Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ihv2-0pW3kqjd0wpMwJBFnmF894.roa
File: ihv2-0pW3kqjd0wpMwJBFnmF894.roa (raw, json)
Hash identifier: Ef7V7erZex8DcA0NKr0iNJrGS269MzYwHJEld2GGJGU=
Subject key identifier: 8A:1B:F6:FB:4A:56:DE:4A:A3:77:4C:29:33:02:41:16:79:85:F3:DE
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0C17
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ihv2-0pW3kqjd0wpMwJBFnmF894.roa
Signing time: Fri 01 Sep 2023 09:13:58 +0000
ROA not before: Fri 01 Sep 2023 09:13:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9919
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3095 (0xc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 1 09:13:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8A1BF6FB4A56DE4AA3774C29330241167985F3DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:39:0e:22:32:6e:14:bd:8a:ae:f6:8c:8f:31:
01:11:1a:61:95:f8:cb:97:6d:c8:1b:ec:64:cc:8c:
df:03:33:0f:d0:3b:0b:e7:5d:2d:d4:af:7d:c6:db:
a2:37:58:09:8d:2d:e8:03:38:3b:7b:4e:c3:46:63:
55:4f:2a:ef:e8:43:ca:44:ea:d1:b3:e6:62:a5:03:
85:cb:ca:89:44:f8:48:f8:18:4a:f1:62:fa:3b:94:
cc:35:e8:57:a6:db:87:8e:7c:c1:71:8b:62:0b:46:
8f:ef:c7:97:0d:4d:08:a1:f3:92:9a:e4:a8:12:89:
32:eb:51:03:19:6d:f3:87:ba:fc:19:7b:c8:6c:a4:
05:b6:0e:19:12:b0:52:40:28:bd:ab:2f:65:02:89:
2d:5d:dd:c1:71:77:ed:77:b3:98:92:3b:83:88:1a:
d1:95:68:6e:ab:d4:6f:e6:5b:8a:8b:3d:8b:dc:47:
1d:b7:d8:0c:a9:e0:5e:96:e2:aa:fa:ee:04:11:b5:
08:c3:28:06:54:cf:6b:59:8b:07:89:28:4c:d1:a4:
9e:5b:15:af:3f:f9:31:7d:dc:ea:52:d2:12:a7:e6:
35:19:ff:b1:16:99:b7:15:16:ea:73:48:69:4d:f6:
16:09:f2:1f:79:cc:15:7a:5c:e7:27:fa:ee:17:98:
ff:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1B:F6:FB:4A:56:DE:4A:A3:77:4C:29:33:02:41:16:79:85:F3:DE
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ihv2-0pW3kqjd0wpMwJBFnmF894.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
50:64:3b:fb:63:fb:26:92:ed:8a:91:79:4b:2e:52:86:f8:ce:
b8:c7:8b:0c:51:a4:56:85:c1:ba:84:69:10:c9:ee:0f:f7:20:
e3:c4:a8:42:7c:06:de:2d:d6:dc:e2:ee:bd:62:82:34:a0:38:
a9:cb:b8:24:f5:fe:dc:3e:eb:e7:f9:1d:52:c1:d5:94:47:a2:
ab:6e:ed:34:33:24:e0:68:ba:bd:61:c0:0e:09:ff:87:2c:da:
71:7d:f4:1a:c4:1d:b4:10:53:3d:6f:64:3a:d3:26:7b:aa:a6:
cf:64:56:02:5e:87:9a:4b:cd:bc:13:75:b8:4a:18:aa:a8:f4:
17:7b:8d:72:31:6e:5b:9f:1e:8a:6d:3e:6c:8c:ab:33:6e:0c:
71:ab:24:bf:62:be:8f:a3:4e:b7:eb:50:67:af:69:ce:33:4b:
11:70:70:eb:f6:6d:d0:e7:fc:88:74:95:6a:af:1b:47:18:97:
e5:f1:2c:12:33:ef:68:55:73:c8:55:09:f8:3a:e8:1a:db:02:
1d:43:17:20:90:96:9d:82:77:8a:2a:a6:8e:52:3c:95:f6:72:
83:b1:e6:36:58:e8:f5:99:9e:45:81:05:9d:50:00:c3:55:02:
c0:a0:0b:23:fc:17:e1:f8:93:b1:41:99:ef:17:74:f9:c7:37:
da:7a:28:8e
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDBcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw
OTEzNThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhBMUJGNkZCNEE1NkRF
NEFBMzc3NEMyOTMzMDI0MTE2Nzk4NUYzREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQOQ4iMm4UvYqu9oyPMQERGmGV+MuXbcgb7GTMjN8DMw/QOwvn
XS3Ur33G26I3WAmNLegDODt7TsNGY1VPKu/oQ8pE6tGz5mKlA4XLyolE+Ej4GErx
Yvo7lMw16Fem24eOfMFxi2ILRo/vx5cNTQih85Ka5KgSiTLrUQMZbfOHuvwZe8hs
pAW2DhkSsFJAKL2rL2UCiS1d3cFxd+13s5iSO4OIGtGVaG6r1G/mW4qLPYvcRx23
2Ayp4F6W4qr67gQRtQjDKAZUz2tZiweJKEzRpJ5bFa8/+TF93OpS0hKn5jUZ/7EW
mbcVFupzSGlN9hYJ8h95zBV6XOcn+u4XmP91AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUihv2+0pW3kqjd0wpMwJBFnmF894wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2lodjItMHBXM2txamQwd3BNd0pCRm5t
Rjg5NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTTgAwDQYJ
KoZIhvcNAQELBQADggEBAFBkO/tj+yaS7YqReUsuUob4zrjHiwxRpFaFwbqEaRDJ
7g/3IOPEqEJ8Bt4t1tzi7r1igjSgOKnLuCT1/tw+6+f5HVLB1ZRHoqtu7TQzJOBo
ur1hwA4J/4cs2nF99BrEHbQQUz1vZDrTJnuqps9kVgJeh5pLzbwTdbhKGKqo9Bd7
jXIxblufHoptPmyMqzNuDHGrJL9ivo+jTrfrUGevac4zSxFwcOv2bdDn/Ih0lWqv
G0cYl+XxLBIz72hVc8hVCfg66BrbAh1DFyCQlp2Cd4oqpo5SPJX2coOx5jZY6PWZ
nkWBBZ1QAMNVAsCgCyP8F+H4k7FBme8XdPnHN9p6KI4=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org