Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa
File: sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa (raw, json)
Hash identifier: ehXuiFzLpqP91nPVZ7UnHRVf0nXVbid4KK+Jp6/OqRs=
Subject key identifier: B1:90:92:8F:0F:95:CB:7F:6C:7D:36:B6:AA:19:F8:2F:66:FA:5F:92
Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Certificate serial: 0B26
Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa
Signing time: Fri 01 Sep 2023 09:41:21 +0000
ROA not before: Fri 01 Sep 2023 09:41:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131611
IP address blocks: 103.100.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2854 (0xb26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Validity
Not Before: Sep 1 09:41:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B190928F0F95CB7F6C7D36B6AA19F82F66FA5F92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a9:53:b8:27:6d:91:2d:bb:38:bd:a3:68:7f:
0e:b5:3c:a2:dd:ae:40:90:44:0e:f3:b7:30:32:72:
37:ac:f2:f0:04:63:db:81:f3:a5:9e:b4:a2:79:7e:
1a:c3:3e:11:71:8d:d4:4c:1b:75:8d:3b:df:72:01:
1a:51:50:56:c5:0b:91:09:91:53:a5:27:72:81:62:
c2:98:d3:4a:ff:08:79:da:01:1f:9b:7a:7c:97:74:
77:fc:a3:ad:40:6a:5f:c0:1d:c9:1c:db:dc:0f:94:
bc:3c:73:f4:76:50:7a:01:ea:28:94:60:06:00:11:
5b:36:c6:58:bf:b1:dc:00:f8:9c:20:21:70:48:dd:
df:40:5e:18:65:0b:a0:bd:3e:23:41:ff:b7:ca:e3:
93:76:ca:ba:e1:83:c3:2c:f9:b0:ae:eb:0b:37:2b:
20:5c:0a:da:3a:50:1b:01:ca:4b:75:0e:f0:ed:ee:
e6:21:86:1d:63:01:f8:41:ca:56:8b:fc:99:cd:5f:
7c:cf:7d:4d:6b:be:0c:73:c3:19:c7:57:84:b8:a8:
2e:b7:bf:0b:5f:0c:3c:0e:1f:83:46:cd:53:33:23:
57:d4:17:a5:56:14:60:4e:03:17:99:38:ab:5f:18:
d7:6e:dc:28:34:26:45:aa:03:03:76:da:d3:08:66:
4d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:90:92:8F:0F:95:CB:7F:6C:7D:36:B6:AA:19:F8:2F:66:FA:5F:92
X509v3 Authority Key Identifier:
keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:6b:b8:05:a7:0b:6d:cc:9b:94:bc:5b:45:d5:41:7e:08:31:
b9:63:78:18:d8:48:db:1e:c0:c3:9b:3b:04:dd:0b:60:83:4a:
59:83:7d:00:30:51:68:4c:f0:bd:da:c2:7e:a5:45:28:34:5e:
cb:79:f6:83:d1:aa:73:26:37:3f:7c:8c:fd:a2:92:a9:97:1e:
d9:fd:2f:b5:b3:1e:21:f3:aa:d5:ef:b4:1c:91:e4:e5:c7:66:
0b:59:1a:8d:b6:97:2e:ab:22:5e:de:39:2a:c2:f7:ed:cf:34:
ef:c7:6a:9d:b9:3c:0e:0a:bf:18:d7:7a:69:a7:84:a1:93:7c:
5d:ab:b4:f7:07:0c:f7:e6:5c:e7:29:8c:3b:a9:9d:e9:7e:33:
9f:9a:50:0a:40:b6:86:e8:d5:8b:02:9b:73:71:ae:78:2b:ba:
3a:c0:2f:d9:2c:01:35:80:c8:6d:ab:21:36:78:22:99:16:c7:
3f:d5:77:20:1e:2e:b6:11:df:e2:31:c5:e1:42:a1:12:49:4f:
83:47:93:18:13:ab:5c:de:6c:ac:43:13:60:27:a8:7c:8b:45:
c9:e5:72:57:67:a2:d1:74:d1:30:59:d5:b7:ba:60:64:0d:95:
1a:7b:00:2d:99:0a:95:7c:b3:d9:2f:35:17:8e:5c:72:cf:a5:
94:9c:82:60
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Y1
RDhENTRFQ0I3Q0VFQjQ2RkQ4REY1NDY3QzQxQzAwMjQ0MzUyNjAeFw0yMzA5MDEw
OTQxMjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIxOTA5MjhGMEY5NUNC
N0Y2QzdEMzZCNkFBMTlGODJGNjZGQTVGOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6qVO4J22RLbs4vaNofw61PKLdrkCQRA7ztzAycjes8vAEY9uB
86WetKJ5fhrDPhFxjdRMG3WNO99yARpRUFbFC5EJkVOlJ3KBYsKY00r/CHnaAR+b
enyXdHf8o61Aal/AHckc29wPlLw8c/R2UHoB6iiUYAYAEVs2xli/sdwA+JwgIXBI
3d9AXhhlC6C9PiNB/7fK45N2yrrhg8Ms+bCu6ws3KyBcCto6UBsBykt1DvDt7uYh
hh1jAfhBylaL/JnNX3zPfU1rvgxzwxnHV4S4qC63vwtfDDwOH4NGzVMzI1fUF6VW
FGBOAxeZOKtfGNdu3Cg0JkWqAwN22tMIZk09AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUsZCSjw+Vy39sfTa2qhn4L2b6X5IwHwYDVR0jBBgwFoAUf12NVOy3zutG/Y31
RnxBwAJENSYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RUVi9m
MTJOVk95M3p1dEdfWTMxUm54QndBSkVOU1kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2YxMk5WT3kzenV0R19ZMzFSbnhCd0FKRU5TWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1NEVFYvc1pDU2p3LVZ5MzlzZlRhMnFobjRM
MmI2WDVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdkpDAN
BgkqhkiG9w0BAQsFAAOCAQEAfGu4BacLbcyblLxbRdVBfggxuWN4GNhI2x7Aw5s7
BN0LYINKWYN9ADBRaEzwvdrCfqVFKDRey3n2g9GqcyY3P3yM/aKSqZce2f0vtbMe
IfOq1e+0HJHk5cdmC1kajbaXLqsiXt45KsL37c8078dqnbk8Dgq/GNd6aaeEoZN8
Xau09wcM9+Zc5ymMO6md6X4zn5pQCkC2hujViwKbc3GueCu6OsAv2SwBNYDIbash
NngimRbHP9V3IB4uthHf4jHF4UKhEklPg0eTGBOrXN5srEMTYCeofItFyeVyV2ei
0XTRMFnVt7pgZA2VGnsALZkKlXyz2S81F45ccs+llJyCYA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org