Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/8qROE9tccFOYsCrRNJ8DDilDqx0.roa
File: 8qROE9tccFOYsCrRNJ8DDilDqx0.roa (raw, json)
Hash identifier: i6ZykbMbfKerRdj+O5iEuDzQKDD4B1bgyQ+/J4uvbDc=
Subject key identifier: F2:A4:4E:13:DB:5C:70:53:98:B0:2A:D1:34:9F:03:0E:29:43:AB:1D
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D1D
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8qROE9tccFOYsCrRNJ8DDilDqx0.roa
Signing time: Fri 01 Sep 2023 09:59:38 +0000
ROA not before: Fri 01 Sep 2023 09:59:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 210.62.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3357 (0xd1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F2A44E13DB5C705398B02AD1349F030E2943AB1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a1:b8:f1:21:c1:17:6d:d2:e5:46:a8:02:56:
b2:0b:2f:61:24:fa:ed:f3:98:c6:69:6f:bd:6a:14:
7c:3a:ee:12:d3:6a:08:3f:d7:bb:77:91:0b:c5:10:
a9:8a:96:a9:63:c1:e1:54:d5:36:74:dc:eb:9b:46:
aa:f6:fe:c7:68:69:69:f9:4e:76:63:72:93:f1:77:
fc:a4:9e:93:7b:98:91:ef:b0:0f:99:20:ea:83:c3:
cb:44:3b:dd:fa:c8:a9:1a:df:f3:73:fa:25:24:9f:
07:6f:5d:b6:f9:6b:23:2f:d3:fd:7d:29:2f:7b:90:
df:48:ec:79:73:35:1b:52:e9:be:41:c9:4b:9d:46:
05:55:25:66:3e:90:84:05:8c:36:09:e3:4a:53:5f:
95:a6:12:f8:70:49:4c:04:58:6f:63:52:f7:5d:db:
f2:36:ec:cb:22:e1:71:95:d9:16:fe:fe:4a:e2:29:
c7:5d:87:1a:eb:6f:f8:12:7f:9e:69:ab:7d:e3:bd:
d3:a7:a5:6c:73:84:8f:2b:25:de:33:83:38:b5:e7:
46:fc:e3:b0:38:a8:c4:e3:35:28:52:ed:a2:06:ba:
49:ef:d4:a0:95:7b:86:2f:5e:15:93:20:e6:b6:8a:
b7:8f:a2:19:d5:e6:ea:38:45:d2:e5:2e:19:99:37:
eb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A4:4E:13:DB:5C:70:53:98:B0:2A:D1:34:9F:03:0E:29:43:AB:1D
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8qROE9tccFOYsCrRNJ8DDilDqx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.224.0/20
Signature Algorithm: sha256WithRSAEncryption
52:bc:7c:1f:a7:7f:97:6e:37:ba:eb:e5:b4:c4:40:17:43:57:
44:f8:d5:77:c2:67:be:ed:5c:a4:05:91:11:ac:e8:61:0a:9c:
69:e1:7d:a7:7a:a3:6e:d9:e6:4a:6a:d2:b5:ff:78:c1:61:13:
06:64:cd:b7:5f:70:63:5a:b1:41:5d:7e:42:f4:ef:e1:a7:bf:
12:b7:bf:c0:7a:7c:1d:e2:3d:fe:31:a6:9d:b3:40:29:e2:b4:
2c:8e:e7:2e:a2:26:c4:17:f6:2b:07:51:77:94:8c:4b:70:23:
bf:51:cc:02:d3:22:39:82:14:de:a3:0f:4d:41:6a:11:c5:16:
ea:d5:e9:e1:1d:77:24:a6:1b:1f:d1:64:84:ad:b6:e6:8d:1a:
2d:2f:cb:bc:4c:16:7c:b2:a5:1a:cb:fb:40:08:e9:b2:64:84:
ff:ba:47:ed:f0:5e:a4:6b:20:a8:ba:6d:ec:4a:a7:9c:5b:2c:
34:7b:40:31:cf:5e:12:af:bb:77:c4:ef:b2:bc:d0:10:ae:8a:
3a:67:ad:28:0a:bf:63:89:45:f9:34:02:1e:90:02:74:b0:4e:
b5:11:4c:76:32:d2:b2:21:de:05:8e:b5:df:e6:f1:5a:be:3c:
64:54:b7:9a:b0:ab:bb:11:2a:87:41:55:33:57:68:20:20:f2:
7d:d5:6e:32
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMzA5MDEw
OTU5MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYyQTQ0RTEzREI1Qzcw
NTM5OEIwMkFEMTM0OUYwMzBFMjk0M0FCMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8objxIcEXbdLlRqgCVrILL2Ek+u3zmMZpb71qFHw67hLTagg/
17t3kQvFEKmKlqljweFU1TZ03OubRqr2/sdoaWn5TnZjcpPxd/yknpN7mJHvsA+Z
IOqDw8tEO936yKka3/Nz+iUknwdvXbb5ayMv0/19KS97kN9I7HlzNRtS6b5ByUud
RgVVJWY+kIQFjDYJ40pTX5WmEvhwSUwEWG9jUvdd2/I27Msi4XGV2Rb+/kriKcdd
hxrrb/gSf55pq33jvdOnpWxzhI8rJd4zgzi150b847A4qMTjNShS7aIGuknv1KCV
e4YvXhWTIOa2irePohnV5uo4RdLlLhmZN+v9AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU8qROE9tccFOYsCrRNJ8DDilDqx0wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC84cVJPRTl0Y2NGT1lzQ3JSTko4
RERpbERxeDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE0j7g
MA0GCSqGSIb3DQEBCwUAA4IBAQBSvHwfp3+Xbje66+W0xEAXQ1dE+NV3wme+7Vyk
BZERrOhhCpxp4X2neqNu2eZKatK1/3jBYRMGZM23X3BjWrFBXX5C9O/hp78St7/A
enwd4j3+Maads0Ap4rQsjucuoibEF/YrB1F3lIxLcCO/UcwC0yI5ghTeow9NQWoR
xRbq1enhHXckphsf0WSErbbmjRotL8u8TBZ8sqUay/tACOmyZIT/ukft8F6kayCo
um3sSqecWyw0e0Axz14Sr7t3xO+yvNAQroo6Z60oCr9jiUX5NAIekAJ0sE61EUx2
MtKyId4FjrXf5vFavjxkVLeasKu7ESqHQVUzV2ggIPJ91W4y
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org