:eb:b4:73:60:a2:50:f0:cb:b5:19:af:e7:41:
c3:50:99:f4:30:b6:17:c9:7b:91:99:13:e5:c7:2e:a3:52:b8:
47:26:19:6d:9f:92:74:08:03:ea:47:b0:c0:e3:7e:87:00:b5:
60:9c:bf:b4:4c:f5:49:c3:78:4b:f2:58:3f:6e:01:cc:f9:a7:
3e:54:db:7a:6f:65:51:b5:2f:5c:1a:0b:1d:1e:88:3d:cd:22:
9f:4f:d8:03:05:67:ee:54:f2:af:60:b7:69:d2:05:a2:60:7c:
30:74:3c:4d:0d:0f:cd:9b:a4:50:8a:16:bc:a1:69:77:25:f9:
aa:3f:85:32:4d:2f:85:b6:5a:40:47:0c:16:bc:68:85:bc:5a:
c4:b8:19:79:d0:fb:ea:a3:7c:67:f9:98:e1:05:50:21:57:14:
4a:ff:41:91:95:27:04:1c:0f:d3:db:53:5b:01:5e:a2:2a:fb:
20:96:9b:58:30:f9:43:f6:c1:98:8b:55:46:7a:5f:d4:37:89:
36:33:d4:e0:de:c2:59:26:a6:e5:6f:8e:d6:f3:cd:e0:ba:61:
67:58:6b:08:b4:86:a9:fb:27:75:2e:fc:68:e9:79:60:4e:7a:
f4:48:cd:ef
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICC8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMzA5MDEw
ODM2NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDcwRkYxN0YzREUwRDhB
NEU4RjgzRjdEQjA5NEM4NDc4MEUwMEI0MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCthmHWoxNtJ/T+k0Xe2rcs2hRqOxWPBCuMNjB3DNksk0/v2LbR
VMQmWLH/T9/7kL3gjt21kdkit0KlrKiNty2Y9grgVNkEXWsIdmdWIbHxX4xXmg3n
e+5w4Fo6Lz4iPkvx7ZXV171OOdifKBXE9E53NDKONDdfvYa6rIvcGfId6WFE2VLE
ktLfj3aTwgy1gbi2lvDRmBsIQGegGB/aDboPQC2AN8XRs1E1v+LTbgmViK3AFJkV
27EPZuPU1MJMiKf6r3EG5whfdm+JvcKLPG3/S7MxxPt5g3j2vDRCXkLdVTPNbeFS
CpCkn34uYlU0GHpIbS6coYxuEajVaGj0GlrfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUcP8X894Nik6Pg/fbCUyEeA4AtDAwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2NQOFg4OTROaWs2UGdfZmJD
VXlFZUE0QXREQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9
OEEwDQYJKoZIhvcNAQELBQADggEBAIz/QoQOnYeDf1lwWC8JVtoAPSCpRFt867Rz
YKJQ8Mu1Ga/nQcNQmfQwthfJe5GZE+XHLqNSuEcmGW2fknQIA+pHsMDjfocAtWCc
v7RM9UnDeEvyWD9uAcz5pz5U23pvZVG1L1waCx0eiD3NIp9P2AMFZ+5U8q9gt2nS
BaJgfDB0PE0ND82bpFCKFryhaXcl+ao/hTJNL4W2WkBHDBa8aIW8WsS4GXnQ++qj
fGf5mOEFUCFXFEr/QZGVJwQcD9PbU1sBXqIq+yCWm1gw+UP2wZiLVUZ6X9Q3iTYz
1ODewlkmpuVvjtbzzeC6YWdYawi0hqn7J3Uu/GjpeWBOevRIze8=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org