Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/HrFANIe46Yy9O_nKIQMzWjPbbdc.roa
File: HrFANIe46Yy9O_nKIQMzWjPbbdc.roa (raw, json)
Hash identifier: smDoPBWW2cjOrQwpvRA/StS3Q6mhz92KzkM8C1EMaTM=
Subject key identifier: 1E:B1:40:34:87:B8:E9:8C:BD:3B:F9:CA:21:03:33:5A:33:DB:6D:D7
Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64
Certificate serial: F0
Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/HrFANIe46Yy9O_nKIQMzWjPbbdc.roa
Signing time: Wed 31 Jul 2024 15:39:58 +0000
ROA not before: Wed 31 Jul 2024 15:39:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131642
IP address blocks: 2401:26a0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64
Validity
Not Before: Jul 31 15:39:58 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1EB1403487B8E98CBD3BF9CA2103335A33DB6DD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:ac:3c:9e:2d:28:53:73:41:23:71:4c:58:
84:da:09:23:59:4d:f9:11:3b:9f:c9:8b:16:e1:2e:
a3:30:40:e2:c4:30:16:8d:76:ea:93:9b:09:f3:9e:
db:18:d1:ee:74:fe:65:1c:e3:a6:da:49:fc:dd:5a:
1f:91:be:18:24:13:eb:00:34:54:e2:2f:3c:dc:70:
6b:e7:1e:0b:74:69:ca:1e:63:d9:60:48:cc:4b:54:
54:f8:c6:ad:07:73:e7:d2:f3:6e:cf:7b:42:41:17:
35:f1:4e:80:16:76:19:13:74:90:c9:58:4d:d5:3f:
4d:b2:23:f1:3a:62:68:77:30:52:72:5a:a2:49:59:
4c:ce:d5:12:91:c4:11:63:69:80:c1:fc:80:f6:22:
0f:91:6f:4a:97:69:56:e0:f6:f8:25:cd:03:bd:38:
9e:3f:0d:42:11:fd:e6:02:0e:07:81:a8:36:d4:58:
23:8d:eb:0e:1d:81:6e:9d:6d:aa:48:2b:6b:37:04:
0e:4d:f2:a2:73:9c:0d:92:63:94:9f:31:32:8f:ad:
06:bc:a3:2e:19:0f:d7:f4:96:de:14:8b:16:e4:56:
0a:ac:c9:45:46:92:0a:88:5d:f8:93:25:73:e0:06:
fb:db:4c:67:80:ad:0b:28:dd:1d:fb:bc:a2:1c:01:
1b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B1:40:34:87:B8:E9:8C:BD:3B:F9:CA:21:03:33:5A:33:DB:6D:D7
X509v3 Authority Key Identifier:
keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/HrFANIe46Yy9O_nKIQMzWjPbbdc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:26a0::/32
Signature Algorithm: sha256WithRSAEncryption
04:ae:88:70:ae:37:98:ad:43:73:6d:9a:4d:3b:4e:26:e9:23:
44:84:1d:1b:35:10:ad:5c:cc:92:1d:65:d5:0c:12:7c:0d:6c:
0e:ce:01:a2:14:21:1a:0c:e6:9e:a7:27:85:c6:ae:a6:84:fd:
e0:bb:62:11:bb:e6:96:5a:7b:30:f7:05:7f:c1:99:4f:b7:bb:
27:8f:cb:bb:5e:fa:e3:85:e8:90:e1:13:fd:f1:d2:b9:6e:d9:
ad:1f:44:b1:05:90:6c:92:26:7f:ec:6d:d8:d6:b4:c4:45:4c:
aa:4e:b0:17:f0:f5:b9:e3:c1:ec:42:91:75:be:92:8e:08:66:
84:fd:52:04:7a:c6:d5:d6:02:36:37:64:d7:9d:3d:84:17:b4:
59:63:a7:d1:d7:2c:0b:35:01:d7:8f:06:3e:26:f6:8d:fa:6b:
47:1b:43:d6:b8:23:ad:2e:45:0b:64:82:1f:b1:0e:84:1a:eb:
aa:8b:df:e9:8b:18:2d:bf:de:2c:b4:07:ea:06:c6:c7:2f:e7:
a2:27:10:6f:18:bf:31:de:dd:25:27:95:1e:23:b3:f9:90:ca:
e6:06:69:9b:c4:82:f3:4e:d5:2d:3a:2a:db:4a:4c:51:47:4b:
6e:42:ee:f3:67:52:7f:93:70:3c:c7:6d:ba:38:5c:05:de:65:
7b:8b:f1:6e
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNB
Q0ZDNDY2MDlDMTY0OUFCNDYxNkQyMEQ2NEM5RDE1RDgzNEM2NDAeFw0yNDA3MzEx
NTM5NThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFFQjE0MDM0ODdCOEU5
OENCRDNCRjlDQTIxMDMzMzVBMzNEQjZERDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzuqw8ni0oU3NBI3FMWITaCSNZTfkRO5/JixbhLqMwQOLEMBaN
duqTmwnzntsY0e50/mUc46baSfzdWh+RvhgkE+sANFTiLzzccGvnHgt0acoeY9lg
SMxLVFT4xq0Hc+fS827Pe0JBFzXxToAWdhkTdJDJWE3VP02yI/E6Ymh3MFJyWqJJ
WUzO1RKRxBFjaYDB/ID2Ig+Rb0qXaVbg9vglzQO9OJ4/DUIR/eYCDgeBqDbUWCON
6w4dgW6dbapIK2s3BA5N8qJznA2SY5SfMTKPrQa8oy4ZD9f0lt4UixbkVgqsyUVG
kgqIXfiTJXPgBvvbTGeArQso3R37vKIcARsxAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQUHrFANIe46Yy9O/nKIQMzWjPbbdcwHwYDVR0jBBgwFoAUg6z8RmCcFkmrRhbS
DWTJ0V2DTGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2
ejhSbUNjRmttclJoYlNEV1RKMFYyRFRHUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZzZ6OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL0hyRkFOSWU0Nll5OU9fbktJUU16V2pQ
YmJkYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkASagMA0G
CSqGSIb3DQEBCwUAA4IBAQAErohwrjeYrUNzbZpNO04m6SNEhB0bNRCtXMySHWXV
DBJ8DWwOzgGiFCEaDOaepyeFxq6mhP3gu2IRu+aWWnsw9wV/wZlPt7snj8u7Xvrj
heiQ4RP98dK5btmtH0SxBZBskiZ/7G3Y1rTERUyqTrAX8PW548HsQpF1vpKOCGaE
/VIEesbV1gI2N2TXnT2EF7RZY6fR1ywLNQHXjwY+JvaN+mtHG0PWuCOtLkULZIIf
sQ6EGuuqi9/pixgtv94stAfqBsbHL+eiJxBvGL8x3t0lJ5UeI7P5kMrmBmmbxILz
TtUtOirbSkxRR0tuQu7zZ1J/k3A8x226OFwF3mV7i/Fu
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org