Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/qv2rfj5dC9JecMnyG5jRSImjm54.roa
File: qv2rfj5dC9JecMnyG5jRSImjm54.roa (raw, json)
Hash identifier: 3t9ePHW7qPiZshd1SCI0qjQrX/DT2NZM2EGw1tsntPs=
Subject key identifier: AA:FD:AB:7E:3E:5D:0B:D2:5E:70:C9:F2:1B:98:D1:48:89:A3:9B:9E
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0B9B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/qv2rfj5dC9JecMnyG5jRSImjm54.roa
Signing time: Fri 01 Sep 2023 09:49:27 +0000
ROA not before: Fri 01 Sep 2023 09:49:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131627
IP address blocks: 101.3.160.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2971 (0xb9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 1 09:49:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AAFDAB7E3E5D0BD25E70C9F21B98D14889A39B9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4e:ef:67:35:ca:41:ae:b5:f7:9a:9b:56:7b:
96:2e:e5:af:2e:68:2d:4f:93:79:49:3d:ad:b8:16:
73:47:a1:c1:ab:22:71:c9:b6:28:ec:97:ef:48:ce:
e5:19:b9:0f:98:56:7f:3c:06:2e:fb:8d:77:d2:06:
24:c0:0b:19:e6:f1:ce:15:e5:28:97:30:17:70:7a:
75:98:35:59:b7:64:c3:98:49:5c:dd:df:c1:c3:30:
17:06:1d:a8:cf:96:70:d6:12:ac:d9:cd:74:fe:cc:
27:24:06:d9:c5:f7:d9:c6:ee:fd:aa:1b:17:75:fa:
54:74:0b:83:b0:14:78:25:01:45:fc:b9:e3:2c:b0:
4a:79:7f:db:1d:79:9f:73:46:4a:a9:89:8d:a9:51:
3b:dc:a7:39:dd:ab:eb:28:aa:c3:80:bd:d8:30:d4:
ec:6a:d3:10:fd:30:4a:4b:23:d1:4e:6b:dc:f4:d5:
f6:62:0b:f4:71:76:41:3d:4d:75:e6:3c:3f:10:ac:
4b:b5:0d:6e:10:c6:b4:97:84:c2:df:98:da:ae:d4:
ef:2c:f8:b1:a8:39:57:7e:aa:bd:6a:0b:10:55:32:
66:fc:46:bd:ea:bb:90:e9:d9:bd:d1:2a:66:bb:fd:
9e:ee:bc:65:e5:d3:11:17:81:ec:f6:1e:ea:e8:4f:
a9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FD:AB:7E:3E:5D:0B:D2:5E:70:C9:F2:1B:98:D1:48:89:A3:9B:9E
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/qv2rfj5dC9JecMnyG5jRSImjm54.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.160.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:73:1e:c7:b6:73:f7:63:e0:e2:40:c7:7e:cb:65:44:97:53:
d7:f9:34:4e:df:4e:13:4b:b8:60:11:38:f7:08:03:de:42:b9:
61:f6:76:ce:bf:c8:b8:39:af:d7:52:80:51:2d:56:11:6f:e7:
df:d9:ad:95:48:5d:4d:d3:85:0f:2f:e6:c2:bb:b1:57:8a:6e:
86:ab:2d:aa:7e:a2:61:88:c1:7d:80:21:0c:39:84:4f:ab:34:
d3:6f:85:88:07:04:2a:9d:6f:4e:b3:c1:fe:2b:c2:ce:89:fe:
ad:79:46:cd:a8:7a:1e:e5:99:51:26:4c:c3:f6:8c:e0:b2:65:
c0:7f:fd:d2:04:bb:ff:4e:9d:72:7b:17:24:38:8b:d1:5c:86:
36:2b:70:69:54:8f:56:2c:2b:9b:ed:ba:43:f7:24:13:3c:92:
01:3e:fa:67:04:eb:1c:fc:1c:25:4d:c1:c2:ea:43:9f:d0:41:
ee:47:27:3d:6c:67:2d:70:6c:3f:e1:92:64:4c:a5:47:91:c1:
92:d7:e4:32:08:f5:0f:d0:54:bf:f5:ae:f1:ea:04:90:bd:40:
02:be:57:78:ae:9a:76:57:de:5a:33:de:0c:0f:37:a8:f5:f6:
e5:3b:e3:83:e2:d3:45:ec:82:58:f3:d3:15:39:64:44:5e:5f:
e4:0f:30:dd
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICC5swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1
NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yMzA5MDEw
OTQ5MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFBRkRBQjdFM0U1RDBC
RDI1RTcwQzlGMjFCOThEMTQ4ODlBMzlCOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8Tu9nNcpBrrX3mptWe5Yu5a8uaC1Pk3lJPa24FnNHocGrInHJ
tijsl+9IzuUZuQ+YVn88Bi77jXfSBiTACxnm8c4V5SiXMBdwenWYNVm3ZMOYSVzd
38HDMBcGHajPlnDWEqzZzXT+zCckBtnF99nG7v2qGxd1+lR0C4OwFHglAUX8ueMs
sEp5f9sdeZ9zRkqpiY2pUTvcpzndq+soqsOAvdgw1Oxq0xD9MEpLI9FOa9z01fZi
C/RxdkE9TXXmPD8QrEu1DW4QxrSXhMLfmNqu1O8s+LGoOVd+qr1qCxBVMmb8Rr3q
u5Dp2b3RKma7/Z7uvGXl0xEXgez2HuroT6mdAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUqv2rfj5dC9JecMnyG5jRSImjm54wHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N
UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83
NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L3F2MnJmajVkQzlK
ZWNNbnlHNWpSU0ltam01NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFlA6AwDQYJKoZIhvcNAQELBQADggEBAC1zHse2c/dj4OJAx37LZUSXU9f5
NE7fThNLuGAROPcIA95CuWH2ds6/yLg5r9dSgFEtVhFv59/ZrZVIXU3ThQ8v5sK7
sVeKboarLap+omGIwX2AIQw5hE+rNNNvhYgHBCqdb06zwf4rws6J/q15Rs2oeh7l
mVEmTMP2jOCyZcB//dIEu/9OnXJ7FyQ4i9FchjYrcGlUj1YsK5vtukP3JBM8kgE+
+mcE6xz8HCVNwcLqQ5/QQe5HJz1sZy1wbD/hkmRMpUeRwZLX5DII9Q/QVL/1rvHq
BJC9QAK+V3iumnZX3loz3gwPN6j19uU744Pi00Xsgljz0xU5ZEReX+QPMN0=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org