Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/hjZMQ2lScrNKIc2dHGSTyzTme3M.roa
File: hjZMQ2lScrNKIc2dHGSTyzTme3M.roa (raw, json)
Hash identifier: yNOusiTeD3+lOwtrezjqyjRUdM7jGaDyw5YppYcV8uo=
Subject key identifier: 86:36:4C:43:69:52:72:B3:4A:21:CD:9D:1C:64:93:CB:34:E6:7B:73
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E30
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hjZMQ2lScrNKIc2dHGSTyzTme3M.roa
Signing time: Fri 01 Sep 2023 08:49:23 +0000
ROA not before: Fri 01 Sep 2023 08:49:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 203.222.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3632 (0xe30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=86364C43695272B34A21CD9D1C6493CB34E67B73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:15:a4:12:6f:a7:24:fa:cb:7e:90:52:88:72:
63:8f:bd:de:41:c1:c6:32:5c:90:d7:ba:87:db:5d:
1c:bd:ec:45:e5:cb:91:38:50:78:76:e2:33:d2:45:
51:2f:05:ce:e6:26:10:04:70:c3:6c:85:b6:f3:c1:
e0:ef:fc:0b:ae:e4:ef:e7:38:a6:93:c4:60:b2:36:
0b:98:f7:e5:73:82:53:d8:70:a8:e1:57:fa:a3:08:
7e:f1:71:2c:cb:62:b1:8f:29:d3:e8:8c:75:5a:2b:
5e:61:40:7f:ef:1d:46:ae:de:0f:51:de:8e:4a:35:
b1:55:92:6e:d2:ec:1c:4f:f9:9f:30:52:06:41:8b:
41:f8:e6:58:16:47:7a:55:48:21:20:eb:4c:f3:92:
65:99:34:f2:b4:cc:64:e0:6f:f9:74:0e:38:f1:39:
ac:96:0d:f2:d4:2f:ba:0c:3e:b2:08:02:9c:29:96:
35:15:f5:fb:0e:ad:73:10:52:8c:1c:15:d2:6d:a4:
aa:d6:06:17:d8:e9:8c:83:83:44:ee:54:50:eb:2b:
a6:ec:aa:e8:6a:e4:11:ff:c0:56:92:a9:cd:69:0d:
87:10:b1:fe:02:22:64:fd:d8:5d:2b:42:4c:19:87:
75:64:e0:6d:a2:30:76:2d:52:08:99:fc:82:ed:d6:
13:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:36:4C:43:69:52:72:B3:4A:21:CD:9D:1C:64:93:CB:34:E6:7B:73
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hjZMQ2lScrNKIc2dHGSTyzTme3M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:e2:76:21:97:99:0f:58:a3:0d:75:87:5b:fe:e2:61:05:84:
a2:25:42:26:d4:70:1d:7a:78:d6:8d:59:2e:72:11:13:f2:77:
42:16:bf:48:e9:30:09:05:fb:54:8b:2c:0b:52:83:bf:5c:fd:
6f:de:05:31:bc:a7:5f:ca:ee:40:2c:d5:cf:64:8b:99:c4:a1:
62:35:3f:82:3f:a1:85:f3:69:98:87:80:a2:f5:8b:2b:18:db:
43:d8:27:9e:a0:ab:ec:e1:b0:fb:1d:df:61:26:0e:3f:c7:33:
d0:a9:6f:fb:4e:05:30:19:6b:14:53:ac:a7:fd:78:22:10:3d:
c8:ef:ee:ee:7a:11:a1:fe:d0:c5:5c:a7:a7:85:3f:ea:47:a5:
01:ac:31:0f:f4:d5:61:dd:01:1a:2e:c5:a4:56:6d:82:32:f2:
f0:6f:39:ce:7d:8e:3e:67:9f:0c:8e:63:12:56:1d:e3:dc:3d:
c4:c0:18:02:50:85:4a:92:47:6c:3d:8d:26:b8:9b:e3:da:6f:
c8:cd:89:b8:c2:1d:d2:be:c8:69:99:e0:87:84:59:ad:66:62:
ef:99:bb:a8:e9:52:7f:08:35:ab:ef:d9:39:44:30:fa:09:7a:
ca:c1:ea:d3:a5:9f:39:e2:a0:1b:19:27:4d:23:51:84:44:01:
9d:2d:3e:5a
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw
ODQ5MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2MzY0QzQzNjk1Mjcy
QjM0QTIxQ0Q5RDFDNjQ5M0NCMzRFNjdCNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNFaQSb6ck+st+kFKIcmOPvd5BwcYyXJDXuofbXRy97EXly5E4
UHh24jPSRVEvBc7mJhAEcMNshbbzweDv/Auu5O/nOKaTxGCyNguY9+VzglPYcKjh
V/qjCH7xcSzLYrGPKdPojHVaK15hQH/vHUau3g9R3o5KNbFVkm7S7BxP+Z8wUgZB
i0H45lgWR3pVSCEg60zzkmWZNPK0zGTgb/l0DjjxOayWDfLUL7oMPrIIApwpljUV
9fsOrXMQUowcFdJtpKrWBhfY6YyDg0TuVFDrK6bsquhq5BH/wFaSqc1pDYcQsf4C
ImT92F0rQkwZh3Vk4G2iMHYtUgiZ/ILt1hMlAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUhjZMQ2lScrNKIc2dHGSTyzTme3MwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvaGpaTVEybFNjck5LSWMyZEhHU1R5
elRtZTNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcveADAN
BgkqhkiG9w0BAQsFAAOCAQEAj+J2IZeZD1ijDXWHW/7iYQWEoiVCJtRwHXp41o1Z
LnIRE/J3Qha/SOkwCQX7VIssC1KDv1z9b94FMbynX8ruQCzVz2SLmcShYjU/gj+h
hfNpmIeAovWLKxjbQ9gnnqCr7OGw+x3fYSYOP8cz0Klv+04FMBlrFFOsp/14IhA9
yO/u7noRof7QxVynp4U/6kelAawxD/TVYd0BGi7FpFZtgjLy8G85zn2OPmefDI5j
ElYd49w9xMAYAlCFSpJHbD2NJrib49pvyM2JuMId0r7IaZngh4RZrWZi75m7qOlS
fwg1q+/ZOUQw+gl6ysHq06WfOeKgGxknTSNRhEQBnS0+Wg==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org