Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/j27PVhQPJDSxRAWOygNTLc9wBcw.roa
File: j27PVhQPJDSxRAWOygNTLc9wBcw.roa (raw, json)
Hash identifier: wIKGyURaHBVL4Sk8miCikmGy06zSOoFPr1x32ZjWvrM=
Subject key identifier: 8F:6E:CF:56:14:0F:24:34:B1:44:05:8E:CA:03:53:2D:CF:70:05:CC
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E16
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/j27PVhQPJDSxRAWOygNTLc9wBcw.roa
Signing time: Fri 01 Sep 2023 08:49:17 +0000
ROA not before: Fri 01 Sep 2023 08:49:17 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 27.96.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3606 (0xe16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:17 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8F6ECF56140F2434B144058ECA03532DCF7005CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:f0:c7:1e:3a:b7:80:ba:fc:24:f0:fa:56:
48:8c:86:6c:bb:c8:ea:0d:e0:67:86:46:6f:e2:dd:
bb:eb:50:b2:28:6e:ba:8b:1c:49:a6:68:a5:cd:32:
aa:af:38:1a:f3:b6:f9:ca:92:cf:9a:7f:2c:48:bf:
58:6d:00:eb:a2:e8:fc:5e:05:0f:b3:06:f6:e2:9b:
d8:04:64:7d:ba:86:45:b3:01:7c:8a:c1:13:3f:28:
2c:e8:51:ba:60:f3:b2:fc:46:8f:ac:7c:c7:26:36:
06:71:3b:7d:83:be:bc:8b:0f:9d:4e:a8:2e:bb:ac:
b9:c5:ff:59:2e:3d:87:e7:67:f7:7f:34:d3:c3:42:
0a:42:3f:4d:ce:75:7a:1a:bd:d8:a8:ff:f7:86:1e:
d6:51:6c:5d:e0:04:57:e8:b3:97:a5:13:a4:8e:95:
26:c2:e0:3d:7c:b6:c9:be:6e:03:c4:6e:1c:15:71:
be:01:24:4b:76:5c:c8:a4:a7:b9:b9:b0:4f:45:4f:
1e:f3:58:55:b7:06:d9:df:60:37:65:ca:07:dc:93:
c0:d5:86:73:9a:35:61:ed:45:32:25:30:46:4d:8b:
cf:0a:34:d8:ca:0e:8e:ba:58:9c:e7:a6:6f:49:f9:
6f:dd:39:6d:fa:72:6a:f1:19:34:61:1e:cd:55:06:
6f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6E:CF:56:14:0F:24:34:B1:44:05:8E:CA:03:53:2D:CF:70:05:CC
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/j27PVhQPJDSxRAWOygNTLc9wBcw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.240.0/22
Signature Algorithm: sha256WithRSAEncryption
27:ac:39:c4:aa:eb:95:19:0b:41:7e:fb:11:73:01:47:9d:56:
51:5c:95:3c:43:f0:d9:6a:0e:f1:1f:2b:78:05:4b:32:84:ae:
4c:b7:03:0a:1c:65:50:5f:b8:ca:08:7e:07:31:f8:26:0b:e8:
a3:de:02:0b:0e:b7:8a:9e:13:31:d0:b0:5a:5a:65:5a:a1:dc:
4f:01:f2:4d:7b:2b:05:e0:d1:28:6b:27:22:3e:46:a9:62:99:
36:0f:5d:30:d8:40:60:1f:a8:50:f8:36:6a:6d:48:32:3c:ae:
e6:ee:ad:c5:b4:9a:84:6a:c1:96:e2:b3:5c:b3:86:c8:0a:dc:
0a:72:2b:da:2d:76:7e:9e:d0:3e:81:6f:77:27:61:c3:21:fc:
f8:3f:bf:b5:04:52:87:e0:12:79:b2:ea:c6:79:37:23:4c:d4:
ec:8b:b0:aa:bb:54:33:15:a5:68:8a:6a:54:44:aa:57:73:fa:
7e:23:f2:93:6b:1e:3e:86:ed:ac:15:b8:0e:22:bf:2e:66:28:
08:54:2f:f7:7e:2a:de:a4:a3:05:7a:c5:d7:56:09:81:f9:31:
50:48:c6:1b:9c:12:57:bf:70:db:7e:76:ce:89:d1:1a:a5:d3:
5d:5d:0e:00:93:16:ae:b6:66:1a:65:c7:24:f8:1a:47:6f:46:
bb:90:48:8b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA5MDEw
ODQ5MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhGNkVDRjU2MTQwRjI0
MzRCMTQ0MDU4RUNBMDM1MzJEQ0Y3MDA1Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0SPDHHjq3gLr8JPD6VkiMhmy7yOoN4GeGRm/i3bvrULIobrqL
HEmmaKXNMqqvOBrztvnKks+afyxIv1htAOui6PxeBQ+zBvbim9gEZH26hkWzAXyK
wRM/KCzoUbpg87L8Ro+sfMcmNgZxO32DvryLD51OqC67rLnF/1kuPYfnZ/d/NNPD
QgpCP03OdXoavdio//eGHtZRbF3gBFfos5elE6SOlSbC4D18tsm+bgPEbhwVcb4B
JEt2XMikp7m5sE9FTx7zWFW3BtnfYDdlygfck8DVhnOaNWHtRTIlMEZNi88KNNjK
Do66WJznpm9J+W/dOW36cmrxGTRhHs1VBm+tAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUj27PVhQPJDSxRAWOygNTLc9wBcwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvajI3UFZoUVBKRFN4UkFXT3lnTlRM
Yzl3QmN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAhtg8DAN
BgkqhkiG9w0BAQsFAAOCAQEAJ6w5xKrrlRkLQX77EXMBR51WUVyVPEPw2WoO8R8r
eAVLMoSuTLcDChxlUF+4ygh+BzH4Jgvoo94CCw63ip4TMdCwWlplWqHcTwHyTXsr
BeDRKGsnIj5GqWKZNg9dMNhAYB+oUPg2am1IMjyu5u6txbSahGrBluKzXLOGyArc
CnIr2i12fp7QPoFvdydhwyH8+D+/tQRSh+ASebLqxnk3I0zU7IuwqrtUMxWlaIpq
VESqV3P6fiPyk2sePobtrBW4DiK/LmYoCFQv934q3qSjBXrF11YJgfkxUEjGG5wS
V79w2352zonRGqXTXV0OAJMWrrZmGmXHJPgaR29Gu5BIiw==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org