Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jX3mx2g8zLaglCYSeNNCdAGxQk8.roa
File: jX3mx2g8zLaglCYSeNNCdAGxQk8.roa (raw, json)
Hash identifier: DF1hGsFOoqDsj7naFTWas/95bTY8cJGYmfOXWRg4Y1o=
Subject key identifier: 8D:7D:E6:C7:68:3C:CC:B6:A0:94:26:12:78:D3:42:74:01:B1:42:4F
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0BC3
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jX3mx2g8zLaglCYSeNNCdAGxQk8.roa
Signing time: Fri 01 Sep 2023 09:40:38 +0000
ROA not before: Fri 01 Sep 2023 09:40:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 122.201.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3011 (0xbc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Sep 1 09:40:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8D7DE6C7683CCCB6A094261278D3427401B1424F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:42:b6:35:3c:78:25:af:ae:c5:c6:7f:7f:cb:
a6:1c:65:ba:b1:cc:35:1f:c1:8c:5c:8a:24:19:5b:
97:c2:c1:70:1f:b5:63:09:8a:5b:a6:39:8c:29:9c:
30:9e:63:38:89:52:d8:d4:ab:4b:0a:f4:fa:f9:18:
97:de:0c:90:a7:2e:7e:9b:b6:b8:6f:af:09:7b:95:
cf:81:eb:64:82:d3:00:9e:08:d1:7f:15:99:66:d1:
7b:42:0a:5e:ff:d4:bd:c9:0e:35:ec:49:64:cb:e0:
21:ef:8f:42:fb:f7:99:74:18:f5:c0:3b:6c:49:81:
27:15:bb:7c:4b:60:7c:36:8f:52:85:7f:7c:7a:e1:
a6:ae:5a:25:a5:59:42:a4:c5:34:79:4f:b1:9a:c0:
d9:9e:ef:c8:a7:1c:89:81:b1:4a:10:ab:b0:8a:ca:
ea:be:d6:d4:8a:0c:8c:99:e1:12:cb:b4:94:05:fc:
97:e6:dd:5b:fe:f7:f7:90:c1:a1:1f:d5:2b:0b:1a:
75:e2:a7:43:1d:fc:59:f5:c8:4d:30:45:3c:07:c7:
3e:d3:35:8b:28:be:84:d6:be:c1:51:61:e7:b3:32:
9c:0b:2f:8d:99:20:85:b7:e6:f2:5e:c2:46:31:23:
c2:8c:46:9c:af:2a:5d:d4:a2:3d:a7:07:bf:68:c7:
07:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7D:E6:C7:68:3C:CC:B6:A0:94:26:12:78:D3:42:74:01:B1:42:4F
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jX3mx2g8zLaglCYSeNNCdAGxQk8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
19:3f:65:1d:e3:77:82:8e:97:20:d1:da:54:f6:ca:37:ee:13:
c4:a3:4a:9a:d4:30:d4:22:ed:ee:b2:28:68:11:cc:70:92:6f:
82:86:69:4d:93:95:c8:5a:08:7f:62:23:11:e9:76:44:38:c2:
e1:cb:f9:aa:56:0f:a4:61:c5:b6:88:90:f6:e1:79:7f:17:f3:
8f:1d:dc:cb:2f:a9:c9:a7:75:c3:d2:c7:30:f0:c7:f1:6d:39:
f1:b2:ea:c7:72:26:ee:77:22:53:35:9b:09:f5:e2:a3:0f:ad:
92:08:b4:eb:8b:c5:c1:85:13:3a:9e:d9:f0:df:f8:b7:68:4e:
e9:25:b3:48:42:cf:d9:58:93:e5:6c:29:42:f0:56:3e:ea:ea:
69:c3:d4:7c:4f:98:05:d5:cc:c7:a6:8c:3e:a7:61:03:9b:11:
86:9b:db:74:00:ec:2a:96:f8:d6:ce:aa:f7:2c:cb:11:0b:06:
eb:f4:54:83:b5:b0:ce:3f:0f:30:05:ac:e0:ce:cc:96:a5:d0:
30:3e:13:f7:e5:37:c3:d6:7d:9c:90:ad:5c:7c:a5:d7:17:33:
7d:d0:97:7f:36:3b:b6:6b:d0:1f:74:03:c9:e3:16:fb:da:ee:
b4:68:5c:25:ca:cd:e2:ba:a1:c1:b1:37:18:f2:30:45:a2:d6:
91:9a:c6:1b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB
NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw
OTQwMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhEN0RFNkM3NjgzQ0ND
QjZBMDk0MjYxMjc4RDM0Mjc0MDFCMTQyNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwQrY1PHglr67Fxn9/y6YcZbqxzDUfwYxciiQZW5fCwXAftWMJ
ilumOYwpnDCeYziJUtjUq0sK9Pr5GJfeDJCnLn6btrhvrwl7lc+B62SC0wCeCNF/
FZlm0XtCCl7/1L3JDjXsSWTL4CHvj0L795l0GPXAO2xJgScVu3xLYHw2j1KFf3x6
4aauWiWlWUKkxTR5T7GawNme78inHImBsUoQq7CKyuq+1tSKDIyZ4RLLtJQF/Jfm
3Vv+9/eQwaEf1SsLGnXip0Md/Fn1yE0wRTwHxz7TNYsovoTWvsFRYeezMpwLL42Z
IIW35vJewkYxI8KMRpyvKl3Uoj2nB79oxwcPAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUjX3mx2g8zLaglCYSeNNCdAGxQk8wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+
LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP
TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00valgzbXgyZzh6TGFnbENZ
U2VOTkNkQUd4UWs4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B3rJgDANBgkqhkiG9w0BAQsFAAOCAQEAGT9lHeN3go6XINHaVPbKN+4TxKNKmtQw
1CLt7rIoaBHMcJJvgoZpTZOVyFoIf2IjEel2RDjC4cv5qlYPpGHFtoiQ9uF5fxfz
jx3cyy+pyad1w9LHMPDH8W058bLqx3Im7nciUzWbCfXiow+tkgi064vFwYUTOp7Z
8N/4t2hO6SWzSELP2ViT5WwpQvBWPurqacPUfE+YBdXMx6aMPqdhA5sRhpvbdADs
Kpb41s6q9yzLEQsG6/RUg7Wwzj8PMAWs4M7MlqXQMD4T9+U3w9Z9nJCtXHyl1xcz
fdCXfzY7tmvQH3QDyeMW+9rutGhcJcrN4rqhwbE3GPIwRaLWkZrGGw==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org