Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/CuN2O58htCVlelNuWZvDeDZOl1M.roa
File: CuN2O58htCVlelNuWZvDeDZOl1M.roa (raw, json)
Hash identifier: zmf7U5uZyUqB9Q88dmK3ZqPo2kXbE+y1hgUVkzToBiA=
Subject key identifier: 0A:E3:76:3B:9F:21:B4:25:65:7A:53:6E:59:9B:C3:78:36:4E:97:53
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0B8C
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/CuN2O58htCVlelNuWZvDeDZOl1M.roa
Signing time: Fri 01 Sep 2023 08:54:47 +0000
ROA not before: Fri 01 Sep 2023 08:54:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4782
IP address blocks: 2001:4420::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2956 (0xb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 1 08:54:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0AE3763B9F21B425657A536E599BC378364E9753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:86:20:58:67:ce:38:73:47:8a:bc:07:bc:8b:
8d:67:df:c7:82:33:db:8d:08:56:8d:94:21:a5:a1:
81:73:bb:1e:13:27:ad:c1:87:2d:d6:ec:92:35:75:
81:d5:ef:95:1f:af:ee:82:9b:e6:db:b4:de:5c:c3:
e0:81:be:38:52:05:11:fd:15:a4:67:c2:d5:f2:fc:
27:ad:90:2e:ef:01:27:30:94:02:8e:41:c0:0b:99:
a3:65:e7:1f:c6:93:44:56:f8:92:67:b6:80:77:92:
bb:c4:49:6b:c2:92:32:fc:77:65:96:86:01:8f:12:
42:dc:b7:cb:1a:32:56:32:e9:bc:ec:be:9f:e1:c4:
0e:cb:1a:2e:81:49:08:ef:8b:4c:e0:c6:61:28:ab:
43:fc:49:17:ae:b2:1b:6c:52:54:a2:99:e8:6f:12:
d2:d1:1f:4b:54:fd:b7:06:70:d7:80:ab:e2:66:1c:
bc:1f:9f:ff:7c:9a:b5:e8:0f:e8:3f:28:7a:21:67:
54:57:8c:1d:51:34:f6:0a:13:af:48:ab:15:d8:d5:
92:31:29:9b:30:d2:d2:f8:9d:78:4f:e7:40:55:85:
5e:b2:50:3e:f9:f2:6e:8d:10:2c:29:13:b6:94:90:
88:47:10:e0:35:82:f3:a1:4b:b7:1d:57:59:ea:3a:
25:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:E3:76:3B:9F:21:B4:25:65:7A:53:6E:59:9B:C3:78:36:4E:97:53
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/CuN2O58htCVlelNuWZvDeDZOl1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4420::/32
Signature Algorithm: sha256WithRSAEncryption
a2:5f:cd:d7:0f:ea:0f:bb:d3:92:c9:82:89:df:cf:57:d3:de:
fa:4b:c0:4f:35:ef:4f:27:9e:f0:ae:ec:54:05:8d:ab:3f:43:
ff:47:55:e8:77:03:7b:bf:64:03:b0:7a:3b:62:56:2c:70:af:
7c:cf:63:f2:8e:ea:c1:74:71:a6:d4:0d:9f:b5:69:53:7e:a4:
20:f8:d4:b7:3f:e7:a4:59:ee:2a:d7:ae:1a:95:ec:00:9e:24:
4c:16:b4:74:c3:ce:a8:22:c4:d1:a2:c0:4e:47:99:8a:95:77:
86:74:97:3b:ed:b2:25:fc:4c:72:63:a9:59:9f:d4:10:a1:5a:
f1:22:7d:04:66:7e:98:3b:0f:23:e9:68:f5:f1:99:f8:74:a0:
14:8d:ee:c9:91:d5:63:92:de:39:4a:c7:e1:55:59:a1:02:d8:
60:b2:93:87:0c:04:40:0d:2d:f4:72:84:ba:d2:cb:3d:cc:ba:
a9:88:66:ce:e6:f9:99:f4:d2:ad:21:dd:88:6b:94:3a:24:b0:
c4:42:87:7c:fe:fe:8d:4c:7f:22:1a:32:97:bf:93:4e:f7:50:
7c:d1:e6:ea:12:9f:fd:d4:da:95:92:61:ed:4e:da:bd:77:53:
14:db:f4:da:80:d2:0c:b9:94:3d:32:78:f2:72:9c:1a:72:16:
6c:3c:83:95
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMzA5MDEw
ODU0NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBBRTM3NjNCOUYyMUI0
MjU2NTdBNTM2RTU5OUJDMzc4MzY0RTk3NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxhiBYZ844c0eKvAe8i41n38eCM9uNCFaNlCGloYFzux4TJ63B
hy3W7JI1dYHV75Ufr+6Cm+bbtN5cw+CBvjhSBRH9FaRnwtXy/CetkC7vAScwlAKO
QcALmaNl5x/Gk0RW+JJntoB3krvESWvCkjL8d2WWhgGPEkLct8saMlYy6bzsvp/h
xA7LGi6BSQjvi0zgxmEoq0P8SReushtsUlSimehvEtLRH0tU/bcGcNeAq+JmHLwf
n/98mrXoD+g/KHohZ1RXjB1RNPYKE69IqxXY1ZIxKZsw0tL4nXhP50BVhV6yUD75
8m6NECwpE7aUkIhHEOA1gvOhS7cdV1nqOiWjAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUCuN2O58htCVlelNuWZvDeDZOl1MwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL0N1TjJPNThodENWbGVsTnVXWnZEZURa
T2wxTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUQgMA0G
CSqGSIb3DQEBCwUAA4IBAQCiX83XD+oPu9OSyYKJ389X0976S8BPNe9PJ57wruxU
BY2rP0P/R1XodwN7v2QDsHo7YlYscK98z2PyjurBdHGm1A2ftWlTfqQg+NS3P+ek
We4q164alewAniRMFrR0w86oIsTRosBOR5mKlXeGdJc77bIl/ExyY6lZn9QQoVrx
In0EZn6YOw8j6Wj18Zn4dKAUje7JkdVjkt45SsfhVVmhAthgspOHDARADS30coS6
0ss9zLqpiGbO5vmZ9NKtId2Ia5Q6JLDEQod8/v6NTH8iGjKXv5NO91B80ebqEp/9
1NqVkmHtTtq9d1MU2/TagNIMuZQ9MnjycpwachZsPIOV
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org