Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/9rSDByjaKORiTJjzqZBKIAIa9jI.roa
File: 9rSDByjaKORiTJjzqZBKIAIa9jI.roa (raw, json)
Hash identifier: MHiUezEHc/i+eXrDu80Ss5HkfDllrlvRP4K1oh4s6OY=
Subject key identifier: F6:B4:83:07:28:DA:28:E4:62:4C:98:F3:A9:90:4A:20:02:1A:F6:32
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 0766
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/9rSDByjaKORiTJjzqZBKIAIa9jI.roa
Signing time: Fri 01 Sep 2023 09:36:21 +0000
ROA not before: Fri 01 Sep 2023 09:36:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131642
IP address blocks: 2405:cdc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1894 (0x766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Sep 1 09:36:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F6B4830728DA28E4624C98F3A9904A20021AF632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b6:98:0b:25:98:5a:33:4c:22:17:59:4e:f7:
f9:86:09:83:b8:93:86:d5:4d:cf:04:49:d5:89:ce:
61:2c:b4:b6:9a:b8:71:ee:4f:ef:79:20:de:ea:51:
04:a1:1b:d6:8d:5a:d2:93:ad:ee:3a:31:e5:1b:f1:
50:ae:fa:67:d2:ae:e7:f1:f1:a3:ba:7d:31:d0:e1:
57:52:54:1a:12:18:19:34:98:11:bf:83:a2:a9:ce:
53:23:6b:30:2b:33:c9:c0:51:cf:44:30:b1:b1:05:
d3:02:e6:94:d8:63:2e:51:74:a2:42:34:53:d9:37:
dc:44:de:b1:17:b9:bf:f4:61:1d:32:63:df:87:8a:
f7:d2:e6:ef:0d:32:e3:f6:0e:d1:0f:89:61:4c:27:
eb:30:05:77:cd:09:ba:93:c7:b7:61:b1:17:a8:65:
d8:79:e6:7d:51:7d:7b:f3:61:6f:1f:76:40:fa:5e:
19:73:f6:17:72:d7:f1:03:0a:0f:a0:94:50:9f:b0:
20:73:3f:16:9d:20:e2:2b:50:e5:d5:5c:9a:6c:39:
08:14:41:09:6a:8f:90:1f:6a:5c:b0:8c:cd:02:58:
06:db:5c:3b:03:7b:ad:72:a8:06:a4:5e:37:12:49:
5b:45:f5:de:c9:03:c3:0a:09:8b:e2:ec:2c:72:99:
4e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B4:83:07:28:DA:28:E4:62:4C:98:F3:A9:90:4A:20:02:1A:F6:32
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/9rSDByjaKORiTJjzqZBKIAIa9jI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:cdc0::/32
Signature Algorithm: sha256WithRSAEncryption
66:f5:65:b1:cf:bc:ee:e8:a6:03:6e:c2:84:39:02:71:a2:cf:
4a:a7:8b:b3:46:7b:7c:b5:08:b7:fe:f7:1d:21:37:cc:c2:27:
10:c7:35:41:fa:72:bb:08:6b:e3:02:ca:72:aa:a0:20:eb:28:
91:91:d6:19:74:5f:78:e6:45:88:ed:0f:a9:84:6f:3b:46:2e:
e5:1b:2e:de:d4:51:f7:67:84:04:85:61:cf:13:87:dc:16:ed:
92:70:43:24:90:b8:4c:36:54:d8:c2:a2:d5:b5:25:4c:a1:ae:
96:9c:d7:82:4e:fd:34:f5:9d:77:55:4a:00:2e:e2:16:b8:47:
8e:2c:b0:a5:2e:1e:c2:2e:a9:13:e1:bb:a2:d5:ee:da:e0:0a:
57:88:64:ee:12:f1:85:90:3a:57:c6:de:14:78:48:b1:9a:f6:
b6:c9:76:d1:76:27:1a:04:9a:23:f5:22:80:db:d5:40:c2:87:
d7:bf:4b:99:72:5a:b2:2a:d1:a1:0d:b7:f0:bb:9e:4f:34:e7:
2d:21:9a:17:f3:f9:58:64:e6:6e:34:fa:f7:77:55:00:1b:4a:
e0:f1:d8:23:4b:b7:f3:16:59:33:2a:a2:79:1c:e7:7b:7a:2e:
55:07:f6:fd:40:df:5b:f9:5c:47:66:14:bd:69:dc:c3:dc:ca:
47:83:97:5d
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx
OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yMzA5MDEw
OTM2MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY2QjQ4MzA3MjhEQTI4
RTQ2MjRDOThGM0E5OTA0QTIwMDIxQUY2MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5tpgLJZhaM0wiF1lO9/mGCYO4k4bVTc8ESdWJzmEstLaauHHu
T+95IN7qUQShG9aNWtKTre46MeUb8VCu+mfSrufx8aO6fTHQ4VdSVBoSGBk0mBG/
g6KpzlMjazArM8nAUc9EMLGxBdMC5pTYYy5RdKJCNFPZN9xE3rEXub/0YR0yY9+H
ivfS5u8NMuP2DtEPiWFMJ+swBXfNCbqTx7dhsReoZdh55n1RfXvzYW8fdkD6Xhlz
9hdy1/EDCg+glFCfsCBzPxadIOIrUOXVXJpsOQgUQQlqj5AfalywjM0CWAbbXDsD
e61yqAakXjcSSVtF9d7JA8MKCYvi7CxymU7RAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU9rSDByjaKORiTJjzqZBKIAIa9jIwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs
qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S
akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JLzlyU0RCeWphS09SaVRKanpxWkJLSUFJ
YTlqSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBc3AMA0G
CSqGSIb3DQEBCwUAA4IBAQBm9WWxz7zu6KYDbsKEOQJxos9Kp4uzRnt8tQi3/vcd
ITfMwicQxzVB+nK7CGvjAspyqqAg6yiRkdYZdF945kWI7Q+phG87Ri7lGy7e1FH3
Z4QEhWHPE4fcFu2ScEMkkLhMNlTYwqLVtSVMoa6WnNeCTv009Z13VUoALuIWuEeO
LLClLh7CLqkT4bui1e7a4ApXiGTuEvGFkDpXxt4UeEixmva2yXbRdicaBJoj9SKA
29VAwofXv0uZclqyKtGhDbfwu55PNOctIZoX8/lYZOZuNPr3d1UAG0rg8dgjS7fz
FlkzKqJ5HOd7ei5VB/b9QN9b+VxHZhS9adzD3MpHg5dd
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:15 2024 by rpki-client on console-ams.rpki-client.org