Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/GywnPY47bQutnMEbdtJiQDnXD2U.roa
File: GywnPY47bQutnMEbdtJiQDnXD2U.roa (raw, json)
Hash identifier: sfJVc5STpSzQLmM87ia2367bD98TWnWcs2b9UkLpCWo=
Subject key identifier: 1B:2C:27:3D:8E:3B:6D:0B:AD:9C:C1:1B:76:D2:62:40:39:D7:0F:65
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DB0
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GywnPY47bQutnMEbdtJiQDnXD2U.roa
Signing time: Mon 15 Jan 2024 21:30:10 +0000
ROA not before: Mon 15 Jan 2024 21:30:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3504 (0xdb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:30:10 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1B2C273D8E3B6D0BAD9CC11B76D2624039D70F65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e9:c1:a0:1d:4f:6c:8d:3d:ed:f8:b6:4e:c9:
40:b2:79:bf:47:62:25:47:c1:c8:6a:92:85:db:2a:
ef:ec:27:4f:26:42:fc:85:7a:c0:ef:81:85:f3:f3:
0c:ed:37:e6:60:ef:e2:f6:15:0b:31:55:f6:d5:10:
aa:7b:17:34:75:c5:af:ac:6f:b1:97:3c:0b:6c:2c:
dc:82:14:05:fb:93:15:f5:e1:dd:8d:9a:0e:9a:2b:
d3:57:47:a9:82:22:b4:06:d3:ab:41:9d:d0:11:73:
ba:4a:ad:a6:e8:35:8e:36:8c:f0:29:16:7f:fe:7c:
4b:90:81:54:db:47:87:ad:91:6b:fa:c3:31:af:51:
57:ca:7b:dc:18:a4:f6:74:f7:81:16:aa:5e:94:10:
72:a6:a5:86:49:cd:81:97:01:35:2c:4e:17:40:6e:
de:94:ba:cc:5d:d4:f8:cc:7f:1d:53:ce:59:61:99:
e7:8f:48:3f:8f:0d:27:17:49:8b:a2:d3:b4:8a:30:
01:0b:e2:eb:e3:e2:2d:48:ca:df:c9:4a:6a:05:cb:
e0:ea:09:95:cd:a1:b7:0d:0f:2c:19:ba:97:34:23:
5d:a8:1f:dd:2e:d0:36:8a:18:37:2a:ef:89:1c:d5:
dc:9e:9c:78:05:92:80:8a:1c:af:c8:17:66:5d:43:
52:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2C:27:3D:8E:3B:6D:0B:AD:9C:C1:1B:76:D2:62:40:39:D7:0F:65
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GywnPY47bQutnMEbdtJiQDnXD2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.96.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:3c:0b:52:69:7e:17:31:f2:64:fa:53:e5:5d:67:5e:e6:a2:
75:35:47:08:5e:6d:e9:fe:b0:d0:bf:f7:4b:3c:e4:cd:6b:42:
1b:0a:9c:59:47:3c:61:23:41:4b:21:4e:41:20:16:33:5a:ec:
53:56:3e:6e:87:07:97:23:41:f6:b0:4e:81:15:33:72:48:cf:
24:c9:9e:77:2d:46:c6:d8:2b:23:04:c6:ff:4a:ff:26:a0:98:
a0:33:aa:60:dd:da:8c:1d:c3:42:51:a0:95:69:36:b6:8d:e2:
db:08:9a:68:95:6b:c8:5a:8d:cf:1e:d4:92:66:c0:b3:ff:6d:
a9:1b:29:85:54:37:e4:86:5d:dd:6c:b5:be:e4:ec:8f:4a:e8:
ba:e4:df:0b:f1:c5:1e:fa:d3:47:6b:09:bd:f2:c2:09:26:bf:
c2:0e:97:78:a4:4c:09:c2:f9:b3:67:f6:5e:2d:be:53:9a:53:
ae:54:ec:b6:73:b3:6c:db:9a:ef:32:00:77:e3:ca:23:46:f7:
00:be:22:1e:96:e6:58:9c:ab:92:2f:75:62:16:ba:50:1c:3e:
76:58:44:ce:44:a5:70:99:fc:95:41:d6:d4:17:07:1f:b1:66:
c7:4c:7e:2e:d0:d6:94:c3:d6:f4:31:7b:0f:ba:25:7d:61:1d:
ec:9f:6e:89
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTMwMTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFCMkMyNzNEOEUzQjZE
MEJBRDlDQzExQjc2RDI2MjQwMzlENzBGNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDE6cGgHU9sjT3t+LZOyUCyeb9HYiVHwchqkoXbKu/sJ08mQvyF
esDvgYXz8wztN+Zg7+L2FQsxVfbVEKp7FzR1xa+sb7GXPAtsLNyCFAX7kxX14d2N
mg6aK9NXR6mCIrQG06tBndARc7pKraboNY42jPApFn/+fEuQgVTbR4etkWv6wzGv
UVfKe9wYpPZ094EWql6UEHKmpYZJzYGXATUsThdAbt6Uusxd1PjMfx1TzllhmeeP
SD+PDScXSYui07SKMAEL4uvj4i1Iyt/JSmoFy+DqCZXNobcNDywZupc0I12oH90u
0DaKGDcq74kc1dyenHgFkoCKHK/IF2ZdQ1INAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUGywnPY47bQutnMEbdtJiQDnXD2UwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0d5d25QWTQ3YlF1dG5NRWJkdEppUURu
WEQyVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ82mAwDQYJ
KoZIhvcNAQELBQADggEBAKs8C1Jpfhcx8mT6U+VdZ17monU1Rwheben+sNC/90s8
5M1rQhsKnFlHPGEjQUshTkEgFjNa7FNWPm6HB5cjQfawToEVM3JIzyTJnnctRsbY
KyMExv9K/yagmKAzqmDd2owdw0JRoJVpNraN4tsImmiVa8hajc8e1JJmwLP/bakb
KYVUN+SGXd1stb7k7I9K6Lrk3wvxxR7600drCb3ywgkmv8IOl3ikTAnC+bNn9l4t
vlOaU65U7LZzs2zbmu8yAHfjyiNG9wC+Ih6W5licq5IvdWIWulAcPnZYRM5EpXCZ
/JVB1tQXBx+xZsdMfi7Q1pTD1vQxew+6JX1hHeyfbok=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org