Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa
File: MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa (raw, json)
Hash identifier: Btxb9/QpVgtQoWpMlw+bS+ny+AlMJT2djcqzuXwXas4=
Subject key identifier: 32:EC:81:F8:66:DF:EA:FE:2D:E7:77:3A:7E:A5:E3:F4:60:E0:20:CF
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0DA8
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa
Signing time: Mon 15 Jan 2024 21:29:59 +0000
ROA not before: Mon 15 Jan 2024 21:29:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18419
IP address blocks: 124.218.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3496 (0xda8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Jan 15 21:29:59 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=32EC81F866DFEAFE2DE7773A7EA5E3F460E020CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0b:e2:d0:a3:1b:8d:28:8d:78:12:5c:8a:0f:
b3:98:c0:e8:2b:ad:06:bb:7e:e2:9d:69:30:72:6e:
c3:ec:4c:dd:68:f7:a9:da:fe:50:a2:a4:2f:ed:31:
da:f0:d8:a0:76:83:bc:21:0d:54:31:a0:ef:0e:19:
e8:b0:3d:ed:37:dc:c4:72:f1:5c:7c:ce:2a:8b:da:
a7:ff:d9:8e:90:f1:19:b1:47:3b:6d:7f:2d:76:4e:
de:12:94:2e:ec:0a:b0:30:db:99:d5:84:3b:60:f7:
5a:86:3c:8e:73:c8:f4:bb:f1:82:1e:6f:f0:ad:a4:
fe:33:36:56:41:c9:9e:66:8c:2e:09:aa:42:50:60:
40:c5:4e:47:be:ae:f9:b1:a6:8f:9e:8e:cc:1f:0e:
89:48:d3:5f:38:90:bf:bc:6d:8c:12:64:34:bf:03:
17:99:17:0e:54:2c:ec:a1:18:f1:b0:be:d9:07:6e:
b4:e0:0a:51:5a:7f:d5:a8:42:29:bc:e9:50:0e:2d:
e5:92:bd:28:7a:11:84:06:3c:69:85:dc:c1:0d:91:
69:d4:aa:97:95:2d:50:6f:39:50:44:d6:a3:a6:61:
08:41:39:2b:e0:f1:81:dd:6f:ee:59:0b:b8:55:eb:
5e:b8:47:04:70:b8:28:4a:19:1f:b4:cf:64:0f:64:
b6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:EC:81:F8:66:DF:EA:FE:2D:E7:77:3A:7E:A5:E3:F4:60:E0:20:CF
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
00:c0:f7:d3:45:eb:f4:53:b2:18:70:1b:34:a9:a8:cf:d7:12:
64:1f:f7:2e:b7:5d:9a:94:ff:03:02:ce:ad:7f:97:08:8e:b3:
16:68:9c:e7:26:d7:27:16:ea:96:71:e0:50:5e:bc:17:18:f4:
d7:6b:0c:54:ba:e6:ed:36:8f:7c:04:ac:59:67:bd:69:84:c6:
4e:54:30:c9:f0:1f:f4:86:e1:dd:fc:25:39:6e:14:ea:c7:60:
46:5d:22:40:57:47:d5:92:0e:17:d9:1c:8b:dd:17:47:67:be:
6f:f3:f0:b6:c3:fe:22:7d:95:da:8e:a2:1c:2d:20:b0:27:23:
46:c3:12:63:08:a4:68:1a:5c:5e:1d:81:56:1a:b7:98:b3:d2:
9d:4a:9b:13:58:72:f2:61:dc:dd:fc:31:d0:77:36:15:dc:48:
32:05:66:a4:64:8c:57:46:51:78:4c:f6:4a:a2:08:98:53:ef:
89:63:61:1a:fe:88:4f:e4:db:b1:58:be:cd:de:5c:1b:c6:f1:
72:a7:21:da:a8:ee:9f:57:40:b7:9f:84:24:64:eb:cd:1e:de:
ab:2c:93:11:2d:e8:b3:ca:eb:00:52:50:f9:77:89:8c:df:47:
15:54:5c:0f:18:33:e9:85:62:f1:f8:14:a8:4b:63:ca:f0:0a:
4a:ab:1f:9a
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy
MTI5NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMyRUM4MUY4NjZERkVB
RkUyREU3NzczQTdFQTVFM0Y0NjBFMDIwQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMC+LQoxuNKI14ElyKD7OYwOgrrQa7fuKdaTBybsPsTN1o96na
/lCipC/tMdrw2KB2g7whDVQxoO8OGeiwPe033MRy8Vx8ziqL2qf/2Y6Q8RmxRztt
fy12Tt4SlC7sCrAw25nVhDtg91qGPI5zyPS78YIeb/CtpP4zNlZByZ5mjC4JqkJQ
YEDFTke+rvmxpo+ejswfDolI0184kL+8bYwSZDS/AxeZFw5ULOyhGPGwvtkHbrTg
ClFaf9WoQim86VAOLeWSvSh6EYQGPGmF3MENkWnUqpeVLVBvOVBE1qOmYQhBOSvg
8YHdb+5ZC7hV6164RwRwuChKGR+0z2QPZLZpAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUMuyB+Gbf6v4t53c6fqXj9GDgIM8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL011eUItR2JmNnY0dDUzYzZmcVhqOUdE
Z0lNOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ82sAwDQYJ
KoZIhvcNAQELBQADggEBAADA99NF6/RTshhwGzSpqM/XEmQf9y63XZqU/wMCzq1/
lwiOsxZonOcm1ycW6pZx4FBevBcY9NdrDFS65u02j3wErFlnvWmExk5UMMnwH/SG
4d38JTluFOrHYEZdIkBXR9WSDhfZHIvdF0dnvm/z8LbD/iJ9ldqOohwtILAnI0bD
EmMIpGgaXF4dgVYat5iz0p1KmxNYcvJh3N38MdB3NhXcSDIFZqRkjFdGUXhM9kqi
CJhT74ljYRr+iE/k27FYvs3eXBvG8XKnIdqo7p9XQLefhCRk680e3qsskxEt6LPK
6wBSUPl3iYzfRxVUXA8YM+mFYvH4FKhLY8rwCkqrH5o=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org