Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa
File: 4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa (raw, json)
Hash identifier: vHCPrximF0AEam537BLW8mNcxTIvbQ1qqGEJJVim27A=
Subject key identifier: E0:D1:E6:1F:56:20:92:EC:7D:2D:99:CA:EE:88:74:76:D5:ED:7F:6B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0D44
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa
Signing time: Mon 15 Jan 2024 21:25:38 +0000
ROA not before: Mon 15 Jan 2024 21:25:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 223.22.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3396 (0xd44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:25:38 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E0D1E61F562092EC7D2D99CAEE887476D5ED7F6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bd:9d:31:15:fd:55:6e:0e:b9:5f:08:95:ff:
c2:94:d7:20:dd:f5:8f:41:fa:f1:11:e7:d6:7f:e3:
db:5f:e1:86:ad:cd:d3:74:af:de:d1:16:63:4c:c6:
37:c8:73:fd:47:46:e7:6e:42:4b:47:f7:58:da:e0:
6b:83:bc:c7:63:d4:02:d6:43:fe:6b:2d:9d:aa:21:
b4:4c:e1:76:1e:11:ac:ee:8a:21:6f:07:e9:e4:97:
8c:5b:47:4a:8d:f7:b3:9c:6d:ea:f7:bb:67:94:09:
05:bb:c5:b1:58:fe:8f:28:df:4c:d8:d7:5e:2a:fd:
30:85:89:95:e6:d4:cb:fc:83:40:54:a4:d6:34:fc:
0f:e6:56:81:48:f4:69:1b:60:48:66:3d:f0:68:7c:
77:7c:c1:71:cd:8a:5a:99:a6:d3:74:8a:63:ec:e7:
52:9e:54:72:6c:75:c1:00:ad:71:fb:34:c2:49:37:
88:11:8c:44:d0:69:55:18:1f:1a:99:b2:72:fd:4f:
39:94:80:e9:e7:9a:76:bc:51:93:41:9d:45:94:b6:
2b:14:82:8c:85:80:d9:8c:d7:e0:18:41:c0:6f:37:
bc:01:80:35:ae:9a:02:7e:33:29:0c:15:1d:b5:ec:
4a:98:67:a3:b6:ca:99:30:d5:73:68:47:bc:fe:8b:
80:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D1:E6:1F:56:20:92:EC:7D:2D:99:CA:EE:88:74:76:D5:ED:7F:6B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
51:0a:d7:42:90:4b:f8:a3:46:ef:a9:22:f6:a1:aa:f3:5e:ea:
eb:8b:33:1c:58:2e:34:da:31:15:8f:a2:07:86:f8:39:06:de:
35:a7:3a:f7:8d:e7:f1:be:11:bd:c7:08:27:96:8b:5a:e9:70:
ad:78:eb:4b:df:5c:4d:1f:dc:e1:2e:55:27:66:ec:67:44:49:
89:94:ab:28:af:a5:9a:a2:73:e5:1a:08:47:ce:b5:27:fc:92:
80:d0:a0:4d:7b:73:21:11:e6:ff:ac:69:8f:4a:f8:ff:c2:d6:
9b:0f:87:f0:7d:83:5d:25:a9:ba:c5:ac:11:57:41:b3:54:17:
2d:c6:eb:0c:5d:e1:5d:26:72:02:e8:b3:cd:df:ea:45:3f:c8:
af:5e:af:db:16:a7:b9:67:87:f0:c5:1a:f1:a0:63:54:76:0e:
b8:1c:64:a1:7e:8b:39:3c:bd:23:b8:12:d6:53:b7:40:2c:12:
b3:9a:59:be:89:aa:d0:a2:12:ed:e1:11:ff:27:f1:0c:ac:8d:
e9:3a:69:d4:8d:37:21:e9:0e:cb:9b:f3:f9:2f:73:8f:7a:d0:
9c:99:d3:00:c3:00:6c:34:62:ce:ff:ff:6d:a8:84:04:c4:57:
73:8e:8f:12:65:3c:d9:9d:00:7d:47:2b:50:6a:97:30:5c:bb:
40:e7:b0:c8
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDUQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTI1MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUwRDFFNjFGNTYyMDky
RUM3RDJEOTlDQUVFODg3NDc2RDVFRDdGNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+vZ0xFf1Vbg65XwiV/8KU1yDd9Y9B+vER59Z/49tf4YatzdN0
r97RFmNMxjfIc/1HRuduQktH91ja4GuDvMdj1ALWQ/5rLZ2qIbRM4XYeEazuiiFv
B+nkl4xbR0qN97Ocber3u2eUCQW7xbFY/o8o30zY114q/TCFiZXm1Mv8g0BUpNY0
/A/mVoFI9GkbYEhmPfBofHd8wXHNilqZptN0imPs51KeVHJsdcEArXH7NMJJN4gR
jETQaVUYHxqZsnL9TzmUgOnnmna8UZNBnUWUtisUgoyFgNmM1+AYQcBvN7wBgDWu
mgJ+MykMFR217EqYZ6O2ypkw1XNoR7z+i4ADAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU4NHmH1Ygkux9LZnK7oh0dtXtf2swHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzROSG1IMVlna3V4OUxabks3b2gwZHRY
dGYycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbfFgAwDQYJ
KoZIhvcNAQELBQADggEBAFEK10KQS/ijRu+pIvahqvNe6uuLMxxYLjTaMRWPogeG
+DkG3jWnOveN5/G+Eb3HCCeWi1rpcK1460vfXE0f3OEuVSdm7GdESYmUqyivpZqi
c+UaCEfOtSf8koDQoE17cyER5v+saY9K+P/C1psPh/B9g10lqbrFrBFXQbNUFy3G
6wxd4V0mcgLos83f6kU/yK9er9sWp7lnh/DFGvGgY1R2DrgcZKF+izk8vSO4EtZT
t0AsErOaWb6JqtCiEu3hEf8n8Qysjek6adSNNyHpDsub8/kvc4960JyZ0wDDAGw0
Ys7//22ohATEV3OOjxJlPNmdAH1HK1BqlzBcu0DnsMg=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org