Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/i-6yeaRsPGOIWQa1ewQddROdpdA.roa
File: i-6yeaRsPGOIWQa1ewQddROdpdA.roa (raw, json)
Hash identifier: ehC0d2h7omhaf1TedrbremHiL4NSh+JV5kNTeLbbqD0=
Subject key identifier: 8B:EE:B2:79:A4:6C:3C:63:88:59:06:B5:7B:04:1D:75:13:9D:A5:D0
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 0B3C
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/i-6yeaRsPGOIWQa1ewQddROdpdA.roa
Signing time: Fri 01 Sep 2023 09:34:46 +0000
ROA not before: Fri 01 Sep 2023 09:34:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17420
IP address blocks: 2403:9f00::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2876 (0xb3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Sep 1 09:34:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8BEEB279A46C3C63885906B57B041D75139DA5D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:f5:48:39:e7:40:b6:80:31:4e:c9:5d:73:
bb:af:3c:94:dc:99:5c:c6:eb:cc:f0:06:8d:6f:80:
ef:bf:5a:e0:4c:a6:fe:2c:84:38:5d:76:97:2c:5b:
ed:aa:58:ac:ca:70:d5:ab:23:35:39:09:42:d1:e3:
c1:23:eb:6e:51:a1:b7:62:9b:0c:d4:ee:18:c7:87:
29:0e:f6:87:6e:06:eb:c5:cb:ce:c0:8e:61:81:68:
48:5b:a2:6a:30:c6:6c:c7:2c:f9:b7:35:91:58:39:
11:0c:16:66:f3:fc:d8:aa:9f:37:c3:7f:da:5e:0e:
60:84:5c:64:da:e8:9b:54:e7:fb:7b:52:83:cf:fc:
40:12:5a:6c:57:11:f3:44:87:ff:67:fd:73:57:a7:
68:4a:7b:84:ef:e3:d3:8e:45:07:14:2c:38:52:9c:
a7:23:cc:b2:6e:dc:85:f2:bd:1c:31:ec:d1:97:5d:
cb:22:2d:a9:36:6e:68:e4:7a:22:41:e6:17:60:33:
ef:84:04:ab:b2:a9:7d:27:5c:e6:76:b8:1d:d8:d0:
ac:0e:92:50:04:30:ec:9d:d9:a6:18:be:2a:b9:75:
07:bb:43:49:45:62:10:b8:aa:29:b5:1b:cb:ae:21:
35:e8:fe:90:94:d0:86:6e:c5:2c:26:fb:50:95:04:
3c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EE:B2:79:A4:6C:3C:63:88:59:06:B5:7B:04:1D:75:13:9D:A5:D0
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/i-6yeaRsPGOIWQa1ewQddROdpdA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9f00::/32
Signature Algorithm: sha256WithRSAEncryption
59:cb:2d:b4:05:6b:89:d8:20:94:e8:35:f2:9c:aa:cf:34:4f:
cf:aa:cf:8f:0a:19:6b:a2:22:6c:9e:e4:60:b0:a9:d5:94:c3:
55:55:81:c6:e0:53:c9:04:43:ef:b7:1b:f2:64:11:05:4b:74:
d5:d6:98:15:b5:a6:8e:f0:63:63:86:b7:89:ec:9e:1e:91:94:
81:18:14:bf:4f:2d:66:da:3e:8a:da:7e:9d:10:e6:6e:bb:d4:
9d:38:4f:dc:42:3a:fd:05:a9:c7:91:ff:23:58:38:3c:4a:64:
e1:3c:8a:f8:6b:c6:c8:f6:71:51:3a:b0:64:09:9b:27:db:0e:
20:a6:73:df:82:64:aa:0b:02:71:72:3a:84:b2:21:9c:24:25:
45:cd:10:13:ba:df:1a:d0:9d:4c:cc:cf:6a:2e:96:a0:30:ec:
0f:c9:70:ac:c3:c3:12:ae:f8:79:c0:5f:5a:8b:0a:bf:60:ae:
94:fe:25:fe:56:da:46:0b:c2:e1:0f:fd:16:1c:5c:96:8e:a7:
f0:d0:d6:12:50:17:43:11:e4:b8:92:2d:e4:db:91:76:4a:b8:
31:fd:eb:00:e2:55:77:f5:42:8c:66:43:e3:66:b1:13:a9:92:
3e:64:ef:4e:2b:43:80:1f:91:4f:a9:6e:0e:07:ec:8a:09:f3:
63:6f:2e:5e
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCzwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5
QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yMzA5MDEw
OTM0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhCRUVCMjc5QTQ2QzND
NjM4ODU5MDZCNTdCMDQxRDc1MTM5REE1RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxG/VIOedAtoAxTsldc7uvPJTcmVzG68zwBo1vgO+/WuBMpv4s
hDhddpcsW+2qWKzKcNWrIzU5CULR48Ej625RobdimwzU7hjHhykO9oduBuvFy87A
jmGBaEhbomowxmzHLPm3NZFYOREMFmbz/NiqnzfDf9peDmCEXGTa6JtU5/t7UoPP
/EASWmxXEfNEh/9n/XNXp2hKe4Tv49OORQcULDhSnKcjzLJu3IXyvRwx7NGXXcsi
Lak2bmjkeiJB5hdgM++EBKuyqX0nXOZ2uB3Y0KwOklAEMOyd2aYYviq5dQe7Q0lF
YhC4qim1G8uuITXo/pCU0IZuxSwm+1CVBDwNAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUi+6yeaRsPGOIWQa1ewQddROdpdAwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+
sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv
VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9pLTZ5ZWFSc1BHT0lXUWExZXdR
ZGRST2RwZEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOf
ADANBgkqhkiG9w0BAQsFAAOCAQEAWcsttAVridgglOg18pyqzzRPz6rPjwoZa6Ii
bJ7kYLCp1ZTDVVWBxuBTyQRD77cb8mQRBUt01daYFbWmjvBjY4a3ieyeHpGUgRgU
v08tZto+itp+nRDmbrvUnThP3EI6/QWpx5H/I1g4PEpk4TyK+GvGyPZxUTqwZAmb
J9sOIKZz34JkqgsCcXI6hLIhnCQlRc0QE7rfGtCdTMzPai6WoDDsD8lwrMPDEq74
ecBfWosKv2CulP4l/lbaRgvC4Q/9Fhxclo6n8NDWElAXQxHkuJIt5NuRdkq4Mf3r
AOJVd/VCjGZD42axE6mSPmTvTitDgB+RT6luDgfsignzY28uXg==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org