Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/mAAxnbh75jC6OLMk_DM4ym_vXbU.roa
File: mAAxnbh75jC6OLMk_DM4ym_vXbU.roa (raw, json)
Hash identifier: 6GrgUmdoeNZUIFefClL73317Fm4NjUyIpaISruhqsIU=
Subject key identifier: 98:00:31:9D:B8:7B:E6:30:BA:38:B3:24:FC:33:38:CA:6F:EF:5D:B5
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0572
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/mAAxnbh75jC6OLMk_DM4ym_vXbU.roa
Signing time: Fri 01 Sep 2023 09:00:34 +0000
ROA not before: Fri 01 Sep 2023 09:00:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9678
IP address blocks: 2401:95c0:1000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1394 (0x572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 1 09:00:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9800319DB87BE630BA38B324FC3338CA6FEF5DB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:f5:d2:ef:02:2a:b9:61:2c:54:d5:18:ae:
3b:70:8b:85:a4:94:de:46:f6:4a:82:d6:ac:ec:0c:
c3:54:43:fb:f0:89:c2:af:bd:d0:f8:59:68:86:0b:
b3:8f:9e:29:ff:ae:0c:3a:d3:0d:e2:36:3f:45:9d:
c9:b4:32:cf:4e:66:6a:a3:4f:f7:7f:1f:65:3c:bb:
8a:4c:31:fb:d1:bf:8d:d4:4c:c1:9f:2a:cf:c8:96:
ea:5d:b0:64:12:1c:03:3d:fa:c0:12:dc:17:35:96:
23:8c:08:85:09:c8:8b:62:0d:8c:ea:49:58:4b:ac:
fa:69:43:40:99:51:94:2e:9a:03:b9:d0:5b:0e:12:
06:83:23:90:f1:2d:d7:26:bc:01:b5:1e:37:89:b8:
d8:ef:fa:3c:63:ba:d9:98:71:21:8f:eb:a8:2a:e2:
bb:8b:09:ca:96:65:23:35:01:71:57:00:29:62:ff:
61:04:d4:84:a8:46:d0:3d:d5:5d:d2:48:db:5e:12:
d6:96:2c:d0:83:23:89:ea:4a:99:e1:1c:dd:d6:fd:
35:f1:e6:8f:46:39:9b:91:82:04:b3:f5:0c:f3:1c:
a3:03:7a:7b:34:ab:d4:69:35:ee:5b:6f:fd:29:d8:
04:f6:ac:80:b9:6d:a4:53:04:51:76:b2:e9:28:67:
97:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:00:31:9D:B8:7B:E6:30:BA:38:B3:24:FC:33:38:CA:6F:EF:5D:B5
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/mAAxnbh75jC6OLMk_DM4ym_vXbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
17:92:3f:e7:45:e5:d7:1e:eb:6f:13:de:54:f3:7d:a3:0d:e5:
15:15:c8:ac:53:f1:c2:e4:5b:0e:b5:fd:6a:a8:18:0d:ec:38:
7e:9b:fc:c5:f8:dd:08:c9:df:2d:20:26:63:9a:bb:20:e8:9c:
32:c1:31:fb:d9:be:89:b8:55:5f:07:82:d5:9d:0b:dd:1a:ae:
1c:5d:8e:e3:46:92:6f:3b:74:a5:90:3b:3b:3e:12:1e:54:f8:
e7:b1:8a:3b:88:c3:d4:1c:7b:0b:6e:f8:97:47:79:27:02:b2:
2e:fd:05:a1:d0:1f:46:ac:5c:cd:87:b2:ee:1a:90:c9:e6:5f:
14:75:ea:cd:42:3b:c6:ac:6b:fe:34:a2:41:7e:2a:2c:59:aa:
2e:b8:62:b6:3c:04:63:d6:14:d5:92:1f:b3:ad:4a:05:6f:cb:
2d:34:05:9e:5c:9a:f7:8e:bd:a1:85:4a:f7:7c:e6:ac:75:07:
1d:91:f1:48:41:d6:80:96:76:e4:7f:c1:6d:bb:de:27:ba:e3:
bd:2d:3c:7f:61:ac:50:69:8d:3b:bb:e1:98:45:4b:0f:b7:c3:
9d:98:0a:a5:07:e1:f6:ba:3e:e5:10:c4:fc:0c:50:ac:85:a7:
68:ff:ac:65:f7:51:f6:28:6e:9f:fd:b6:5f:a3:fa:79:17:d4:
0f:3d:6c:20
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMzA5MDEw
OTAwMzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk4MDAzMTlEQjg3QkU2
MzBCQTM4QjMyNEZDMzMzOENBNkZFRjVEQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyYvXS7wIquWEsVNUYrjtwi4WklN5G9kqC1qzsDMNUQ/vwicKv
vdD4WWiGC7OPnin/rgw60w3iNj9Fncm0Ms9OZmqjT/d/H2U8u4pMMfvRv43UTMGf
Ks/IlupdsGQSHAM9+sAS3Bc1liOMCIUJyItiDYzqSVhLrPppQ0CZUZQumgO50FsO
EgaDI5DxLdcmvAG1HjeJuNjv+jxjutmYcSGP66gq4ruLCcqWZSM1AXFXACli/2EE
1ISoRtA91V3SSNteEtaWLNCDI4nqSpnhHN3W/TXx5o9GOZuRggSz9QzzHKMDens0
q9RpNe5bb/0p2AT2rIC5baRTBFF2sukoZ5e/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUmAAxnbh75jC6OLMk/DM4ym/vXbUwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL21BQXhuYmg3NWpDNk9MTWtf
RE00eW1fdlhiVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk
AZXAEDANBgkqhkiG9w0BAQsFAAOCAQEAF5I/50Xl1x7rbxPeVPN9ow3lFRXIrFPx
wuRbDrX9aqgYDew4fpv8xfjdCMnfLSAmY5q7IOicMsEx+9m+ibhVXweC1Z0L3Rqu
HF2O40aSbzt0pZA7Oz4SHlT457GKO4jD1Bx7C274l0d5JwKyLv0FodAfRqxczYey
7hqQyeZfFHXqzUI7xqxr/jSiQX4qLFmqLrhitjwEY9YU1ZIfs61KBW/LLTQFnlya
9469oYVK93zmrHUHHZHxSEHWgJZ25H/BbbveJ7rjvS08f2GsUGmNO7vhmEVLD7fD
nZgKpQfh9ro+5RDE/AxQrIWnaP+sZfdR9ihun/22X6P6eRfUDz1sIA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org