Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa
File: eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa (raw, json)
Hash identifier: WyAkax+PgDXfgH77cRid7hLWTS3yBMtoSp22+l55QN0=
Subject key identifier: 79:EA:19:A0:DE:D1:FC:B9:4A:EC:4F:10:67:FC:5B:D0:60:CA:7C:A6
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0B6C
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa
Signing time: Fri 01 Sep 2023 09:45:57 +0000
ROA not before: Fri 01 Sep 2023 09:45:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18182
IP address blocks: 219.84.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2924 (0xb6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 1 09:45:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=79EA19A0DED1FCB94AEC4F1067FC5BD060CA7CA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:25:a2:54:d9:01:dd:ea:29:66:fc:5f:9c:bd:
9b:80:d1:cc:8e:fd:71:60:7e:3b:40:b7:f9:92:a8:
65:c2:a3:94:c9:42:d2:3c:92:9b:3e:cb:72:71:b2:
a2:52:69:aa:63:82:d9:3d:64:89:0a:58:44:a9:6f:
2d:39:33:67:e7:8c:55:ac:c3:f0:1b:93:19:c9:7a:
46:6c:29:af:99:83:f2:da:56:1d:90:9f:2b:cd:8d:
0e:72:6b:b8:f4:f5:1e:54:f6:05:29:29:18:6e:44:
4e:41:23:8e:26:d6:5f:cb:d4:c6:c6:56:89:63:26:
e7:73:fd:25:f0:93:81:42:a6:86:18:b9:c2:02:3e:
c0:d8:1b:90:70:ec:64:11:39:2c:9b:0c:81:9f:6c:
a6:71:28:8e:03:85:2e:10:c2:6b:5c:e2:bc:c3:bc:
9a:8c:a5:7d:41:3b:d0:24:1f:e9:4b:c2:2d:ed:a9:
f8:d6:9c:57:5e:ec:01:dc:10:e4:4e:91:3b:28:75:
d3:89:8a:5c:d7:05:12:b0:86:98:03:25:fe:29:95:
3e:9b:70:0a:96:1c:dd:94:fb:bd:c8:69:e2:10:d3:
f1:08:92:b2:1d:bf:9b:a1:18:a7:8f:32:2d:0a:07:
95:56:89:76:52:7d:56:2f:bd:c6:ee:99:6f:a6:31:
20:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:EA:19:A0:DE:D1:FC:B9:4A:EC:4F:10:67:FC:5B:D0:60:CA:7C:A6
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.84.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:74:5f:35:fa:74:a9:c8:34:81:d3:ee:d7:b5:13:b7:b5:36:
b1:e9:18:e5:3d:07:fb:0a:7f:28:d6:3f:e4:23:ac:f8:cb:e3:
f0:4e:99:f2:1d:6f:c7:79:79:10:68:db:8b:97:13:6f:85:c8:
fa:a9:79:e7:12:40:28:29:50:40:b2:d4:d8:ee:fa:51:72:7f:
e7:32:46:4a:57:1e:ae:ac:4c:c6:e7:bf:37:6e:d6:2a:e6:36:
30:62:ea:94:81:ec:c1:d6:85:66:4e:aa:03:63:90:98:80:64:
d7:49:4d:10:23:0f:0b:c9:7d:1a:dd:8a:ac:52:db:bb:55:0b:
f6:4a:9f:4e:14:fa:18:7a:e3:db:00:5e:c1:f4:8c:0f:d0:06:
b5:60:14:ab:11:26:ad:c5:52:d8:a0:e5:ef:df:bb:dc:f1:5c:
49:e0:26:d0:38:5a:ea:4f:01:5d:3f:b4:82:c1:37:8a:9a:68:
75:a4:95:b1:80:19:37:8b:5c:5b:75:1b:b5:53:f8:6c:3e:16:
8a:06:8a:00:c9:43:95:2e:2d:9c:ff:73:d5:42:9f:58:4c:a9:
39:16:0d:08:89:55:6f:75:84:d8:85:21:2f:57:59:3f:0d:f1:
2c:50:7b:e7:7b:31:67:a7:6c:b7:ae:fa:b9:50:ce:e8:9c:c6:
ae:35:e7:66
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC
NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw
OTQ1NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc5RUExOUEwREVEMUZD
Qjk0QUVDNEYxMDY3RkM1QkQwNjBDQTdDQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTJaJU2QHd6ilm/F+cvZuA0cyO/XFgfjtAt/mSqGXCo5TJQtI8
kps+y3JxsqJSaapjgtk9ZIkKWESpby05M2fnjFWsw/AbkxnJekZsKa+Zg/LaVh2Q
nyvNjQ5ya7j09R5U9gUpKRhuRE5BI44m1l/L1MbGVoljJudz/SXwk4FCpoYYucIC
PsDYG5Bw7GQROSybDIGfbKZxKI4DhS4Qwmtc4rzDvJqMpX1BO9AkH+lLwi3tqfjW
nFde7AHcEOROkTsoddOJilzXBRKwhpgDJf4plT6bcAqWHN2U+73IaeIQ0/EIkrId
v5uhGKePMi0KB5VWiXZSfVYvvcbumW+mMSB5AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUeeoZoN7R/LlK7E8QZ/xb0GDKfKYwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5
B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv
ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9lZW9ab043Ul9MbEs3RThRWl94
YjBHREtmS1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Qw
DQYJKoZIhvcNAQELBQADggEBAFh0XzX6dKnINIHT7te1E7e1NrHpGOU9B/sKfyjW
P+QjrPjL4/BOmfIdb8d5eRBo24uXE2+FyPqpeecSQCgpUECy1Nju+lFyf+cyRkpX
Hq6sTMbnvzdu1irmNjBi6pSB7MHWhWZOqgNjkJiAZNdJTRAjDwvJfRrdiqxS27tV
C/ZKn04U+hh649sAXsH0jA/QBrVgFKsRJq3FUtig5e/fu9zxXEngJtA4WupPAV0/
tILBN4qaaHWklbGAGTeLXFt1G7VT+Gw+FooGigDJQ5UuLZz/c9VCn1hMqTkWDQiJ
VW91hNiFIS9XWT8N8SxQe+d7MWenbLeu+rlQzuicxq4152Y=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org