Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/dV76OgQJJx7OTucLsvegk_FMoeY.roa
File: dV76OgQJJx7OTucLsvegk_FMoeY.roa (raw, json)
Hash identifier: npamGsGH3eArhYrGtxw26sJ9tz+K/HWlL1NTkKK/pFY=
Subject key identifier: 75:5E:FA:3A:04:09:27:1E:CE:4E:E7:0B:B2:F7:A0:93:F1:4C:A1:E6
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BBD
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/dV76OgQJJx7OTucLsvegk_FMoeY.roa
Signing time: Fri 01 Sep 2023 09:40:37 +0000
ROA not before: Fri 01 Sep 2023 09:40:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 61.60.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3005 (0xbbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=755EFA3A0409271ECE4EE70BB2F7A093F14CA1E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:11:a9:cd:26:b9:08:4a:56:34:44:7e:70:
8b:fd:54:ce:1e:b5:8f:b6:ef:fa:bf:b7:63:af:b2:
0c:00:04:43:94:a3:89:08:f8:2d:ce:cc:53:ec:ab:
69:92:a1:c7:d5:aa:d9:2b:01:80:2a:a2:be:07:3e:
11:4c:40:12:f3:56:66:da:84:ff:b4:c8:28:7b:0d:
e8:02:95:02:1b:ba:6a:47:4a:33:83:c1:9e:38:f5:
7e:6d:68:d0:9e:92:22:8d:2d:9a:31:35:fc:fb:e7:
2f:a6:93:c5:b3:db:81:bb:c0:05:0a:a7:22:f8:e2:
aa:a5:01:18:a4:3e:ad:c3:e4:97:11:db:b0:2c:d4:
18:41:df:4b:f0:70:ad:2f:2d:7d:f4:22:41:8d:48:
91:0c:ea:47:b1:09:18:5e:bf:af:05:f5:fa:48:d4:
bf:b5:a9:dd:f3:ed:c2:16:f3:66:14:33:87:03:d1:
21:6d:ff:fc:aa:4e:d4:e6:e2:e9:4c:2a:b6:28:29:
7c:dd:b3:55:32:17:4a:1f:68:0c:da:b3:a6:7e:d2:
64:08:e1:7b:65:8c:f6:b6:0b:27:d7:f5:b8:62:aa:
0b:11:fd:37:79:f9:13:57:69:3d:bf:7b:2c:eb:c4:
cb:a4:89:b8:fe:3e:c9:76:ee:5e:7d:71:52:7b:5c:
2b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:5E:FA:3A:04:09:27:1E:CE:4E:E7:0B:B2:F7:A0:93:F1:4C:A1:E6
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/dV76OgQJJx7OTucLsvegk_FMoeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.128.0/19
Signature Algorithm: sha256WithRSAEncryption
05:ce:06:02:7c:25:5a:88:8c:c0:04:e4:9c:60:f2:5b:4a:92:
8b:af:c0:ba:78:27:94:ff:a8:9f:46:d6:ab:72:bf:e8:91:73:
44:84:27:ae:28:d5:3c:d2:04:fb:f0:5a:4b:8f:d2:54:af:ed:
ea:0a:fc:c6:d1:44:4a:00:f2:c5:f4:40:6c:1f:01:62:5f:3b:
e5:47:93:1e:66:69:fd:8d:aa:83:8c:e5:b2:83:66:5d:54:0e:
3a:e4:f7:3d:2b:ac:7a:0a:07:06:da:83:5c:d8:d2:69:8e:54:
f9:9d:5f:c3:3d:5f:69:74:a5:64:08:fb:f2:5f:ea:49:11:79:
10:37:27:40:ae:58:02:d4:85:dd:74:21:be:af:4f:c8:a3:57:
18:69:0a:c7:fa:63:96:ac:0f:96:26:42:28:02:be:00:ae:0f:
e4:ad:48:74:76:3e:f6:70:81:c1:05:7f:18:7c:01:e4:f7:52:
9e:5c:6e:b5:6d:0a:d2:9b:1c:4d:58:29:e9:5e:54:ba:a5:01:
29:32:f1:df:c6:46:22:8b:f3:21:52:2b:02:ea:a1:59:62:04:
c7:23:5c:cb:49:8c:d0:8b:1b:af:21:f7:d0:ca:93:1e:11:ed:
9c:da:ae:a2:9e:e9:22:c3:55:1e:94:4f:78:5d:de:18:bc:8d:
3e:87:20:ce
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC70wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw
OTQwMzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc1NUVGQTNBMDQwOTI3
MUVDRTRFRTcwQkIyRjdBMDkzRjE0Q0ExRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+iBGpzSa5CEpWNER+cIv9VM4etY+27/q/t2OvsgwABEOUo4kI
+C3OzFPsq2mSocfVqtkrAYAqor4HPhFMQBLzVmbahP+0yCh7DegClQIbumpHSjOD
wZ449X5taNCekiKNLZoxNfz75y+mk8Wz24G7wAUKpyL44qqlARikPq3D5JcR27As
1BhB30vwcK0vLX30IkGNSJEM6kexCRhev68F9fpI1L+1qd3z7cIW82YUM4cD0SFt
//yqTtTm4ulMKrYoKXzds1UyF0ofaAzas6Z+0mQI4XtljPa2CyfX9bhiqgsR/Td5
+RNXaT2/eyzrxMukibj+Psl27l59cVJ7XCsZAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUdV76OgQJJx7OTucLsvegk/FMoeYwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vZFY3Nk9nUUpKeDdPVHVj
THN2ZWdrX0ZNb2VZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BT08gDANBgkqhkiG9w0BAQsFAAOCAQEABc4GAnwlWoiMwATknGDyW0qSi6/Aungn
lP+on0bWq3K/6JFzRIQnrijVPNIE+/BaS4/SVK/t6gr8xtFESgDyxfRAbB8BYl87
5UeTHmZp/Y2qg4zlsoNmXVQOOuT3PSusegoHBtqDXNjSaY5U+Z1fwz1faXSlZAj7
8l/qSRF5EDcnQK5YAtSF3XQhvq9PyKNXGGkKx/pjlqwPliZCKAK+AK4P5K1IdHY+
9nCBwQV/GHwB5PdSnlxutW0K0pscTVgp6V5UuqUBKTLx38ZGIovzIVIrAuqhWWIE
xyNcy0mM0IsbryH30MqTHhHtnNquop7pIsNVHpRPeF3eGLyNPocgzg==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org