Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa
File: Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa (raw, json)
Hash identifier: iUVavT5zA2Wsm1MQfdS8jU3NpFw/3x9HUupDtHDBs2U=
Subject key identifier: 43:D3:22:AF:70:81:60:3E:8C:0F:82:18:35:D7:ED:C3:50:A5:F6:B6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F96
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa
Signing time: Fri 01 Sep 2023 08:57:15 +0000
ROA not before: Fri 01 Sep 2023 08:57:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131660
IP address blocks: 2001:b000:59c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3990 (0xf96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=43D322AF7081603E8C0F821835D7EDC350A5F6B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:16:25:68:b8:ff:60:fc:49:53:af:c5:c6:59:
e3:9d:05:17:17:2e:97:ac:92:00:7a:00:04:e9:06:
f2:fb:ab:96:d2:88:87:25:e8:c4:92:cc:df:8a:8e:
cd:66:ca:c7:e1:15:d4:d5:0c:4d:98:f7:4b:dd:51:
11:4a:1c:90:41:a3:20:0b:02:66:bb:fe:ee:00:c5:
a3:dc:0b:39:49:22:0d:38:33:91:c6:9a:5b:11:0a:
32:55:ad:90:a1:da:13:ad:8d:87:20:fc:ae:3b:99:
97:ff:b9:97:c5:f4:77:73:05:ed:9d:3a:7c:c7:8c:
19:9d:40:02:a7:16:72:1f:48:e7:ec:2b:71:7c:17:
b2:39:4b:83:78:f9:5f:dd:36:6e:44:eb:ab:18:1b:
ba:a3:dd:15:e2:24:7a:17:b3:72:f0:3b:d8:81:24:
b4:64:90:6c:01:93:7f:42:a7:2c:c0:1d:59:9f:6b:
cf:58:9c:34:d9:a6:79:ef:3f:58:80:4c:43:6b:fb:
d9:c7:51:22:84:f1:50:8e:0d:c8:69:23:94:4d:69:
18:20:6a:46:1c:da:33:de:1f:b2:7e:79:6a:85:b1:
8a:07:f1:74:5f:45:6e:70:9e:10:a5:a1:60:2a:a4:
9c:7e:5c:ea:6b:1b:c4:d0:62:0a:4a:02:ee:da:a9:
b9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D3:22:AF:70:81:60:3E:8C:0F:82:18:35:D7:ED:C3:50:A5:F6:B6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:59c::/48
Signature Algorithm: sha256WithRSAEncryption
28:1b:f6:fd:ef:f7:08:7f:cf:e6:c5:ec:7c:03:14:d7:84:ac:
55:f3:06:5e:bd:5e:35:af:e8:b3:71:fd:1d:35:47:d3:50:e9:
a6:98:b8:64:01:d1:e8:75:c0:a5:66:dd:7e:e3:ce:8f:53:6d:
05:88:1b:5d:70:e3:d1:56:a9:77:62:0c:6e:b1:ea:e9:50:74:
6b:6d:35:09:9c:e1:8d:a2:0e:8f:b5:45:69:de:1f:c5:09:97:
1c:e2:8e:49:bc:ea:db:b0:48:fc:8f:f1:dd:b3:93:41:e8:b0:
a6:7f:5e:a3:ed:b0:80:95:a1:86:c5:3e:de:ae:fc:86:b7:b6:
7a:87:b8:98:b2:26:06:24:31:57:c3:b3:da:c8:57:76:bd:00:
77:82:49:17:78:59:be:66:8b:46:95:76:6d:a7:25:1f:85:09:
18:e2:45:68:c8:ec:72:88:bc:09:24:6a:63:8d:56:89:79:08:
97:08:15:11:fb:3c:3f:b4:bf:10:3c:16:7d:a5:96:37:1a:a2:
62:68:8b:56:c9:18:9a:6d:5a:42:d4:79:1d:6d:e9:03:7c:04:
fc:68:53:cf:5e:fe:47:1a:f1:1b:f8:a0:58:f1:97:a3:a1:6e:
05:6d:fc:f6:02:1f:63:d8:bd:f4:87:19:aa:46:5f:00:9f:c3:
ce:ab:dc:87
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICD5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw
ODU3MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQzRDMyMkFGNzA4MTYw
M0U4QzBGODIxODM1RDdFREMzNTBBNUY2QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFFiVouP9g/ElTr8XGWeOdBRcXLpeskgB6AATpBvL7q5bSiIcl
6MSSzN+Kjs1mysfhFdTVDE2Y90vdURFKHJBBoyALAma7/u4AxaPcCzlJIg04M5HG
mlsRCjJVrZCh2hOtjYcg/K47mZf/uZfF9HdzBe2dOnzHjBmdQAKnFnIfSOfsK3F8
F7I5S4N4+V/dNm5E66sYG7qj3RXiJHoXs3LwO9iBJLRkkGwBk39CpyzAHVmfa89Y
nDTZpnnvP1iATENr+9nHUSKE8VCODchpI5RNaRggakYc2jPeH7J+eWqFsYoH8XRf
RW5wnhCloWAqpJx+XOprG8TQYgpKAu7aqblFAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUQ9Mir3CBYD6MD4IYNdftw1Cl9rYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ROU1pcjNDQllENk1ENElZTmRm
dHcxQ2w5clkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWcMA0GCSqGSIb3DQEBCwUAA4IBAQAoG/b97/cIf8/mxex8AxTXhKxV8wZevV41
r+izcf0dNUfTUOmmmLhkAdHodcClZt1+486PU20FiBtdcOPRVql3YgxuserpUHRr
bTUJnOGNog6PtUVp3h/FCZcc4o5JvOrbsEj8j/Hds5NB6LCmf16j7bCAlaGGxT7e
rvyGt7Z6h7iYsiYGJDFXw7PayFd2vQB3gkkXeFm+ZotGlXZtpyUfhQkY4kVoyOxy
iLwJJGpjjVaJeQiXCBUR+zw/tL8QPBZ9pZY3GqJiaItWyRiabVpC1HkdbekDfAT8
aFPPXv5HGvEb+KBY8ZejoW4Fbfz2Ah9j2L30hxmqRl8An8POq9yH
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org