Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/MV5ovN_NB8mFNHXKfrkmedWRZjA.roa
File: MV5ovN_NB8mFNHXKfrkmedWRZjA.roa (raw, json)
Hash identifier: tmyxjH/t7DtGQa/dhbtxW1YvgcziRPdrO+Ko8Z9RqsU=
Subject key identifier: 31:5E:68:BC:DF:CD:07:C9:85:34:75:CA:7E:B9:26:79:D5:91:66:30
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E10
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/MV5ovN_NB8mFNHXKfrkmedWRZjA.roa
Signing time: Fri 01 Sep 2023 08:49:15 +0000
ROA not before: Fri 01 Sep 2023 08:49:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 27.96.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3600 (0xe10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=315E68BCDFCD07C9853475CA7EB92679D5916630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:46:f3:40:e2:0a:25:6a:1f:7e:f0:4c:e9:02:
2e:0d:7a:3d:2f:03:43:73:6e:1c:ec:2e:64:b6:4f:
88:69:72:94:ae:39:9a:a2:f7:6e:bf:ad:47:ec:ac:
3e:4e:6c:29:18:a6:7c:44:50:42:5a:51:21:a2:20:
7a:48:3a:23:50:11:11:a4:ed:4f:fc:36:bd:73:3c:
07:48:67:b9:e7:6d:0f:d2:17:51:fc:e7:6b:b9:71:
81:13:b2:e1:ee:73:77:23:d5:03:7c:1f:d5:bd:c2:
29:92:44:e2:59:3b:83:3a:9b:f7:d7:8f:cf:61:a4:
02:1c:ad:c9:ce:d3:0a:71:41:cf:4a:58:94:9d:d0:
f1:fe:97:66:aa:5b:6b:35:32:c7:bb:e8:42:2a:62:
5b:77:dc:83:b8:03:27:62:fe:17:33:cf:d9:96:4f:
9d:a5:59:89:01:a7:9e:bb:e0:66:2a:66:01:2e:f8:
96:a5:5d:68:6a:71:ed:78:4d:b1:63:e4:74:30:1b:
02:e3:49:53:ef:84:c9:10:ad:3a:e3:01:06:4c:8b:
66:3b:d7:ed:7e:f1:52:33:62:ad:45:cd:e1:35:1a:
c3:05:8b:52:d4:1f:f5:45:fd:46:2e:8c:32:bc:a8:
5b:b8:2b:93:27:ee:4b:52:cc:8b:d3:f1:b7:b7:77:
14:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:5E:68:BC:DF:CD:07:C9:85:34:75:CA:7E:B9:26:79:D5:91:66:30
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/MV5ovN_NB8mFNHXKfrkmedWRZjA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.244.0/22
Signature Algorithm: sha256WithRSAEncryption
87:51:93:4c:d0:d8:8e:4b:20:bb:4a:00:7f:ca:d9:d7:c9:98:
03:69:3c:31:b8:9f:8a:94:44:cd:69:65:74:d4:68:76:c1:de:
e3:1e:60:65:7d:e4:4e:17:67:92:80:96:0a:d5:f3:ef:0d:fd:
45:6d:5b:af:f5:9d:76:5f:5d:0f:36:29:53:ac:98:9d:f0:67:
12:1e:cd:d9:96:e5:95:43:0b:5b:6d:80:5e:a9:dd:31:30:04:
9e:72:fd:0b:c4:5b:fc:4e:0b:db:f0:44:a4:43:a6:67:2e:c9:
aa:f7:16:8d:f2:8b:3c:22:7c:ad:34:02:a6:ee:4b:64:25:2e:
13:88:86:cf:1a:7f:fe:98:99:cc:d6:cb:46:5a:db:aa:41:bd:
46:9f:2e:b2:44:d1:4c:b7:fe:51:53:db:04:cd:64:ab:08:4f:
b8:53:25:09:7d:21:fb:13:04:6d:8b:2c:58:fb:46:b9:d9:d6:
88:f2:8c:9a:3d:ff:84:2e:12:08:0e:21:9f:b7:02:b3:2b:19:
b8:ff:f2:c3:0e:38:fb:3b:1a:95:77:08:39:44:72:f0:9d:2a:
0b:12:f2:41:06:f9:8e:1e:3e:92:f5:67:01:4e:15:0d:bf:cb:
e2:eb:53:f2:29:33:b5:b9:26:20:f6:af:9c:ee:5b:50:cb:db:
5c:0b:90:89
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw
ODQ5MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMxNUU2OEJDREZDRDA3
Qzk4NTM0NzVDQTdFQjkyNjc5RDU5MTY2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPRvNA4golah9+8EzpAi4Nej0vA0NzbhzsLmS2T4hpcpSuOZqi
926/rUfsrD5ObCkYpnxEUEJaUSGiIHpIOiNQERGk7U/8Nr1zPAdIZ7nnbQ/SF1H8
52u5cYETsuHuc3cj1QN8H9W9wimSROJZO4M6m/fXj89hpAIcrcnO0wpxQc9KWJSd
0PH+l2aqW2s1Mse76EIqYlt33IO4Aydi/hczz9mWT52lWYkBp5674GYqZgEu+Jal
XWhqce14TbFj5HQwGwLjSVPvhMkQrTrjAQZMi2Y71+1+8VIzYq1FzeE1GsMFi1LU
H/VF/UYujDK8qFu4K5Mn7ktSzIvT8be3dxTFAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUMV5ovN/NB8mFNHXKfrkmedWRZjAwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvTVY1b3ZOX05COG1GTkhYS2Zya21l
ZFdSWmpBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg9DAN
BgkqhkiG9w0BAQsFAAOCAQEAh1GTTNDYjksgu0oAf8rZ18mYA2k8MbifipREzWll
dNRodsHe4x5gZX3kThdnkoCWCtXz7w39RW1br/Wddl9dDzYpU6yYnfBnEh7N2Zbl
lUMLW22AXqndMTAEnnL9C8Rb/E4L2/BEpEOmZy7JqvcWjfKLPCJ8rTQCpu5LZCUu
E4iGzxp//piZzNbLRlrbqkG9Rp8uskTRTLf+UVPbBM1kqwhPuFMlCX0h+xMEbYss
WPtGudnWiPKMmj3/hC4SCA4hn7cCsysZuP/yww44+zsalXcIOURy8J0qCxLyQQb5
jh4+kvVnAU4VDb/L4utT8ikztbkmIPavnO5bUMvbXAuQiQ==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org