Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/OZqHbvj0e7nK_tnkkL4bUglmOP4.roa
File: OZqHbvj0e7nK_tnkkL4bUglmOP4.roa (raw, json)
Hash identifier: TXepoLvWowim15A2wrlqDv4pSEoV0YIO3eQT2APYHfU=
Subject key identifier: 39:9A:87:6E:F8:F4:7B:B9:CA:FE:D9:E4:90:BE:1B:52:09:66:38:FE
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 0BBC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OZqHbvj0e7nK_tnkkL4bUglmOP4.roa
Signing time: Fri 01 Sep 2023 08:50:56 +0000
ROA not before: Fri 01 Sep 2023 08:50:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9674
IP address blocks: 2401:e180::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3004 (0xbbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Sep 1 08:50:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=399A876EF8F47BB9CAFED9E490BE1B52096638FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dd:4f:57:73:6a:dc:f9:44:d8:71:1f:7f:0a:
d7:f4:87:c3:79:7d:ad:f9:1f:d0:44:e4:63:ed:a9:
7c:5d:fd:cf:c9:d8:57:6c:1b:56:56:ae:66:6e:05:
48:81:8d:48:61:57:83:c2:6d:0e:e2:2c:1f:75:21:
ec:a4:bd:e2:46:87:5a:15:36:e5:42:db:43:21:be:
94:8d:c4:2b:ec:dc:8b:ec:13:e9:e0:9c:70:33:72:
40:63:64:80:38:a1:c7:80:51:02:12:b2:34:e2:74:
b7:e6:10:83:62:17:82:f3:e2:44:13:9c:4c:8b:41:
88:13:2a:5e:86:9c:a1:66:19:db:c6:39:b8:0d:d4:
fe:ac:70:2e:83:7a:ff:df:82:ab:3d:ac:f7:a6:5f:
61:14:44:6d:a5:5b:91:1b:09:c4:6f:1e:5f:7b:b7:
72:02:cb:19:a1:bc:97:86:53:12:20:19:5b:d0:53:
85:5a:8d:b8:51:d2:a8:9a:17:0b:d8:3a:35:18:4d:
83:48:53:3b:23:03:60:73:f0:31:e9:7d:0e:44:7b:
66:5b:8f:15:36:7b:56:ba:bf:a1:fd:ba:1c:39:04:
d5:e2:52:34:66:d3:e0:b4:73:18:aa:2f:02:85:f8:
8a:03:33:a3:45:3e:af:1e:59:5c:f4:22:a9:00:d6:
5d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9A:87:6E:F8:F4:7B:B9:CA:FE:D9:E4:90:BE:1B:52:09:66:38:FE
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OZqHbvj0e7nK_tnkkL4bUglmOP4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e180::/32
Signature Algorithm: sha256WithRSAEncryption
77:51:3b:5d:f2:27:f6:cc:ef:6b:61:84:16:44:28:4e:3e:d2:
df:d5:ab:54:b5:40:73:61:5f:ca:6f:66:d3:4b:ca:28:8a:5b:
ee:29:6c:d7:a1:44:fb:83:66:66:8d:37:11:bb:60:1c:07:c9:
d4:6a:b5:4a:2d:69:22:58:a1:6a:04:18:42:09:f7:f0:10:d1:
20:34:56:6b:30:a6:49:ed:c8:d8:c1:9b:80:59:d3:01:e9:95:
ec:63:90:33:ab:72:5e:51:39:f8:02:50:d1:fb:5e:98:5a:4e:
db:80:b2:18:9f:69:0e:57:bc:29:f3:83:68:55:ad:d6:b9:41:
a2:fd:0d:47:c3:01:28:b3:fb:c7:77:f4:61:f3:f7:8b:04:48:
55:a0:ad:e6:20:51:5b:17:d4:ef:e2:b1:a8:a8:6d:d2:0d:de:
5b:24:2b:dc:65:5a:96:33:8f:5b:b9:80:fd:6e:37:3a:b6:5e:
ec:e2:57:64:e0:a3:8f:88:80:93:e0:59:aa:20:88:2a:af:0c:
c5:66:56:cb:ea:cb:39:b4:1e:91:33:49:5c:a5:11:c1:21:c6:
62:3d:96:58:df:53:3e:23:a8:1a:66:79:cc:4b:87:18:48:07:
dd:62:d9:38:a8:6e:c5:62:3f:22:b6:42:18:64:33:50:1b:1b:
59:35:cf:6b
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw
ODUwNTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM5OUE4NzZFRjhGNDdC
QjlDQUZFRDlFNDkwQkUxQjUyMDk2NjM4RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC53U9Xc2rc+UTYcR9/Ctf0h8N5fa35H9BE5GPtqXxd/c/J2Fds
G1ZWrmZuBUiBjUhhV4PCbQ7iLB91IeykveJGh1oVNuVC20MhvpSNxCvs3IvsE+ng
nHAzckBjZIA4oceAUQISsjTidLfmEINiF4Lz4kQTnEyLQYgTKl6GnKFmGdvGObgN
1P6scC6Dev/fgqs9rPemX2EURG2lW5EbCcRvHl97t3ICyxmhvJeGUxIgGVvQU4Va
jbhR0qiaFwvYOjUYTYNIUzsjA2Bz8DHpfQ5Ee2ZbjxU2e1a6v6H9uhw5BNXiUjRm
0+C0cxiqLwKF+IoDM6NFPq8eWVz0IqkA1l3PAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUOZqHbvj0e7nK/tnkkL4bUglmOP4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL09acUhidmowZTduS190bmtrTDRiVWds
bU9QNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAeGAMA0G
CSqGSIb3DQEBCwUAA4IBAQB3UTtd8if2zO9rYYQWRChOPtLf1atUtUBzYV/Kb2bT
S8ooilvuKWzXoUT7g2ZmjTcRu2AcB8nUarVKLWkiWKFqBBhCCffwENEgNFZrMKZJ
7cjYwZuAWdMB6ZXsY5Azq3JeUTn4AlDR+16YWk7bgLIYn2kOV7wp84NoVa3WuUGi
/Q1HwwEos/vHd/Rh8/eLBEhVoK3mIFFbF9Tv4rGoqG3SDd5bJCvcZVqWM49buYD9
bjc6tl7s4ldk4KOPiICT4FmqIIgqrwzFZlbL6ss5tB6RM0lcpRHBIcZiPZZY31M+
I6gaZnnMS4cYSAfdYtk4qG7FYj8itkIYZDNQGxtZNc9r
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org