Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/faqpl6DXmeQd4hmlEiccswhCXWo.roa
File: faqpl6DXmeQd4hmlEiccswhCXWo.roa (raw, json)
Hash identifier: V5s/1LNYa7jCJKALeJPxgZnMeVF+sznQ4uGYFxnEJuQ=
Subject key identifier: 7D:AA:A9:97:A0:D7:99:E4:1D:E2:19:A5:12:27:1C:B3:08:42:5D:6A
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0B9D
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/faqpl6DXmeQd4hmlEiccswhCXWo.roa
Signing time: Fri 01 Sep 2023 09:11:30 +0000
ROA not before: Fri 01 Sep 2023 09:11:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 61.63.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2973 (0xb9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 1 09:11:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7DAAA997A0D799E41DE219A512271CB308425D6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2f:d8:e9:16:6b:18:26:31:c2:93:9f:f4:ae:
df:1c:6a:4d:9b:c9:c9:32:7a:94:6b:09:18:a6:72:
c5:6e:c4:dd:90:99:5e:bb:82:5f:a6:54:05:1c:fa:
99:85:d5:dc:93:8f:55:62:d4:63:5c:e3:80:0d:25:
1a:e2:51:4e:86:5a:6b:38:a1:35:49:53:be:79:b7:
b3:09:fe:1d:a2:4f:1e:ce:7e:aa:97:24:99:3a:7e:
ab:03:7c:f6:ad:9e:35:aa:05:3f:40:f8:c1:29:d7:
75:a5:5d:3b:62:c8:8a:e7:c8:27:d5:09:17:d1:44:
2e:27:4c:a0:cd:46:83:be:b1:f8:f1:95:ec:94:ee:
e3:9d:95:48:13:4f:b6:aa:ff:3c:db:12:8a:da:7d:
59:c4:bf:3b:51:99:fb:db:a1:88:f6:ad:bb:f8:aa:
0f:62:76:83:12:ee:74:43:c9:57:29:3a:60:22:5c:
63:3e:58:6b:04:a2:5f:8b:e8:a2:43:d3:dc:b3:99:
c1:81:33:b5:7f:3c:89:5d:53:60:c9:36:fd:51:6f:
79:23:0c:55:4b:c0:1e:84:92:41:90:ff:df:2b:32:
b8:59:45:6c:ac:c2:a1:20:94:e5:81:8a:6a:4a:a8:
d2:f3:a8:60:04:86:82:7e:d8:27:1d:aa:aa:77:0a:
66:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AA:A9:97:A0:D7:99:E4:1D:E2:19:A5:12:27:1C:B3:08:42:5D:6A
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/faqpl6DXmeQd4hmlEiccswhCXWo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.63.0/24
Signature Algorithm: sha256WithRSAEncryption
11:fd:f0:0f:e8:49:11:86:c7:6d:66:bb:db:93:15:6a:da:1d:
ba:24:61:b0:6e:ca:82:78:70:b8:58:46:bc:c0:1d:0d:11:bd:
62:3f:25:a4:77:a8:51:ac:ff:01:78:97:57:e9:da:6a:72:b0:
e7:f0:f3:51:a5:fe:29:f5:9c:b0:cc:c3:3c:ae:f5:60:b4:de:
da:a4:90:40:31:1f:0d:e1:6e:e4:36:e0:62:32:86:70:11:7b:
27:cb:2e:6f:49:94:55:b2:b8:0b:18:08:75:fd:d9:d6:35:f9:
e4:5e:94:b1:66:70:3b:d1:57:b6:c1:18:5d:96:87:05:a2:1c:
f2:d5:d3:d2:81:33:e3:36:c8:a8:1f:8e:25:24:03:36:37:77:
55:00:80:9c:a7:0d:4f:c1:62:95:a2:8e:1d:9a:be:7a:7f:d5:
ad:04:47:48:69:da:92:c6:33:21:91:8b:14:8d:34:17:c6:ed:
d2:3f:0d:1f:f5:78:5e:71:59:d3:f3:9a:1b:36:0a:00:10:8c:
54:ad:15:0c:d4:ba:79:ed:f2:8c:ed:15:44:9c:5a:82:c3:de:
8d:00:35:08:ac:53:c5:cd:d1:53:a1:30:25:b5:19:a7:72:65:
06:ca:44:f7:97:d7:0a:06:00:e1:43:a4:8e:a9:06:45:a7:40:
2b:b5:17:54
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC
RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yMzA5MDEw
OTExMjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdEQUFBOTk3QTBENzk5
RTQxREUyMTlBNTEyMjcxQ0IzMDg0MjVENkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0L9jpFmsYJjHCk5/0rt8cak2byckyepRrCRimcsVuxN2QmV67
gl+mVAUc+pmF1dyTj1Vi1GNc44ANJRriUU6GWms4oTVJU755t7MJ/h2iTx7OfqqX
JJk6fqsDfPatnjWqBT9A+MEp13WlXTtiyIrnyCfVCRfRRC4nTKDNRoO+sfjxleyU
7uOdlUgTT7aq/zzbEorafVnEvztRmfvboYj2rbv4qg9idoMS7nRDyVcpOmAiXGM+
WGsEol+L6KJD09yzmcGBM7V/PIldU2DJNv1Rb3kjDFVLwB6EkkGQ/98rMrhZRWys
wqEglOWBimpKqNLzqGAEhoJ+2Ccdqqp3CmZJAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUfaqpl6DXmeQd4hmlEiccswhCXWowHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe
JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi
N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL2ZhcXBsNkRYbWVRZDRobWxFaWNjc3do
Q1hXby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Pz8wDQYJ
KoZIhvcNAQELBQADggEBABH98A/oSRGGx21mu9uTFWraHbokYbBuyoJ4cLhYRrzA
HQ0RvWI/JaR3qFGs/wF4l1fp2mpysOfw81Gl/in1nLDMwzyu9WC03tqkkEAxHw3h
buQ24GIyhnAReyfLLm9JlFWyuAsYCHX92dY1+eRelLFmcDvRV7bBGF2WhwWiHPLV
09KBM+M2yKgfjiUkAzY3d1UAgJynDU/BYpWijh2avnp/1a0ER0hp2pLGMyGRixSN
NBfG7dI/DR/1eF5xWdPzmhs2CgAQjFStFQzUunnt8oztFUScWoLD3o0ANQisU8XN
0VOhMCW1GadyZQbKRPeX1woGAOFDpI6pBkWnQCu1F1Q=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org