Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa
File: a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa (raw, json)
Hash identifier: JfzBmwcOxvLnsz9gqryt2JIzGJ20O7HM+LcTWfSCnVg=
Subject key identifier: 6B:BF:DC:14:58:C9:28:EA:49:DE:10:F0:6C:03:39:6B:77:B8:17:83
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BC7
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa
Signing time: Fri 01 Sep 2023 09:40:39 +0000
ROA not before: Fri 01 Sep 2023 09:40:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 61.58.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3015 (0xbc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6BBFDC1458C928EA49DE10F06C03396B77B81783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:02:b2:f4:5a:83:cb:b3:77:b7:d0:f7:8e:c6:
41:f4:08:53:c0:62:53:ee:c3:2f:25:8c:de:2e:b7:
79:4d:c5:17:30:56:f0:0e:4d:ba:b6:c2:37:d7:32:
eb:db:b8:0c:91:75:04:63:62:19:c8:78:e5:39:8f:
1c:5d:a5:46:66:9f:c7:0c:fe:04:d7:14:ea:75:95:
cc:46:a0:f9:34:7e:a5:8d:cc:93:0b:d4:5c:65:fb:
2b:95:67:52:0a:96:42:d6:e2:2e:bf:ce:fe:82:4b:
73:af:ea:6b:00:ae:a5:97:73:8c:0f:81:2f:29:29:
d6:30:2b:10:fd:8a:b1:3a:c9:db:77:5e:92:9a:40:
3d:d2:e3:fb:96:1e:6f:9a:53:2f:72:77:49:9e:df:
1d:44:7d:8e:91:4e:ca:eb:f0:02:e6:da:4d:0f:45:
b6:88:7a:72:2f:77:d0:35:b1:8f:19:bc:08:d0:47:
18:09:ce:2d:c7:d9:cd:bd:2d:48:b6:f3:98:5a:3b:
81:7f:de:b8:a4:b1:3d:70:79:91:53:71:32:01:e5:
76:80:37:b0:c4:77:ca:1c:e4:46:b6:45:aa:88:01:
bf:bf:15:10:db:37:a6:9f:e9:7e:ed:77:b8:18:1a:
f3:51:61:c1:62:68:e6:67:bd:90:99:ee:c4:2c:cb:
a4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:BF:DC:14:58:C9:28:EA:49:DE:10:F0:6C:03:39:6B:77:B8:17:83
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.192.0/18
Signature Algorithm: sha256WithRSAEncryption
cc:4c:9e:3d:35:38:36:1d:57:00:75:5f:ce:ea:f9:fe:5c:36:
13:15:6b:80:fc:c1:ec:98:7e:81:0e:41:7c:12:78:e2:f6:22:
86:98:2d:c2:48:9f:86:f1:83:b4:31:62:70:87:13:c8:a5:08:
a6:77:a5:63:72:0e:81:05:4e:3b:85:5d:20:d2:be:63:dc:8f:
fa:60:77:ba:bf:6d:6a:57:27:66:be:63:b1:79:45:e1:ee:dd:
e8:a8:48:69:4a:7c:84:7a:42:04:ad:a6:38:96:a0:2e:6f:b6:
2d:21:34:02:21:6f:42:7b:69:b8:47:50:78:cd:a7:63:b2:9a:
a4:3e:2b:98:8c:aa:b9:1d:88:e5:4f:ee:df:a3:80:ec:0b:e2:
b5:b9:b1:38:ac:cb:f8:1d:51:59:01:13:3e:e8:37:10:f2:44:
b6:f5:11:00:01:a7:8a:a3:ac:c0:40:31:63:e2:45:78:4f:9a:
74:fc:70:8d:32:a9:5c:28:a3:60:b9:19:24:09:33:de:ad:12:
b0:85:c2:b1:32:43:7a:22:32:66:d6:1e:33:23:df:af:1c:1a:
3e:f9:a1:ff:23:57:b6:5d:82:85:1f:0d:8e:19:06:38:b7:e6:
15:f3:67:13:b4:60:eb:b3:64:7b:b8:fe:5d:c0:33:72:67:5d:
35:21:3a:5a
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw
OTQwMzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZCQkZEQzE0NThDOTI4
RUE0OURFMTBGMDZDMDMzOTZCNzdCODE3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCArL0WoPLs3e30PeOxkH0CFPAYlPuwy8ljN4ut3lNxRcwVvAO
Tbq2wjfXMuvbuAyRdQRjYhnIeOU5jxxdpUZmn8cM/gTXFOp1lcxGoPk0fqWNzJML
1Fxl+yuVZ1IKlkLW4i6/zv6CS3Ov6msArqWXc4wPgS8pKdYwKxD9irE6ydt3XpKa
QD3S4/uWHm+aUy9yd0me3x1EfY6RTsrr8ALm2k0PRbaIenIvd9A1sY8ZvAjQRxgJ
zi3H2c29LUi285haO4F/3riksT1weZFTcTIB5XaAN7DEd8oc5Ea2RaqIAb+/FRDb
N6af6X7td7gYGvNRYcFiaOZnvZCZ7sQsy6TbAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUa7/cFFjJKOpJ3hDwbAM5a3e4F4MwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vYTdfY0ZGakpLT3BKM2hE
d2JBTTVhM2U0RjRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bj06wDANBgkqhkiG9w0BAQsFAAOCAQEAzEyePTU4Nh1XAHVfzur5/lw2ExVrgPzB
7Jh+gQ5BfBJ44vYihpgtwkifhvGDtDFicIcTyKUIpnelY3IOgQVOO4VdINK+Y9yP
+mB3ur9talcnZr5jsXlF4e7d6KhIaUp8hHpCBK2mOJagLm+2LSE0AiFvQntpuEdQ
eM2nY7KapD4rmIyquR2I5U/u36OA7AvitbmxOKzL+B1RWQETPug3EPJEtvURAAGn
iqOswEAxY+JFeE+adPxwjTKpXCijYLkZJAkz3q0SsIXCsTJDeiIyZtYeMyPfrxwa
Pvmh/yNXtl2ChR8NjhkGOLfmFfNnE7Rg67Nke7j+XcAzcmddNSE6Wg==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org