Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/G5aeRy2Rwm8DW0jNAKSfAe8g-to.roa
File: G5aeRy2Rwm8DW0jNAKSfAe8g-to.roa (raw, json)
Hash identifier: NVr4Z8ME/VoFzeoJ6BCGgR5OF5suw5fwAwYRU7u2baY=
Subject key identifier: 1B:96:9E:47:2D:91:C2:6F:03:5B:48:CD:00:A4:9F:01:EF:20:FA:DA
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 0C0C
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/G5aeRy2Rwm8DW0jNAKSfAe8g-to.roa
Signing time: Fri 22 Dec 2023 07:56:59 +0000
ROA not before: Fri 22 Dec 2023 07:56:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24157
IP address blocks: 43.255.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3084 (0xc0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Dec 22 07:56:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1B969E472D91C26F035B48CD00A49F01EF20FADA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:28:0a:6d:48:3e:ec:2c:c4:21:17:2b:4d:66:
dc:00:76:3c:fb:88:82:cd:43:ff:61:22:a6:02:07:
b4:21:4d:44:b7:dc:c8:5b:1b:6d:89:89:9d:90:57:
a7:97:22:2b:57:16:e7:eb:87:ec:ca:d7:98:b6:ce:
87:f6:9e:ef:26:79:ba:04:5d:c5:94:e6:9a:ad:f5:
a9:71:69:6a:f0:e9:b6:cf:04:bc:50:b9:ef:51:f7:
68:39:e4:ac:5c:2b:32:a7:3b:a1:e1:84:02:46:09:
5f:8c:80:35:c7:d7:93:8f:28:be:d5:60:94:60:f0:
13:13:10:65:71:9d:48:aa:f6:e0:29:e6:35:00:6c:
8e:36:f2:a3:7d:06:bb:c2:f5:0b:e2:50:d6:0d:53:
26:36:3e:bb:2e:91:3f:05:42:a0:bc:03:c4:7c:f7:
6f:12:6a:8c:8d:f1:d7:0e:c6:ac:27:03:bd:6e:0f:
20:ef:c9:27:16:3d:d4:64:b1:17:22:42:32:81:0f:
13:64:e8:c1:a4:4e:86:ff:1f:fc:c3:ab:03:cb:dc:
81:f3:c1:5a:67:f6:47:0d:33:4b:e1:06:c7:52:9c:
26:78:37:20:78:57:54:e0:0c:52:2a:3f:91:22:02:
a7:3c:20:a3:38:c3:eb:73:57:67:42:da:5d:90:4a:
c3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:96:9E:47:2D:91:C2:6F:03:5B:48:CD:00:A4:9F:01:EF:20:FA:DA
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/G5aeRy2Rwm8DW0jNAKSfAe8g-to.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.88.0/22
Signature Algorithm: sha256WithRSAEncryption
23:02:dd:9d:54:32:17:1e:d1:3f:53:5d:5a:1a:fd:6d:c2:34:
44:59:28:41:a1:2b:c0:71:ba:aa:14:08:75:0d:4e:81:57:7a:
db:02:15:95:8c:ed:9c:87:b5:69:13:93:78:41:eb:05:0f:87:
c6:6c:ff:be:55:20:36:c4:01:c2:41:39:3b:37:50:2c:c9:3a:
61:03:3a:5d:c9:95:6e:f0:e1:14:54:49:48:f2:e1:96:2a:99:
e4:ea:a0:de:d3:51:50:56:81:c0:33:e1:5c:48:b7:84:7d:56:
d3:50:18:47:a6:b5:da:68:02:30:a4:44:3b:94:eb:f0:76:f5:
47:e7:3e:ec:cd:01:12:ba:6f:c7:bf:0c:1b:7e:7b:5b:e4:47:
fb:f9:fc:46:4f:f8:78:bd:6f:66:71:46:b9:49:8d:5a:14:13:
06:ea:7a:1c:de:56:19:2b:ad:3d:e2:5d:f1:89:21:58:90:67:
34:54:5d:18:4a:ea:4d:ab:c6:ce:c1:cf:08:d9:92:86:0f:d2:
f0:40:0b:e9:0e:4a:84:00:be:49:04:cb:72:b0:f4:fd:ba:f2:
f9:9c:7a:93:61:4c:98:c9:f6:f6:7a:00:ce:1e:16:f9:13:63:
75:1a:86:2d:ea:23:2c:7d:b2:cd:34:89:81:47:78:84:29:15:
16:ec:b1:5d
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD
QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yMzEyMjIw
NzU2NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFCOTY5RTQ3MkQ5MUMy
NkYwMzVCNDhDRDAwQTQ5RjAxRUYyMEZBREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAKAptSD7sLMQhFytNZtwAdjz7iILNQ/9hIqYCB7QhTUS33Mhb
G22JiZ2QV6eXIitXFufrh+zK15i2zof2nu8meboEXcWU5pqt9alxaWrw6bbPBLxQ
ue9R92g55KxcKzKnO6HhhAJGCV+MgDXH15OPKL7VYJRg8BMTEGVxnUiq9uAp5jUA
bI428qN9BrvC9QviUNYNUyY2PrsukT8FQqC8A8R8928SaoyN8dcOxqwnA71uDyDv
yScWPdRksRciQjKBDxNk6MGkTob/H/zDqwPL3IHzwVpn9kcNM0vhBsdSnCZ4NyB4
V1TgDFIqP5EiAqc8IKM4w+tzV2dC2l2QSsMhAgMBAAGjggH6MIIB9jAdBgNVHQ4E
FgQUG5aeRy2Rwm8DW0jNAKSfAe8g+towHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg
6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg
VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO
TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH
AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp
L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B
Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov
L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL0c1YWVS
eTJSd204RFcwak5BS1NmQWU4Zy10by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v
cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAIr/1gwDQYJKoZIhvcNAQELBQADggEBACMC3Z1UMhce0T9TXVoa
/W3CNERZKEGhK8BxuqoUCHUNToFXetsCFZWM7ZyHtWkTk3hB6wUPh8Zs/75VIDbE
AcJBOTs3UCzJOmEDOl3JlW7w4RRUSUjy4ZYqmeTqoN7TUVBWgcAz4VxIt4R9VtNQ
GEemtdpoAjCkRDuU6/B29UfnPuzNARK6b8e/DBt+e1vkR/v5/EZP+Hi9b2ZxRrlJ
jVoUEwbqehzeVhkrrT3iXfGJIViQZzRUXRhK6k2rxs7BzwjZkoYP0vBAC+kOSoQA
vkkEy3Kw9P268vmcepNhTJjJ9vZ6AM4eFvkTY3Uahi3qIyx9ss00iYFHeIQpFRbs
sV0=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org