Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/vUFpsXZwB_Z25J7tH4s317yDfjc.roa
File: vUFpsXZwB_Z25J7tH4s317yDfjc.roa (raw, json)
Hash identifier: guNtrwfWqhWka8Az2y7oUyYMn0xydw6rKLM2uc5YXOA=
Subject key identifier: BD:41:69:B1:76:70:07:F6:76:E4:9E:ED:1F:8B:37:D7:BC:83:7E:37
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0B84
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/vUFpsXZwB_Z25J7tH4s317yDfjc.roa
Signing time: Fri 01 Sep 2023 08:54:45 +0000
ROA not before: Fri 01 Sep 2023 08:54:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4782
IP address blocks: 117.56.0.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2948 (0xb84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 1 08:54:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BD4169B1767007F676E49EED1F8B37D7BC837E37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3b:fd:c0:cd:41:2e:f2:22:84:fb:bb:45:16:
f6:fe:2f:bf:c3:9a:0d:49:62:09:13:2b:60:71:da:
17:7a:ea:ef:38:bc:29:cb:40:b8:ca:e9:e7:05:58:
46:2d:31:71:ed:8d:e0:0e:3c:bd:9d:fb:ef:d3:50:
ad:83:36:aa:6f:7e:c2:60:ed:22:2e:52:72:44:db:
53:b5:be:40:42:72:95:f0:24:81:35:83:44:21:bd:
8c:93:b1:34:3d:4d:04:db:79:50:a9:32:96:9b:2c:
f0:7e:ac:9a:61:12:d6:4f:7c:3b:7e:03:db:20:9c:
33:88:45:57:fe:3b:35:f2:cc:c1:32:31:ba:ed:20:
b6:92:6a:56:d9:c3:df:9a:ba:36:e6:9f:3b:84:33:
91:e4:cd:b2:46:49:ea:0f:8c:00:8e:ac:f4:3c:63:
63:fc:5e:3a:a6:fc:08:08:cc:90:e5:43:eb:3b:9d:
ee:36:09:b2:34:24:08:5a:cc:e2:fa:7e:9d:d6:e6:
c8:88:a5:5d:88:b7:51:ae:67:e6:57:bf:0d:39:4b:
64:a6:ff:77:09:61:08:9a:1c:cc:b0:c0:17:d4:7c:
49:f5:0e:2b:69:6a:7c:87:9f:d9:c8:3e:84:a9:1a:
7a:80:7f:1b:62:9d:03:7c:c8:63:5a:9d:f1:44:67:
1e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:41:69:B1:76:70:07:F6:76:E4:9E:ED:1F:8B:37:D7:BC:83:7E:37
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/vUFpsXZwB_Z25J7tH4s317yDfjc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.56.0.0/18
Signature Algorithm: sha256WithRSAEncryption
96:4a:61:fb:70:43:f0:8b:1c:f2:49:3d:20:8d:53:fa:5a:ad:
78:24:e3:dc:af:f9:85:c7:58:f4:9c:6f:6f:e0:01:d2:6a:62:
5b:f5:c6:22:3c:91:87:5b:e3:c3:29:f0:71:ff:c1:06:21:ee:
1b:2e:ae:f2:22:14:c9:e1:f3:ab:4d:d5:ef:40:ed:8f:31:31:
c1:ee:f0:ed:6c:88:f7:51:89:9c:c6:fe:73:3b:43:78:8d:d2:
a6:b3:cb:63:96:96:c2:fd:e4:39:a3:d5:25:e1:ac:5b:dc:17:
de:36:ac:d1:8a:fc:55:b2:b1:83:9c:f9:6e:94:bd:40:31:7a:
23:54:97:40:24:96:e9:4a:54:88:25:80:92:74:52:5c:a6:d7:
ea:8d:34:86:fc:70:b3:7f:d0:dc:ff:0c:18:d1:23:14:2a:38:
f4:29:87:16:0c:62:ac:fc:84:a1:3a:63:90:17:a0:2b:a8:6f:
7f:e1:7f:49:31:62:d2:d7:fd:ea:f0:17:1d:dd:dc:17:da:48:
4c:ea:a0:58:53:bd:d3:22:f0:ae:78:fd:d6:3a:61:f3:c6:bf:
94:82:42:e2:1b:f2:04:3e:21:cd:35:ca:52:a8:0d:36:52:56:
b0:7e:6d:0b:17:f4:f9:5d:59:8d:e1:67:db:97:5f:41:19:a2:
c8:98:ab:ca
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMzA5MDEw
ODU0NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJENDE2OUIxNzY3MDA3
RjY3NkU0OUVFRDFGOEIzN0Q3QkM4MzdFMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCfO/3AzUEu8iKE+7tFFvb+L7/Dmg1JYgkTK2Bx2hd66u84vCnL
QLjK6ecFWEYtMXHtjeAOPL2d++/TUK2DNqpvfsJg7SIuUnJE21O1vkBCcpXwJIE1
g0QhvYyTsTQ9TQTbeVCpMpabLPB+rJphEtZPfDt+A9sgnDOIRVf+OzXyzMEyMbrt
ILaSalbZw9+aujbmnzuEM5HkzbJGSeoPjACOrPQ8Y2P8Xjqm/AgIzJDlQ+s7ne42
CbI0JAhazOL6fp3W5siIpV2It1GuZ+ZXvw05S2Sm/3cJYQiaHMywwBfUfEn1Ditp
anyHn9nIPoSpGnqAfxtinQN8yGNanfFEZx5PAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUvUFpsXZwB/Z25J7tH4s317yDfjcwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL3ZVRnBzWFp3Ql9aMjVKN3RINHMzMTd5
RGZqYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ1OAAwDQYJ
KoZIhvcNAQELBQADggEBAJZKYftwQ/CLHPJJPSCNU/parXgk49yv+YXHWPScb2/g
AdJqYlv1xiI8kYdb48Mp8HH/wQYh7hsurvIiFMnh86tN1e9A7Y8xMcHu8O1siPdR
iZzG/nM7Q3iN0qazy2OWlsL95Dmj1SXhrFvcF942rNGK/FWysYOc+W6UvUAxeiNU
l0AklulKVIglgJJ0Ulym1+qNNIb8cLN/0Nz/DBjRIxQqOPQphxYMYqz8hKE6Y5AX
oCuob3/hf0kxYtLX/erwFx3d3BfaSEzqoFhTvdMi8K54/dY6YfPGv5SCQuIb8gQ+
Ic01ylKoDTZSVrB+bQsX9PldWY3hZ9uXX0EZosiYq8o=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org