Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa
File: JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa (raw, json)
Hash identifier: JlXW5t1eO1HtWn+soS2lswi5QKPsd51ZKAJ9YL3Dd/Q=
Subject key identifier: 25:29:71:3A:E1:A0:BF:F8:44:2B:44:AB:86:94:6B:C6:12:86:BC:15
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E14
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa
Signing time: Fri 01 Sep 2023 08:49:16 +0000
ROA not before: Fri 01 Sep 2023 08:49:16 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3604 (0xe14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:16 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2529713AE1A0BFF8442B44AB86946BC61286BC15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:35:5e:e5:73:8a:aa:b5:84:3f:7a:0a:f9:2c:
45:ae:0c:23:ac:0b:f4:63:19:f6:37:3a:eb:c7:3e:
94:05:24:fa:fc:54:4a:44:8e:28:58:ca:0e:3d:04:
45:36:87:2f:d7:cc:88:13:ef:94:56:3c:f3:08:a3:
e2:0a:41:42:81:11:36:9b:20:29:88:70:38:59:6d:
f7:8f:07:af:00:1e:04:d3:c5:a1:f4:fe:a4:64:f8:
0b:2f:1c:f8:11:1b:f7:21:13:03:62:ab:fc:01:a4:
a8:d6:d6:9a:85:fc:0f:69:92:07:a9:41:68:9d:8e:
e6:1e:e3:c4:d4:5f:c1:76:a9:85:ec:e5:ef:b1:4b:
cd:19:53:b4:3d:20:ce:eb:8d:c6:d3:29:05:af:57:
11:f9:e4:4b:d0:c8:c5:1a:c6:3e:cd:dd:47:28:a8:
67:60:32:40:6c:f6:d9:56:bd:fb:10:92:ce:5e:65:
da:bc:0a:2d:9c:30:50:94:73:e5:08:36:66:9b:67:
e9:17:2a:29:a3:3e:3c:cb:53:f7:70:dd:4c:82:bf:
37:00:48:e8:3f:b3:d2:71:c5:d4:ae:e4:4f:80:a6:
c9:53:b7:6c:49:1f:5d:eb:14:15:a2:4f:70:02:9b:
20:b7:04:99:0a:18:87:ec:c0:a8:8a:0c:e6:cb:09:
0a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:29:71:3A:E1:A0:BF:F8:44:2B:44:AB:86:94:6B:C6:12:86:BC:15
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/JSlxOuGgv_hEK0SrhpRrxhKGvBU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.224.0/19
Signature Algorithm: sha256WithRSAEncryption
79:78:18:b5:da:c1:70:a5:ef:dc:63:34:d7:0c:90:cd:52:f4:
95:67:91:b1:e6:3e:60:e6:ea:f1:24:7a:7f:7d:d9:a3:63:a0:
46:65:b5:9d:11:a0:22:1f:b4:35:e1:69:73:30:d5:c2:24:a7:
cb:2e:b2:2c:07:51:a8:54:01:b5:f9:5f:be:c4:c0:1b:1e:46:
50:38:53:f6:2f:c9:59:5a:dd:79:ff:a7:cf:59:ae:78:80:28:
3d:7e:9a:7e:81:d1:9e:4e:0f:9d:8f:3e:b6:ea:2a:52:75:ab:
40:61:f8:e7:8b:05:ef:5a:5f:c0:93:ae:b6:13:28:13:1f:66:
a5:40:76:73:d5:79:6e:cf:2b:81:d4:da:b9:11:cc:70:66:ba:
4c:48:d8:4c:d9:34:2d:73:9b:8c:b9:9a:99:a1:8d:2c:67:d0:
3f:d1:24:7e:53:27:ce:fb:dd:d8:35:df:68:f2:ad:0c:d4:7b:
b1:ea:ca:38:09:cb:cd:2d:3c:4d:29:7c:96:3f:ee:e7:a4:5c:
bb:e6:8d:4b:87:14:0d:49:8a:4b:ca:49:68:23:05:14:34:53:
60:98:9f:5c:2e:83:6d:75:2e:fd:82:86:84:65:05:d9:2a:32:
d6:5c:f9:73:7f:9f:d3:c4:2b:ce:ae:e5:bb:e0:a0:9b:32:f2:
f8:0e:f9:67
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw
ODQ5MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI1Mjk3MTNBRTFBMEJG
Rjg0NDJCNDRBQjg2OTQ2QkM2MTI4NkJDMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTNV7lc4qqtYQ/egr5LEWuDCOsC/RjGfY3OuvHPpQFJPr8VEpE
jihYyg49BEU2hy/XzIgT75RWPPMIo+IKQUKBETabICmIcDhZbfePB68AHgTTxaH0
/qRk+AsvHPgRG/chEwNiq/wBpKjW1pqF/A9pkgepQWidjuYe48TUX8F2qYXs5e+x
S80ZU7Q9IM7rjcbTKQWvVxH55EvQyMUaxj7N3UcoqGdgMkBs9tlWvfsQks5eZdq8
Ci2cMFCUc+UINmabZ+kXKimjPjzLU/dw3UyCvzcASOg/s9JxxdSu5E+ApslTt2xJ
H13rFBWiT3ACmyC3BJkKGIfswKiKDObLCQphAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUJSlxOuGgv/hEK0SrhpRrxhKGvBUwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvSlNseE91R2d2X2hFSzBTcmhwUnJ4
aEtHdkJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXE94DAN
BgkqhkiG9w0BAQsFAAOCAQEAeXgYtdrBcKXv3GM01wyQzVL0lWeRseY+YObq8SR6
f33Zo2OgRmW1nRGgIh+0NeFpczDVwiSnyy6yLAdRqFQBtflfvsTAGx5GUDhT9i/J
WVrdef+nz1mueIAoPX6afoHRnk4PnY8+tuoqUnWrQGH454sF71pfwJOuthMoEx9m
pUB2c9V5bs8rgdTauRHMcGa6TEjYTNk0LXObjLmamaGNLGfQP9EkflMnzvvd2DXf
aPKtDNR7serKOAnLzS08TSl8lj/u56Rcu+aNS4cUDUmKS8pJaCMFFDRTYJifXC6D
bXUu/YKGhGUF2Soy1lz5c3+f08Qrzq7lu+CgmzLy+A75Zw==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org