Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PvrF3ZQURtz8baxIJ-wVFT1BtwM.roa
File: PvrF3ZQURtz8baxIJ-wVFT1BtwM.roa (raw, json)
Hash identifier: gMQ/wypNyD0CtLxMRbeuI3VEtcubZDYTrv3OhlVCeVU=
Subject key identifier: 3E:FA:C5:DD:94:14:46:DC:FC:6D:AC:48:27:EC:15:15:3D:41:B7:03
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 056F
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PvrF3ZQURtz8baxIJ-wVFT1BtwM.roa
Signing time: Fri 01 Sep 2023 09:00:33 +0000
ROA not before: Fri 01 Sep 2023 09:00:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 103.98.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1391 (0x56f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 1 09:00:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3EFAC5DD941446DCFC6DAC4827EC15153D41B703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:26:eb:fb:5a:1c:56:36:57:e7:8a:c0:7e:60:
a3:c2:8c:6e:9a:4a:18:84:65:16:5b:58:40:f4:c5:
37:2a:d6:44:13:13:4a:d8:1c:eb:62:39:22:74:a8:
5f:b7:a9:e3:ae:4b:68:32:e2:3e:0b:4a:a0:31:f1:
b3:11:6e:bb:62:59:4a:d0:a7:4f:be:5b:af:62:66:
ee:14:cb:f3:d7:36:03:d7:9e:75:8c:ed:88:28:b1:
e6:cd:4a:cd:d6:e9:dd:78:93:0c:ee:fe:c3:38:ee:
75:48:4d:ec:64:cc:78:ca:64:f3:77:01:b3:f6:00:
96:95:a1:7a:bc:71:d4:67:7a:0a:24:59:a1:9f:c1:
3c:ab:ec:ff:89:6e:0c:eb:3a:2a:c3:a2:e7:73:f3:
e5:fc:3a:0e:81:08:e1:38:8c:58:36:18:44:94:34:
6b:5c:02:0d:1a:4a:51:29:20:96:42:81:18:69:18:
d1:06:b2:ec:14:b2:9e:2a:84:70:44:7d:70:2f:26:
59:09:98:30:fd:a4:0a:cb:ff:00:7b:2c:9d:8e:94:
01:4f:34:67:c5:d4:ac:92:da:19:45:3b:25:33:6b:
b1:da:2b:b8:2a:73:c2:1e:6f:e5:e1:ab:ce:f3:71:
3e:1f:d6:4e:6c:d3:0e:3c:e1:c4:f2:f6:db:4f:c3:
64:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FA:C5:DD:94:14:46:DC:FC:6D:AC:48:27:EC:15:15:3D:41:B7:03
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PvrF3ZQURtz8baxIJ-wVFT1BtwM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.74.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:0e:fa:ec:08:54:47:85:c7:9d:ae:c2:6c:36:48:a2:d0:0d:
53:16:14:16:6a:b6:af:13:50:bd:c0:4b:b8:00:0e:d0:65:86:
6f:a7:59:25:ce:68:10:cf:98:e7:77:55:9f:c7:d7:c2:18:14:
9a:09:fe:ca:5a:a3:88:49:e2:9e:f6:14:c6:4c:59:68:f7:33:
91:f5:41:d0:6e:60:f7:a5:03:1d:26:1d:90:fc:eb:eb:ab:7d:
71:62:6c:48:13:3f:7c:55:5d:ed:48:56:33:80:cf:6c:c9:e5:
20:8a:67:a6:3a:1a:87:b0:a5:4d:97:df:bc:84:82:29:60:53:
ba:f3:5a:1f:14:7a:3f:79:82:03:01:30:ed:04:62:0d:2c:71:
41:48:5d:f5:ac:dc:61:cb:c4:be:79:11:d6:59:4e:9d:7a:22:
a0:2a:c4:28:e2:a4:d4:8a:55:2a:ba:ed:57:90:30:10:56:7c:
68:47:ce:c2:0e:fd:a2:3d:0d:25:b8:a3:61:d6:aa:f7:27:ca:
dd:f9:3b:12:fb:4d:ec:13:c6:8d:43:50:80:66:2c:ac:31:0f:
f7:9e:2a:7d:6d:40:c7:0d:cf:d1:cf:59:d7:60:83:7d:47:7a:
f1:66:25:92:81:c4:74:13:bf:d6:c1:bd:f0:2e:d7:ba:e9:c1:
f0:75:42:31
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMzA5MDEw
OTAwMzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNFRkFDNUREOTQxNDQ2
RENGQzZEQUM0ODI3RUMxNTE1M0Q0MUI3MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOJuv7WhxWNlfnisB+YKPCjG6aShiEZRZbWED0xTcq1kQTE0rY
HOtiOSJ0qF+3qeOuS2gy4j4LSqAx8bMRbrtiWUrQp0++W69iZu4Uy/PXNgPXnnWM
7YgosebNSs3W6d14kwzu/sM47nVITexkzHjKZPN3AbP2AJaVoXq8cdRnegokWaGf
wTyr7P+JbgzrOirDoudz8+X8Og6BCOE4jFg2GESUNGtcAg0aSlEpIJZCgRhpGNEG
suwUsp4qhHBEfXAvJlkJmDD9pArL/wB7LJ2OlAFPNGfF1KyS2hlFOyUza7HaK7gq
c8Ieb+Xhq87zcT4f1k5s0w484cTy9ttPw2T9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPvrF3ZQURtz8baxIJ+wVFT1BtwMwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL1B2ckYzWlFVUnR6OGJheElK
LXdWRlQxQnR3TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
YkowDQYJKoZIhvcNAQELBQADggEBAKIO+uwIVEeFx52uwmw2SKLQDVMWFBZqtq8T
UL3AS7gADtBlhm+nWSXOaBDPmOd3VZ/H18IYFJoJ/spao4hJ4p72FMZMWWj3M5H1
QdBuYPelAx0mHZD86+urfXFibEgTP3xVXe1IVjOAz2zJ5SCKZ6Y6GoewpU2X37yE
gilgU7rzWh8Uej95ggMBMO0EYg0scUFIXfWs3GHLxL55EdZZTp16IqAqxCjipNSK
VSq67VeQMBBWfGhHzsIO/aI9DSW4o2HWqvcnyt35OxL7TewTxo1DUIBmLKwxD/ee
Kn1tQMcNz9HPWddgg31HevFmJZKBxHQTv9bBvfAu17rpwfB1QjE=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org