Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_2jkNhtcZEjEov2XgTXnn2wo3v8.roa
File: _2jkNhtcZEjEov2XgTXnn2wo3v8.roa (raw, json)
Hash identifier: 7Ga0LUpoz9V8bf1xxX0u4RRUxaH92v9ZQ19dDWRn89A=
Subject key identifier: FF:68:E4:36:1B:5C:64:48:C4:A2:FD:97:81:35:E7:9F:6C:28:DE:FF
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0C9F
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_2jkNhtcZEjEov2XgTXnn2wo3v8.roa
Signing time: Fri 01 Sep 2023 09:59:22 +0000
ROA not before: Fri 01 Sep 2023 09:59:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9916
IP address blocks: 140.129.56.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3231 (0xc9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Sep 1 09:59:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FF68E4361B5C6448C4A2FD978135E79F6C28DEFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6a:22:e8:23:49:40:d9:20:c9:91:69:80:3b:
8f:e5:08:ab:71:c0:0c:9f:af:f1:2b:19:fb:3c:ca:
5f:83:d7:a5:d4:ba:4a:45:2e:25:6d:5c:04:8d:30:
19:32:32:3f:b0:00:20:3d:d8:40:3e:38:9d:38:fd:
35:d9:15:8c:e8:8f:a2:6d:6c:80:b4:d5:83:40:6d:
15:f2:9d:23:a5:72:8d:e0:53:40:03:56:3f:5f:37:
b2:2a:2f:7c:b7:6c:a1:cd:b5:00:92:1b:4f:e2:4b:
ba:26:09:c6:18:35:eb:c7:cd:97:ea:64:29:52:e6:
3d:91:16:0f:b0:1f:1a:a3:9b:3d:e7:36:d3:7d:33:
cc:4b:15:09:ee:36:5b:2d:26:14:79:52:69:2e:5a:
e6:ff:dc:c3:0d:af:8d:62:c9:c5:78:67:e2:36:1d:
11:b8:96:7e:c4:ba:6a:1d:50:17:64:d9:e0:9a:87:
1e:08:56:ea:e3:4d:50:a4:e8:74:db:79:0b:e4:e0:
0f:8f:9d:57:83:86:11:74:fe:59:8a:47:36:46:ed:
52:b7:dc:56:3f:ad:cc:78:dc:08:d2:a9:5d:b4:69:
58:d9:fe:bb:0c:0a:64:c2:a3:5f:8d:6f:7c:c4:53:
ea:8f:e7:49:ac:b6:20:de:c8:b3:4d:6c:75:26:ee:
8c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:68:E4:36:1B:5C:64:48:C4:A2:FD:97:81:35:E7:9F:6C:28:DE:FF
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_2jkNhtcZEjEov2XgTXnn2wo3v8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.129.56.0/21
Signature Algorithm: sha256WithRSAEncryption
98:b7:2f:22:da:74:b5:a9:f0:3c:6c:3f:7b:39:6a:8a:21:64:
c8:61:4d:4a:6b:60:a1:d0:61:de:93:be:23:e1:05:8d:bc:84:
6b:4e:fd:a2:0c:7f:57:50:59:ab:01:44:74:43:11:07:86:3f:
85:8a:ff:17:c6:10:34:e8:82:81:a1:d1:2f:f3:a7:66:20:3d:
76:9b:e7:88:ac:bc:c1:ec:7b:74:02:3e:3d:b6:b8:99:6e:60:
8f:71:ab:0c:16:79:56:ce:70:11:77:87:0c:14:55:54:49:c9:
00:e7:2e:ff:43:0f:f9:35:b4:eb:24:03:ab:31:24:20:ef:d9:
fe:06:26:20:ee:b3:9d:31:2c:8f:79:8b:98:87:e5:c3:3a:fd:
4a:74:29:25:0c:7a:af:b1:9d:60:01:f0:3b:8e:74:d1:5f:35:
9d:65:15:85:14:24:2e:c7:f3:4b:1e:20:76:65:1f:55:85:c7:
82:a8:1b:70:6f:29:53:5a:15:11:18:b2:ed:4b:e5:ad:00:4d:
22:6f:19:35:5d:6e:86:4c:99:93:7f:3f:0a:6c:cc:d3:d2:69:
90:71:a2:9d:ac:90:73:04:6d:9d:40:d3:aa:e5:db:3c:05:5b:
54:c7:fb:92:de:3b:c2:db:5b:3c:97:89:73:da:17:a7:e2:20:
00:73:af:ff
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3
QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yMzA5MDEw
OTU5MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZGNjhFNDM2MUI1QzY0
NDhDNEEyRkQ5NzgxMzVFNzlGNkMyOERFRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIaiLoI0lA2SDJkWmAO4/lCKtxwAyfr/ErGfs8yl+D16XUukpF
LiVtXASNMBkyMj+wACA92EA+OJ04/TXZFYzoj6JtbIC01YNAbRXynSOlco3gU0AD
Vj9fN7IqL3y3bKHNtQCSG0/iS7omCcYYNevHzZfqZClS5j2RFg+wHxqjmz3nNtN9
M8xLFQnuNlstJhR5UmkuWub/3MMNr41iycV4Z+I2HRG4ln7EumodUBdk2eCahx4I
VurjTVCk6HTbeQvk4A+PnVeDhhF0/lmKRzZG7VK33FY/rcx43AjSqV20aVjZ/rsM
CmTCo1+Nb3zEU+qP50mstiDeyLNNbHUm7oxzAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU/2jkNhtcZEjEov2XgTXnn2wo3v8wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+
tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9fMmprTmh0Y1pFakVvdjJYZ1RY
bm4yd28zdjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjIE4
MA0GCSqGSIb3DQEBCwUAA4IBAQCYty8i2nS1qfA8bD97OWqKIWTIYU1Ka2Ch0GHe
k74j4QWNvIRrTv2iDH9XUFmrAUR0QxEHhj+Fiv8XxhA06IKBodEv86dmID12m+eI
rLzB7Ht0Aj49triZbmCPcasMFnlWznARd4cMFFVUSckA5y7/Qw/5NbTrJAOrMSQg
79n+BiYg7rOdMSyPeYuYh+XDOv1KdCklDHqvsZ1gAfA7jnTRXzWdZRWFFCQux/NL
HiB2ZR9VhceCqBtwbylTWhURGLLtS+WtAE0ibxk1XW6GTJmTfz8KbMzT0mmQcaKd
rJBzBG2dQNOq5ds8BVtUx/uS3jvC21s8l4lz2hen4iAAc6//
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org