Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/wYGoRGAbCSzmwU7d-ifOAnZU90Q.roa
File: wYGoRGAbCSzmwU7d-ifOAnZU90Q.roa (raw, json)
Hash identifier: RtsvMY/oZhNHSff0h4OZLsd72pVJvYRRg2Q39yLeddI=
Subject key identifier: C1:81:A8:44:60:1B:09:2C:E6:C1:4E:DD:FA:27:CE:02:76:54:F7:44
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: A0
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/wYGoRGAbCSzmwU7d-ifOAnZU90Q.roa
Signing time: Sun 31 Mar 2024 14:35:56 +0000
ROA not before: Sun 31 Mar 2024 14:35:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 123.253.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160 (0xa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Mar 31 14:35:56 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C181A844601B092CE6C14EDDFA27CE027654F744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:0d:7c:a5:ea:98:15:7a:04:1c:ae:b8:a1:
bc:ce:66:6d:e3:5a:c4:56:30:02:1b:66:85:f0:e7:
38:2c:81:ff:4d:0f:22:f9:5d:f1:77:13:c4:4b:37:
1d:fe:a1:44:eb:77:6e:92:ef:50:63:2b:95:a6:43:
08:74:ed:7e:5b:fd:d1:ec:d9:b4:bc:86:11:07:29:
b0:61:82:db:f8:51:cf:95:d8:4c:9d:f9:f1:b0:7b:
c3:90:86:25:dd:5c:ec:5e:29:5f:19:a1:1c:f7:62:
83:06:3e:68:01:a4:15:05:5d:c6:53:bc:0d:b7:2a:
c8:7d:3f:f0:df:fd:05:e6:e4:7e:d0:56:82:f0:56:
45:27:d7:fa:b1:ed:b4:51:d5:03:8d:7f:37:66:c5:
54:cb:47:d5:87:fe:db:3e:3e:08:ba:2a:37:8b:b2:
e2:1f:f7:1b:67:4c:84:dd:48:07:af:f6:d2:a8:4c:
ee:9d:99:aa:6e:f0:51:84:b3:60:44:86:3d:72:99:
fe:f2:6e:d1:5e:5b:38:f2:3f:0a:df:5b:f0:ce:3b:
e8:c7:9c:23:15:f2:b8:66:61:e2:8c:3d:5f:4f:a5:
6b:0d:4d:e9:71:df:2d:d5:e3:c4:5a:d2:0d:08:95:
59:f2:b7:82:13:26:21:b1:9a:7b:bd:03:be:1c:e7:
d5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:81:A8:44:60:1B:09:2C:E6:C1:4E:DD:FA:27:CE:02:76:54:F7:44
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/wYGoRGAbCSzmwU7d-ifOAnZU90Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.253.140.0/23
Signature Algorithm: sha256WithRSAEncryption
02:ec:99:3b:25:f8:e3:91:dc:dd:7f:9d:24:14:de:84:24:05:
f6:65:bc:09:94:8e:67:f6:3e:97:cd:fa:0b:1e:60:06:00:37:
49:36:a5:81:41:71:37:40:ce:21:80:11:f0:ce:41:c1:ef:9a:
fb:88:7b:7b:e6:5a:5f:75:94:df:fd:2b:96:a9:80:e4:65:ee:
a6:36:99:00:f7:0e:b0:b8:5f:01:79:74:33:c6:51:45:2c:0e:
97:d3:4a:de:54:8f:4f:9b:59:d7:e0:53:73:dd:dc:df:7f:c1:
8f:81:b7:82:de:40:b7:27:b3:ec:9e:c2:ea:08:9f:1e:58:94:
ff:a7:91:17:a7:41:55:41:36:48:b5:66:87:0f:76:66:99:e6:
1f:8e:81:e0:3f:b1:01:e4:71:e8:ac:97:dc:c0:7d:20:00:44:
00:82:a8:12:5d:48:69:fb:46:fd:e9:e5:1e:1d:05:bf:ac:2c:
92:83:7e:23:cf:b2:ad:cc:c5:f7:4e:70:d9:d4:be:5e:66:09:
9b:3c:8b:43:46:36:ce:41:3e:26:e9:06:2a:2f:fe:7e:cd:1c:
25:f2:cf:a3:ea:99:01:f0:e4:51:d9:46:5a:86:ff:76:e2:c7:
ec:0a:82:df:2f:59:d7:5e:f5:b7:ae:4b:92:6a:cb:00:95:cf:
61:c7:ec:9e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2
NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNDAzMzEx
NDM1NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMxODFBODQ0NjAxQjA5
MkNFNkMxNEVEREZBMjdDRTAyNzY1NEY3NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCa4Q18peqYFXoEHK64obzOZm3jWsRWMAIbZoXw5zgsgf9NDyL5
XfF3E8RLNx3+oUTrd26S71BjK5WmQwh07X5b/dHs2bS8hhEHKbBhgtv4Uc+V2Eyd
+fGwe8OQhiXdXOxeKV8ZoRz3YoMGPmgBpBUFXcZTvA23Ksh9P/Df/QXm5H7QVoLw
VkUn1/qx7bRR1QONfzdmxVTLR9WH/ts+Pgi6KjeLsuIf9xtnTITdSAev9tKoTO6d
mapu8FGEs2BEhj1ymf7ybtFeWzjyPwrfW/DOO+jHnCMV8rhmYeKMPV9PpWsNTelx
3y3V48Ra0g0IlVnyt4ITJiGxmnu9A74c59XlAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUwYGoRGAbCSzmwU7d+ifOAnZU90QwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+
SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U
Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvd1lHb1JHQWJDU3ptd1U3
ZC1pZk9BblpVOTBRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AXv9jDANBgkqhkiG9w0BAQsFAAOCAQEAAuyZOyX445Hc3X+dJBTehCQF9mW8CZSO
Z/Y+l836Cx5gBgA3STalgUFxN0DOIYAR8M5Bwe+a+4h7e+ZaX3WU3/0rlqmA5GXu
pjaZAPcOsLhfAXl0M8ZRRSwOl9NK3lSPT5tZ1+BTc93c33/Bj4G3gt5Atyez7J7C
6gifHliU/6eRF6dBVUE2SLVmhw92ZpnmH46B4D+xAeRx6KyX3MB9IABEAIKoEl1I
aftG/enlHh0Fv6wskoN+I8+yrczF905w2dS+XmYJmzyLQ0Y2zkE+JukGKi/+fs0c
JfLPo+qZAfDkUdlGWob/duLH7AqC3y9Z1171t65LkmrLAJXPYcfsng==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org