Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/kXy2V6DD3tFUQR94QhQeLifsQC4.roa
File: kXy2V6DD3tFUQR94QhQeLifsQC4.roa (raw, json)
Hash identifier: PzOE9nizAAibhz3jdWzPAzi0NIZlj9bHqY3xcXDe/iQ=
Subject key identifier: 91:7C:B6:57:A0:C3:DE:D1:54:41:1F:78:42:14:1E:2E:27:EC:40:2E
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BF5
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/kXy2V6DD3tFUQR94QhQeLifsQC4.roa
Signing time: Fri 01 Sep 2023 09:11:49 +0000
ROA not before: Fri 01 Sep 2023 09:11:49 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9416
IP address blocks: 123.252.0.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3061 (0xbf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:49 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=917CB657A0C3DED154411F7842141E2E27EC402E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:23:01:ff:4e:62:fe:96:fd:1a:0d:6c:a7:d2:
df:e1:5d:67:73:68:f9:97:16:4b:3c:a9:35:66:a7:
22:0c:16:58:a2:31:00:fc:da:c5:27:c5:cf:a4:56:
1f:58:0e:7e:cd:0a:42:b3:50:2f:cb:3c:e8:eb:bf:
22:b8:fa:7a:84:8e:36:27:ba:d1:ac:79:ef:4c:71:
38:c4:75:21:e1:75:0e:5f:c9:5a:5b:3e:59:d1:75:
2e:d4:dd:6d:36:13:81:29:3b:cc:ce:32:08:ba:cc:
ad:8c:2e:31:2a:3a:2f:15:88:a9:f0:e0:61:e6:71:
db:f9:4c:a2:be:24:7c:40:f6:16:4a:bb:57:77:a6:
5a:f2:80:48:a2:09:8b:69:bf:68:9c:41:a2:73:c8:
bb:f7:4f:b9:eb:f3:5e:5f:bc:2b:a5:2b:ae:f6:39:
f8:26:57:a4:cf:45:7a:c8:f6:8e:95:49:71:2b:05:
b8:d5:54:e9:be:e8:0d:4b:6c:85:9e:14:21:e7:81:
53:23:52:c9:69:fd:00:4c:3c:68:0b:4f:31:59:d0:
64:48:7f:46:37:22:a6:57:32:2f:5c:0e:82:c9:2e:
e4:c0:4b:24:6c:53:92:94:ed:bc:73:03:3d:3c:70:
64:3b:5e:97:9d:c9:23:f6:f3:f7:76:96:b1:76:ed:
9d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7C:B6:57:A0:C3:DE:D1:54:41:1F:78:42:14:1E:2E:27:EC:40:2E
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/kXy2V6DD3tFUQR94QhQeLifsQC4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/18
Signature Algorithm: sha256WithRSAEncryption
5a:0a:a7:04:43:09:87:c9:80:c8:4b:c1:ed:46:3c:47:2a:ed:
37:7e:59:67:e1:a6:97:1e:79:98:ce:a5:bc:8d:68:47:f8:41:
06:7b:28:88:0e:1f:fd:19:6e:29:c9:99:63:49:47:76:0d:9c:
12:37:f1:32:c4:40:b4:05:e9:83:07:5b:95:20:be:3f:24:5b:
ae:79:0b:cc:66:ce:56:2d:a0:2f:28:fc:42:09:93:45:88:85:
38:ef:bd:59:f2:c1:c5:4a:6f:b8:66:14:89:13:08:64:11:be:
1a:d9:cc:a7:e9:22:08:f8:3e:af:55:5d:24:4f:71:de:0c:d0:
7e:3a:20:c0:af:72:44:34:7f:dc:47:00:5c:82:3b:ab:95:81:
72:08:73:69:b8:4b:59:59:ee:ec:d7:54:6b:f5:08:c5:f0:6d:
dd:85:51:21:6b:5b:83:8e:a2:b1:38:99:e7:5a:5b:b5:57:18:
5d:9c:76:1e:e7:3a:b0:67:a2:44:3d:74:a2:cc:19:3e:9f:39:
74:4b:f9:5e:2c:8a:f4:b8:c8:58:c0:3f:0b:c9:90:56:32:ad:
6e:22:63:0c:4e:d9:e7:4b:75:41:c4:2b:47:d3:76:f6:bf:32:
6f:40:4a:03:81:cd:bf:02:63:41:a6:94:a9:b3:22:b2:ba:e7:
49:ca:91:21
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk5
QkJFMTMxREY1RDM0NkYyNzYyN0NDNEY4RkE5RkI1NzU4MTkyOTAeFw0yMzA5MDEw
OTExNDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxN0NCNjU3QTBDM0RF
RDE1NDQxMUY3ODQyMTQxRTJFMjdFQzQwMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRIwH/TmL+lv0aDWyn0t/hXWdzaPmXFks8qTVmpyIMFliiMQD8
2sUnxc+kVh9YDn7NCkKzUC/LPOjrvyK4+nqEjjYnutGsee9McTjEdSHhdQ5fyVpb
PlnRdS7U3W02E4EpO8zOMgi6zK2MLjEqOi8ViKnw4GHmcdv5TKK+JHxA9hZKu1d3
plrygEiiCYtpv2icQaJzyLv3T7nr815fvCulK672OfgmV6TPRXrI9o6VSXErBbjV
VOm+6A1LbIWeFCHngVMjUslp/QBMPGgLTzFZ0GRIf0Y3IqZXMi9cDoLJLuTASyRs
U5KU7bxzAz08cGQ7XpedySP28/d2lrF27Z0vAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUkXy2V6DD3tFUQR94QhQeLifsQC4wHwYDVR0jBBgwFoAUmZu+Ex3100bydifM
T4+p+1dYGSkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5H
L21adS1FeDMxMDBieWRpZk1UNC1wLTFkWUdTay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbVp1LUV4MzEwMGJ5ZGlmTVQ0LXAtMWRZR1NrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0UtSU5HL2tYeTJWNkREM3RGVVFSOTRR
aFFlTGlmc1FDNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7
/AAwDQYJKoZIhvcNAQELBQADggEBAFoKpwRDCYfJgMhLwe1GPEcq7Td+WWfhppce
eZjOpbyNaEf4QQZ7KIgOH/0ZbinJmWNJR3YNnBI38TLEQLQF6YMHW5Ugvj8kW655
C8xmzlYtoC8o/EIJk0WIhTjvvVnywcVKb7hmFIkTCGQRvhrZzKfpIgj4Pq9VXSRP
cd4M0H46IMCvckQ0f9xHAFyCO6uVgXIIc2m4S1lZ7uzXVGv1CMXwbd2FUSFrW4OO
orE4medaW7VXGF2cdh7nOrBnokQ9dKLMGT6fOXRL+V4sivS4yFjAPwvJkFYyrW4i
YwxO2edLdUHEK0fTdva/Mm9ASgOBzb8CY0GmlKmzIrK650nKkSE=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org