Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa
File: 8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa (raw, json)
Hash identifier: 9hn3JOqsRtLkUb09rR6bIlIxDYbedhsgmBK2b5vyTEE=
Subject key identifier: F0:70:BF:CF:84:5A:FC:BF:7B:72:7A:68:A8:BE:1A:45:3E:A4:B1:19
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BAA
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa
Signing time: Fri 01 Sep 2023 08:50:51 +0000
ROA not before: Fri 01 Sep 2023 08:50:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9674
IP address blocks: 110.24.0.0/13 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2986 (0xbaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F070BFCF845AFCBF7B727A68A8BE1A453EA4B119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6c:26:4f:71:d1:a3:38:6e:57:5b:09:90:c3:
bb:f4:fc:3e:a7:96:a5:e2:e6:51:6e:e8:d5:bf:dd:
15:75:7f:80:c3:49:44:a0:d6:7f:d3:ff:a2:61:4d:
3e:43:f3:9a:6c:45:ba:26:c4:af:33:0e:8c:6b:a3:
50:09:38:15:81:7d:8c:45:ec:37:6c:6e:71:6a:76:
d5:95:7b:8a:e0:53:7e:8a:c0:c0:20:65:85:95:4a:
cc:bc:b3:8e:cf:a4:23:a7:fb:55:82:29:28:d9:0e:
b7:ac:68:36:ea:2b:65:b0:cb:66:e1:3e:49:e7:dd:
13:bc:84:d0:7b:a1:6d:2b:ab:78:05:af:54:05:17:
6d:62:25:d9:5b:90:29:c6:36:3b:f0:11:9c:54:1c:
11:e3:3f:d6:2f:93:ef:0e:1b:10:02:31:23:be:34:
9c:c0:29:75:df:14:1b:2a:8e:d1:86:ff:7a:8b:cd:
f2:b2:34:14:ba:26:6b:69:d1:76:35:37:e3:59:71:
fe:50:72:b5:a4:68:47:10:e2:4a:7b:95:87:eb:a4:
df:ad:8b:af:70:22:44:ce:be:68:6b:b3:ae:42:bd:
cf:87:da:85:0e:b7:fe:fb:df:44:80:0f:1f:ff:4e:
fe:20:68:de:7b:72:8d:d7:8d:43:87:c1:6e:a0:8b:
05:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:70:BF:CF:84:5A:FC:BF:7B:72:7A:68:A8:BE:1A:45:3E:A4:B1:19
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
110.24.0.0/13
Signature Algorithm: sha256WithRSAEncryption
86:22:b1:2a:f8:ad:fc:53:b0:91:33:58:a1:21:fb:98:ed:76:
18:93:3f:ab:06:23:ae:fc:00:b2:25:98:78:15:bc:3e:bd:3f:
d8:c6:84:13:66:9b:e4:8f:25:0e:d1:02:73:aa:2c:14:d7:8c:
c8:16:2c:8a:46:f0:f0:b3:a3:fd:4e:09:2b:12:26:e3:43:e4:
2b:f0:a6:45:56:ef:27:c6:e4:c1:08:8f:96:e3:e3:c6:9d:d5:
7c:ec:04:4f:e2:5e:c5:b0:fd:cb:51:38:ff:2b:9b:a2:ed:96:
25:32:9b:96:9c:d9:33:ff:4e:d2:43:97:60:84:17:67:d5:fc:
59:7d:18:49:88:25:f1:de:36:1a:6e:2a:e7:99:09:6d:fa:b1:
ac:22:7d:f4:49:cf:1d:30:b2:9e:05:bd:b3:9f:ae:7e:d2:11:
fb:65:18:b8:d0:26:b3:31:38:8b:58:21:1c:c8:e3:e8:a1:47:
fc:8d:3b:d6:bb:ab:e8:10:61:87:c0:7c:2a:cc:59:5b:19:d4:
40:fb:74:3c:8c:45:09:e5:8b:06:30:41:77:65:f1:e1:84:90:
cd:e2:73:ed:a7:ec:b8:5c:5c:3e:0d:cd:80:d8:7e:da:ec:e3:
ae:e1:8b:c4:f6:f3:5f:4d:45:13:ed:0f:1c:41:ea:76:3c:4e:
f6:cf:33:ad
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICC6owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw
ODUwNTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYwNzBCRkNGODQ1QUZD
QkY3QjcyN0E2OEE4QkUxQTQ1M0VBNEIxMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAbCZPcdGjOG5XWwmQw7v0/D6nlqXi5lFu6NW/3RV1f4DDSUSg
1n/T/6JhTT5D85psRbomxK8zDoxro1AJOBWBfYxF7DdsbnFqdtWVe4rgU36KwMAg
ZYWVSsy8s47PpCOn+1WCKSjZDresaDbqK2Wwy2bhPknn3RO8hNB7oW0rq3gFr1QF
F21iJdlbkCnGNjvwEZxUHBHjP9Yvk+8OGxACMSO+NJzAKXXfFBsqjtGG/3qLzfKy
NBS6Jmtp0XY1N+NZcf5QcrWkaEcQ4kp7lYfrpN+ti69wIkTOvmhrs65Cvc+H2oUO
t/7730SADx//Tv4gaN57co3XjUOHwW6giwXJAgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQU8HC/z4Ra/L97cnpoqL4aRT6ksRkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzhIQ196NFJhX0w5N2NucG9xTDRhUlQ2
a3NSay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwNuGDANBgkq
hkiG9w0BAQsFAAOCAQEAhiKxKvit/FOwkTNYoSH7mO12GJM/qwYjrvwAsiWYeBW8
Pr0/2MaEE2ab5I8lDtECc6osFNeMyBYsikbw8LOj/U4JKxIm40PkK/CmRVbvJ8bk
wQiPluPjxp3VfOwET+JexbD9y1E4/yubou2WJTKblpzZM/9O0kOXYIQXZ9X8WX0Y
SYgl8d42Gm4q55kJbfqxrCJ99EnPHTCyngW9s5+uftIR+2UYuNAmszE4i1ghHMjj
6KFH/I071rur6BBhh8B8KsxZWxnUQPt0PIxFCeWLBjBBd2Xx4YSQzeJz7afsuFxc
Pg3NgNh+2uzjruGLxPbzX01FE+0PHEHqdjxO9s8zrQ==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org