Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/2HPl7rJoZT5favQ1ChZWaXcDSVM.roa
File: 2HPl7rJoZT5favQ1ChZWaXcDSVM.roa (raw, json)
Hash identifier: O17/QQHDHh0hg6tKRCKIqzezHXHb1oM7EdCXmj7C5so=
Subject key identifier: D8:73:E5:EE:B2:68:65:3E:5F:6A:F4:35:0A:16:56:69:77:03:49:53
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0B3C
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/2HPl7rJoZT5favQ1ChZWaXcDSVM.roa
Signing time: Fri 01 Sep 2023 09:21:35 +0000
ROA not before: Fri 01 Sep 2023 09:21:35 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18183
IP address blocks: 2001:4500::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2876 (0xb3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 1 09:21:35 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D873E5EEB268653E5F6AF4350A16566977034953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b6:9e:55:59:2e:a9:7e:a7:6a:04:1b:26:5d:
c4:f4:ab:8b:f1:d4:3b:5a:36:cd:0a:39:39:c0:80:
5c:aa:8e:04:98:2d:3e:a5:96:5d:46:60:db:27:1e:
df:5d:82:87:22:bb:30:4d:98:37:ae:54:08:90:49:
60:70:56:84:55:ca:c8:a1:9b:83:9f:49:dc:4e:4c:
bb:f1:27:c8:5d:82:bc:c9:b7:7b:a7:1d:64:2c:ba:
66:4b:80:52:6b:9b:6b:5d:d2:69:c6:5f:cb:84:d7:
40:e3:16:ff:ec:15:a5:71:e1:07:cb:3c:00:62:6f:
d8:dc:07:67:aa:d0:12:9a:ef:05:20:05:d6:f3:0c:
86:58:65:70:ee:54:1a:9d:5f:70:49:d0:6e:2c:6c:
d1:93:2c:ee:5a:84:de:7b:0f:c6:a6:8f:6d:c9:fa:
f7:4f:59:ae:50:17:d0:32:f2:b3:06:b1:39:46:b2:
60:7a:c4:99:7f:b6:27:20:e3:63:20:ab:d1:7b:59:
cd:b4:44:ee:6a:50:a5:24:a3:9a:62:22:72:ca:d9:
6f:09:a8:23:76:6e:63:75:1a:e2:63:a3:da:d9:50:
02:d6:70:b3:50:2b:32:2b:bc:b4:a6:dc:a7:3c:13:
bb:63:e2:bb:c8:9e:2a:6d:b1:b9:36:0b:2e:d6:a4:
bd:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:73:E5:EE:B2:68:65:3E:5F:6A:F4:35:0A:16:56:69:77:03:49:53
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/2HPl7rJoZT5favQ1ChZWaXcDSVM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4500::/32
Signature Algorithm: sha256WithRSAEncryption
4f:d9:71:4e:5f:ec:b5:4d:d9:51:1c:e1:68:05:66:a0:c7:f3:
fb:8a:50:90:23:86:45:f3:92:27:c9:d7:c8:85:9d:d5:45:b3:
11:22:5e:19:59:e3:ff:16:bf:82:1e:e5:db:8a:6a:7d:5c:ae:
d3:9d:ee:60:be:1e:09:e5:b3:a3:2c:cb:41:cf:b1:35:e9:bf:
99:69:9c:cf:33:f9:bc:d5:21:c1:2c:91:4a:04:99:e9:d9:cc:
e3:b7:1c:0d:17:18:12:3b:a1:ef:62:9e:62:4b:9e:bb:54:fe:
a3:aa:ea:69:7e:fb:58:b7:aa:0d:60:79:71:43:ee:8e:40:b8:
2b:a8:05:1b:b9:47:9e:81:40:7c:7b:96:b6:b1:2d:d0:9c:49:
ee:b9:b4:0e:7b:85:0f:a0:60:fc:ba:8f:2d:e5:b8:5b:d2:41:
ac:2c:62:27:37:89:cc:7e:2c:5d:fb:87:5d:34:3a:17:50:d0:
54:00:e6:ef:9f:97:b8:cf:f4:6e:5c:07:6d:91:4e:81:68:fc:
9a:84:e8:1c:6c:79:07:e6:0a:d7:82:d4:77:36:02:e3:a7:a0:
42:36:a5:56:82:15:b6:1c:ac:0d:19:54:21:39:f3:89:09:46:
50:52:16:27:0b:9f:86:ef:c1:09:c8:e6:67:29:47:fa:da:1f:
1b:31:e2:bd
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx
RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yMzA5MDEw
OTIxMzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ4NzNFNUVFQjI2ODY1
M0U1RjZBRjQzNTBBMTY1NjY5NzcwMzQ5NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9tp5VWS6pfqdqBBsmXcT0q4vx1DtaNs0KOTnAgFyqjgSYLT6l
ll1GYNsnHt9dgociuzBNmDeuVAiQSWBwVoRVysihm4OfSdxOTLvxJ8hdgrzJt3un
HWQsumZLgFJrm2td0mnGX8uE10DjFv/sFaVx4QfLPABib9jcB2eq0BKa7wUgBdbz
DIZYZXDuVBqdX3BJ0G4sbNGTLO5ahN57D8amj23J+vdPWa5QF9Ay8rMGsTlGsmB6
xJl/ticg42Mgq9F7Wc20RO5qUKUko5piInLK2W8JqCN2bmN1GuJjo9rZUALWcLNQ
KzIrvLSm3Kc8E7tj4rvIniptsbk2Cy7WpL3lAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU2HPl7rJoZT5favQ1ChZWaXcDSVMwHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p
AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S
Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvMkhQbDdySm9aVDVmYXZRMUNoWldh
WGNEU1ZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACABRQAw
DQYJKoZIhvcNAQELBQADggEBAE/ZcU5f7LVN2VEc4WgFZqDH8/uKUJAjhkXzkifJ
18iFndVFsxEiXhlZ4/8Wv4Ie5duKan1crtOd7mC+Hgnls6Msy0HPsTXpv5lpnM8z
+bzVIcEskUoEmenZzOO3HA0XGBI7oe9inmJLnrtU/qOq6ml++1i3qg1geXFD7o5A
uCuoBRu5R56BQHx7lraxLdCcSe65tA57hQ+gYPy6jy3luFvSQawsYic3icx+LF37
h100OhdQ0FQA5u+fl7jP9G5cB22RToFo/JqE6BxseQfmCteC1Hc2AuOnoEI2pVaC
FbYcrA0ZVCE584kJRlBSFicLn4bvwQnI5mcpR/raHxsx4r0=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org