Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/k4IcmMSfoMqvnGmvToGZx1Za7jg.roa
File: k4IcmMSfoMqvnGmvToGZx1Za7jg.roa (raw, json)
Hash identifier: CkYh/48np1ZVLtvFCeoqwYLTA1t6BrLL/FW7T46tX/g=
Subject key identifier: 93:82:1C:98:C4:9F:A0:CA:AF:9C:69:AF:4E:81:99:C7:56:5A:EE:38
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0D08
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/k4IcmMSfoMqvnGmvToGZx1Za7jg.roa
Signing time: Fri 01 Sep 2023 09:59:27 +0000
ROA not before: Fri 01 Sep 2023 09:59:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 1659
IP address blocks: 203.72.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3336 (0xd08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Sep 1 09:59:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=93821C98C49FA0CAAF9C69AF4E8199C7565AEE38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:96:4b:65:16:6b:6a:8d:b3:0d:c8:48:ab:e6:
9f:fe:7e:11:9d:7e:ca:75:93:fe:09:d7:b8:fa:c5:
27:1c:a9:61:39:cb:13:99:80:45:8b:2a:fc:d2:2a:
68:ef:16:a8:1f:e8:ec:fb:9e:eb:fb:a8:d0:17:36:
e6:40:ff:aa:9d:b5:82:cf:01:40:7f:f6:f3:03:86:
2f:37:d4:f3:eb:2e:7d:53:b0:9f:73:84:ee:23:75:
8c:1d:aa:68:29:8b:19:82:b1:43:89:be:92:d5:f8:
32:ad:d8:90:cd:d0:66:21:55:36:87:21:78:d8:ee:
05:15:a7:e8:0a:78:a0:38:06:2c:50:bd:76:01:c5:
f6:d6:7f:6b:b2:b4:7e:51:4c:2e:5c:47:67:d0:7f:
1d:a0:22:2e:81:ce:d7:af:07:09:fd:b5:15:73:02:
7e:bd:ad:af:cb:85:86:5a:ce:a2:a2:11:f7:e5:be:
c3:f4:32:b8:f9:45:db:9a:fe:a0:61:36:b2:35:5d:
15:41:9c:7a:72:88:42:32:e7:bd:69:f8:8d:05:8c:
7e:8a:41:0a:6a:9f:71:f6:ad:96:35:37:0d:e2:6b:
22:52:91:51:51:93:5b:44:6e:94:54:91:45:ad:cd:
60:b8:88:b0:e9:57:94:ad:a1:ec:2a:e8:66:9d:a7:
bf:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:82:1C:98:C4:9F:A0:CA:AF:9C:69:AF:4E:81:99:C7:56:5A:EE:38
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/k4IcmMSfoMqvnGmvToGZx1Za7jg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
75:d3:c0:28:11:35:e4:a1:7f:8a:f3:c0:ea:14:34:18:ee:d9:
89:19:25:3d:6c:87:ce:b5:17:ba:9e:11:4b:f4:d7:ea:7d:8e:
5b:ea:e3:66:4b:c5:a4:31:57:4d:22:a4:c3:2e:f9:7b:ea:5b:
1f:4b:db:d5:76:f2:ea:04:13:b6:a0:34:0d:16:d8:5f:87:ba:
0b:6c:4f:09:03:53:26:7c:e7:f3:61:7d:52:b6:3e:e1:7c:eb:
a2:fc:af:b5:22:4b:4a:20:e3:1c:48:fb:c7:71:f3:8b:55:f2:
06:5d:c8:48:93:36:f8:fe:a1:e4:b7:3d:29:a8:68:64:47:e9:
d5:04:2b:30:93:86:8d:a7:ab:89:9a:2e:e4:0c:6a:0a:b6:34:
a8:24:bb:01:4c:01:e1:ca:15:ae:15:87:e6:56:27:8b:e4:23:
33:2b:1e:c8:86:0a:8a:57:d0:d8:24:1a:82:7f:1e:25:d8:90:
bc:7c:67:71:fd:22:7d:5d:84:84:4a:46:29:2a:e5:51:15:34:
06:c6:d7:b0:5a:c4:a8:09:bf:e8:a3:ed:2c:dc:4c:10:89:57:
e4:25:a5:23:5f:1b:7e:be:65:70:35:b4:56:b4:72:d6:02:d1:
30:9a:83:7c:e8:3f:45:fb:a3:27:c5:96:f9:b1:e0:7b:1a:7b:
88:8c:eb:1d
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMzA5MDEw
OTU5MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkzODIxQzk4QzQ5RkEw
Q0FBRjlDNjlBRjRFODE5OUM3NTY1QUVFMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdlktlFmtqjbMNyEir5p/+fhGdfsp1k/4J17j6xSccqWE5yxOZ
gEWLKvzSKmjvFqgf6Oz7nuv7qNAXNuZA/6qdtYLPAUB/9vMDhi831PPrLn1TsJ9z
hO4jdYwdqmgpixmCsUOJvpLV+DKt2JDN0GYhVTaHIXjY7gUVp+gKeKA4BixQvXYB
xfbWf2uytH5RTC5cR2fQfx2gIi6BztevBwn9tRVzAn69ra/LhYZazqKiEfflvsP0
Mrj5Rdua/qBhNrI1XRVBnHpyiEIy571p+I0FjH6KQQpqn3H2rZY1Nw3iayJSkVFR
k1tEbpRUkUWtzWC4iLDpV5Stoewq6Gadp78DAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUk4IcmMSfoMqvnGmvToGZx1Za7jgwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9rNEljbU1TZm9NcXZuR212VG9H
WngxWmE3amcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0gw
DQYJKoZIhvcNAQELBQADggEBAHXTwCgRNeShf4rzwOoUNBju2YkZJT1sh861F7qe
EUv01+p9jlvq42ZLxaQxV00ipMMu+XvqWx9L29V28uoEE7agNA0W2F+HugtsTwkD
UyZ85/NhfVK2PuF866L8r7UiS0og4xxI+8dx84tV8gZdyEiTNvj+oeS3PSmoaGRH
6dUEKzCTho2nq4maLuQMagq2NKgkuwFMAeHKFa4Vh+ZWJ4vkIzMrHsiGCopX0Ngk
GoJ/HiXYkLx8Z3H9In1dhIRKRikq5VEVNAbG17BaxKgJv+ij7SzcTBCJV+QlpSNf
G36+ZXA1tFa0ctYC0TCag3zoP0X7oyfFlvmx4Hsae4iM6x0=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org