Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/F15HW_iaFu2RjUaqTeaFoZi2pSk.roa
File: F15HW_iaFu2RjUaqTeaFoZi2pSk.roa (raw, json)
Hash identifier: J6NkwpHfG7gLCdY8uEH3IrwvIfVFdTABSXu6XeE/qXw=
Subject key identifier: 17:5E:47:5B:F8:9A:16:ED:91:8D:46:AA:4D:E6:85:A1:98:B6:A5:29
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BB9
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/F15HW_iaFu2RjUaqTeaFoZi2pSk.roa
Signing time: Fri 01 Sep 2023 08:50:55 +0000
ROA not before: Fri 01 Sep 2023 08:50:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9674
IP address blocks: 27.52.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3001 (0xbb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=175E475BF89A16ED918D46AA4DE685A198B6A529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a6:e8:92:1f:69:d8:48:9e:b1:74:46:7d:6d:
76:c3:13:af:05:d2:ab:2b:51:67:46:a0:47:ad:05:
9d:46:9c:13:a9:91:1c:36:73:76:9e:26:43:74:c4:
65:59:b1:36:89:b3:7d:2a:07:c3:3d:fe:0c:cb:75:
87:4f:9f:f5:d6:92:64:75:ed:e6:f3:ec:5e:c4:ee:
b0:11:2a:ac:1b:10:dd:0c:1f:c0:0f:55:fc:00:53:
3b:92:d9:03:4f:00:b7:c7:21:92:15:40:b0:2f:49:
b4:3b:d2:ab:91:88:aa:4c:00:7c:3d:d7:91:ae:1c:
5b:55:23:e9:16:0b:c1:5b:cd:fb:0b:aa:b7:0a:2b:
3e:ac:99:5b:07:69:0a:54:02:7c:d9:9f:fb:33:3b:
3e:99:1b:aa:e3:18:5f:0f:3e:b0:41:2b:9e:bb:96:
72:05:c4:d3:8d:40:57:07:4c:1e:9d:3f:4d:74:9c:
a9:3d:ac:f8:a9:74:dc:77:08:5e:1a:8e:ae:e0:06:
f2:2e:f4:ae:1f:df:12:71:d3:bb:3a:ac:0d:1f:97:
34:bb:f5:a9:41:5d:6d:8b:8c:63:b5:ca:64:a2:90:
94:9d:5e:24:bc:1c:88:5e:bc:5d:18:37:c3:a3:96:
e3:7b:e9:8f:70:fe:3a:72:ab:15:93:cc:c1:e9:4b:
04:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5E:47:5B:F8:9A:16:ED:91:8D:46:AA:4D:E6:85:A1:98:B6:A5:29
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/F15HW_iaFu2RjUaqTeaFoZi2pSk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.52.0.0/15
Signature Algorithm: sha256WithRSAEncryption
2b:d4:c5:df:c2:ff:76:1c:0c:04:37:94:26:59:08:60:72:ea:
31:d3:0d:b9:ed:41:43:5e:1c:e6:da:36:1f:b0:dc:22:be:ba:
b8:8d:c8:d4:78:85:dd:a1:a8:cf:3a:75:0d:bc:f7:90:2d:2e:
bc:eb:b2:8d:7c:bd:12:92:21:dd:ce:8f:ee:f3:43:9c:e4:b1:
a3:f0:f8:51:9f:d3:37:3d:fe:31:ed:3a:56:8e:80:d0:8b:41:
fe:88:59:4e:02:c1:c1:7b:4a:db:55:c7:97:f2:56:87:55:9e:
72:f5:c6:aa:22:e0:a8:41:9a:41:3c:aa:96:2e:38:7e:78:e2:
6d:ff:ba:31:b3:bf:dd:a5:80:51:9e:72:88:b8:a2:36:f6:d4:
92:25:0d:6d:cb:28:f5:a1:85:25:fc:af:95:f8:aa:21:84:cb:
2b:e7:3e:7d:2a:19:82:40:28:42:9f:31:1b:59:55:d8:71:ae:
25:3d:5f:19:52:87:38:d7:1b:bd:a7:db:af:2b:6f:a8:df:ee:
d2:bf:f0:f0:c6:94:87:aa:78:69:67:cf:2b:6f:2b:07:5d:be:
ef:37:f4:45:b8:3a:3e:4e:9e:06:cc:d4:61:20:4b:c7:23:7e:
63:e9:f7:58:b3:8e:90:96:1a:83:43:bd:ef:e8:89:b5:55:29:
a6:79:c6:ea
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw
ODUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE3NUU0NzVCRjg5QTE2
RUQ5MThENDZBQTRERTY4NUExOThCNkE1MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJpuiSH2nYSJ6xdEZ9bXbDE68F0qsrUWdGoEetBZ1GnBOpkRw2
c3aeJkN0xGVZsTaJs30qB8M9/gzLdYdPn/XWkmR17ebz7F7E7rARKqwbEN0MH8AP
VfwAUzuS2QNPALfHIZIVQLAvSbQ70quRiKpMAHw915GuHFtVI+kWC8FbzfsLqrcK
Kz6smVsHaQpUAnzZn/szOz6ZG6rjGF8PPrBBK567lnIFxNONQFcHTB6dP010nKk9
rPipdNx3CF4ajq7gBvIu9K4f3xJx07s6rA0flzS79alBXW2LjGO1ymSikJSdXiS8
HIhevF0YN8OjluN76Y9w/jpyqxWTzMHpSwS1AgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUF15HW/iaFu2RjUaqTeaFoZi2pSkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0YxNUhXX2lhRnUyUmpVYXFUZWFGb1pp
MnBTay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwEbNDANBgkq
hkiG9w0BAQsFAAOCAQEAK9TF38L/dhwMBDeUJlkIYHLqMdMNue1BQ14c5to2H7Dc
Ir66uI3I1HiF3aGozzp1Dbz3kC0uvOuyjXy9EpIh3c6P7vNDnOSxo/D4UZ/TNz3+
Me06Vo6A0ItB/ohZTgLBwXtK21XHl/JWh1WecvXGqiLgqEGaQTyqli44fnjibf+6
MbO/3aWAUZ5yiLiiNvbUkiUNbcso9aGFJfyvlfiqIYTLK+c+fSoZgkAoQp8xG1lV
2HGuJT1fGVKHONcbvafbrytvqN/u0r/w8MaUh6p4aWfPK28rB12+7zf0Rbg6Pk6e
BszUYSBLxyN+Y+n3WLOOkJYag0O97+iJtVUppnnG6g==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org