Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lhXNF4GFMQptBDAhYZPOpRT1y_s.roa
File: lhXNF4GFMQptBDAhYZPOpRT1y_s.roa (raw, json)
Hash identifier: lRVk4mVo29iSWckW2A59BmNBkibWpEvE4xLERDVDxPU=
Subject key identifier: 96:15:CD:17:81:85:31:0A:6D:04:30:21:61:93:CE:A5:14:F5:CB:FB
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0B5E
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lhXNF4GFMQptBDAhYZPOpRT1y_s.roa
Signing time: Fri 01 Sep 2023 09:48:58 +0000
ROA not before: Fri 01 Sep 2023 09:48:57 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4783
IP address blocks: 202.39.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2910 (0xb5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 1 09:48:57 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9615CD178185310A6D0430216193CEA514F5CBFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ae:39:f5:fe:92:94:3c:34:11:93:f9:94:4f:
83:42:66:b9:9e:dd:8e:e1:31:2b:ac:ee:c7:ef:1a:
ed:16:c4:4b:2f:a8:93:4a:9b:1b:38:a4:db:0c:7b:
88:16:28:36:8b:6e:d6:6b:ea:08:e1:87:84:be:e7:
36:35:81:f3:76:97:ae:49:6f:42:a9:a7:b8:d2:73:
4d:1d:03:3f:73:e6:f7:f9:c6:b5:c9:50:9e:25:ba:
ee:cf:05:e0:61:e1:e0:e6:06:28:94:af:02:a1:5a:
5c:80:d9:78:82:56:de:d9:03:9e:20:3b:ce:6d:6b:
35:b9:f5:9d:21:64:04:3e:3e:78:e5:f7:2e:63:2e:
28:09:a4:38:6f:a3:c5:de:1d:88:23:aa:44:ec:61:
42:67:5c:c1:03:40:e8:cf:7b:e6:9e:76:42:c0:26:
03:bb:87:dc:3b:c1:cc:cc:1b:1a:1f:8f:dc:ba:78:
4c:d5:f0:8e:58:4c:ae:aa:99:3c:9f:cb:aa:98:41:
2e:a6:80:f1:da:f3:95:cf:ab:18:d2:80:42:86:ed:
34:49:31:6b:b9:24:09:3e:74:5b:30:39:3b:83:57:
fb:4f:b9:46:68:dc:da:88:0d:e7:d7:c3:3b:d9:31:
51:6f:8f:cf:5d:ae:13:52:8a:8a:9f:77:2c:03:e7:
a6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:15:CD:17:81:85:31:0A:6D:04:30:21:61:93:CE:A5:14:F5:CB:FB
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lhXNF4GFMQptBDAhYZPOpRT1y_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.96.0/20
Signature Algorithm: sha256WithRSAEncryption
58:e4:09:fc:d7:08:12:0f:fe:df:71:9f:5f:50:fa:81:bf:f2:
34:1b:a2:e9:16:a3:d1:53:8e:38:ec:22:33:a4:cd:8b:af:52:
4e:9a:17:38:ca:3b:9d:a7:7d:d7:c8:fb:2b:a5:4f:ad:e2:de:
1d:ab:08:1d:2d:1f:30:e3:77:73:7e:b3:d7:7b:53:3e:98:31:
f0:f5:47:5a:17:8b:0f:23:42:34:2b:79:ab:ad:63:3a:d0:16:
52:d0:ba:33:5f:dd:69:06:0a:37:49:99:4b:a5:eb:1a:35:41:
ac:59:90:90:12:3d:9c:d2:73:ed:c6:08:79:2d:17:5d:14:73:
7d:4c:10:21:d6:2a:63:79:52:dc:6e:cf:e4:8a:f6:c2:f8:c3:
e5:69:a3:f1:f8:51:07:e7:c8:b7:e7:fe:ed:4b:d2:b4:9b:59:
c6:8e:f2:66:c4:e3:26:64:4b:4e:c1:e3:30:b9:bc:88:35:26:
b2:bc:61:05:c9:88:50:78:26:b0:e0:89:d7:33:d4:bd:4f:41:
fc:f8:99:44:fe:09:ad:c6:9e:f7:43:55:ac:25:4b:ca:3a:52:
6d:71:f2:d1:bd:17:54:1c:01:ff:42:d0:2d:e3:83:ff:bf:99:
2f:bf:f9:de:e2:bc:35:4b:4e:b4:67:04:64:7f:21:5f:13:d0:
47:da:04:10
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICC14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC
Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yMzA5MDEw
OTQ4NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk2MTVDRDE3ODE4NTMx
MEE2RDA0MzAyMTYxOTNDRUE1MTRGNUNCRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjrjn1/pKUPDQRk/mUT4NCZrme3Y7hMSus7sfvGu0WxEsvqJNK
mxs4pNsMe4gWKDaLbtZr6gjhh4S+5zY1gfN2l65Jb0Kpp7jSc00dAz9z5vf5xrXJ
UJ4luu7PBeBh4eDmBiiUrwKhWlyA2XiCVt7ZA54gO85tazW59Z0hZAQ+Pnjl9y5j
LigJpDhvo8XeHYgjqkTsYUJnXMEDQOjPe+aedkLAJgO7h9w7wczMGxofj9y6eEzV
8I5YTK6qmTyfy6qYQS6mgPHa85XPqxjSgEKG7TRJMWu5JAk+dFswOTuDV/tPuUZo
3NqIDefXwzvZMVFvj89drhNSioqfdywD56YXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUlhXNF4GFMQptBDAhYZPOpRT1y/swHwYDVR0jBBgwFoAUlruUtFf52CoptbL9
nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU
L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL2xoWE5GNEdGTVFwdEJEQWhZ
WlBPcFJUMXlfcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATK
J2AwDQYJKoZIhvcNAQELBQADggEBAFjkCfzXCBIP/t9xn19Q+oG/8jQboukWo9FT
jjjsIjOkzYuvUk6aFzjKO52nfdfI+yulT63i3h2rCB0tHzDjd3N+s9d7Uz6YMfD1
R1oXiw8jQjQreautYzrQFlLQujNf3WkGCjdJmUul6xo1QaxZkJASPZzSc+3GCHkt
F10Uc31MECHWKmN5Utxuz+SK9sL4w+Vpo/H4UQfnyLfn/u1L0rSbWcaO8mbE4yZk
S07B4zC5vIg1JrK8YQXJiFB4JrDgidcz1L1PQfz4mUT+Ca3GnvdDVawlS8o6Um1x
8tG9F1QcAf9C0C3jg/+/mS+/+d7ivDVLTrRnBGR/IV8T0EfaBBA=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org