Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/HFtlOXjxHka2GieGGSJNhc5gYjY.roa
File: HFtlOXjxHka2GieGGSJNhc5gYjY.roa (raw, json)
Hash identifier: CE7uwFAmWnPiGUHIQnPyibWo3VprmHTAqTKtHmHE0N0=
Subject key identifier: 1C:5B:65:39:78:F1:1E:46:B6:1A:27:86:19:22:4D:85:CE:60:62:36
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C63
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/HFtlOXjxHka2GieGGSJNhc5gYjY.roa
Signing time: Mon 17 Jun 2024 08:53:45 +0000
ROA not before: Mon 17 Jun 2024 08:53:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 61.57.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3171 (0xc63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:53:45 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1C5B653978F11E46B61A278619224D85CE606236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:82:2c:c5:80:50:3c:73:0c:f0:35:3c:d3:ae:
c2:4b:36:ba:52:42:42:95:bd:50:cc:cf:9b:e0:03:
f3:61:db:fa:56:a4:13:06:60:8f:34:24:ac:b8:dd:
db:01:83:2d:65:de:de:53:3d:38:a1:5a:f1:2c:ea:
f4:f1:72:bb:aa:53:fc:7d:ad:a4:3c:cb:15:cf:4f:
4e:cc:63:af:68:e3:ae:5f:53:31:1e:2d:64:43:97:
4c:78:35:80:e1:db:7a:84:e8:5b:36:f9:85:b5:ff:
5e:3a:55:ee:87:74:c3:32:c7:9d:c8:19:30:9d:70:
42:2e:85:e6:b5:36:3f:07:5d:94:47:88:fa:10:5a:
b7:bc:05:e0:bb:95:dd:19:75:77:4c:f2:fd:13:ac:
57:e3:3c:e0:f6:bb:98:a3:43:44:45:5f:ee:bf:21:
f9:be:37:60:21:2f:c0:bb:db:7b:08:40:e4:4a:23:
7d:0e:81:d9:e9:5e:10:01:32:4e:f9:35:04:27:a4:
05:30:d6:4f:df:c0:62:6b:1e:53:51:b0:a0:c2:04:
7e:bb:4c:3b:f4:a1:ec:c3:47:10:dd:c0:cb:f3:78:
ca:2a:1f:1c:20:3e:85:f1:d8:71:10:17:98:21:80:
c4:cd:4b:49:f6:d6:37:28:0c:ee:84:0e:e4:aa:01:
cd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5B:65:39:78:F1:1E:46:B6:1A:27:86:19:22:4D:85:CE:60:62:36
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/HFtlOXjxHka2GieGGSJNhc5gYjY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.64.0/18
Signature Algorithm: sha256WithRSAEncryption
28:12:24:7a:e9:7d:02:8f:c9:70:c0:71:37:af:48:37:fa:26:
1c:51:b3:05:41:c0:87:2b:22:64:e2:35:18:1a:3e:2c:63:8f:
0b:7a:79:07:9e:80:53:9d:52:e3:e1:f6:76:4e:a6:d3:48:48:
c3:36:6c:43:53:46:b3:f5:74:aa:97:60:a7:12:50:f2:56:10:
11:2a:ff:9b:3d:f3:f6:39:d9:7f:5a:ab:0d:a0:11:92:eb:ce:
04:a1:8d:ae:2a:33:d2:0c:ea:30:31:b7:25:0c:33:a6:da:8d:
82:a0:f4:a8:e8:93:6f:21:e3:cc:41:02:b7:3b:75:b7:5b:dd:
7e:fb:5d:0d:a2:c7:ef:56:58:50:77:04:a9:89:ae:01:b7:07:
64:31:e8:11:6b:93:03:b7:ca:a4:e1:4e:dd:62:f6:b4:23:36:
9e:aa:f0:73:25:96:34:eb:80:9f:96:cf:c7:13:d4:db:b6:e1:
be:38:2c:c0:f9:88:da:89:c3:dc:8a:a1:1c:92:86:c0:63:8a:
8e:c6:16:24:39:16:5f:2b:aa:4a:29:31:8c:ed:4f:d6:25:83:
08:73:26:3a:9a:51:8d:03:54:54:90:bb:40:75:0e:0c:df:9a:
85:a0:c9:e4:95:f9:cf:5f:77:65:41:de:33:bb:50:1c:0c:3f:
ed:bb:c4:37
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA2MTcw
ODUzNDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFDNUI2NTM5NzhGMTFF
NDZCNjFBMjc4NjE5MjI0RDg1Q0U2MDYyMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClgizFgFA8cwzwNTzTrsJLNrpSQkKVvVDMz5vgA/Nh2/pWpBMG
YI80JKy43dsBgy1l3t5TPTihWvEs6vTxcruqU/x9raQ8yxXPT07MY69o465fUzEe
LWRDl0x4NYDh23qE6Fs2+YW1/146Ve6HdMMyx53IGTCdcEIuhea1Nj8HXZRHiPoQ
Wre8BeC7ld0ZdXdM8v0TrFfjPOD2u5ijQ0RFX+6/Ifm+N2AhL8C723sIQORKI30O
gdnpXhABMk75NQQnpAUw1k/fwGJrHlNRsKDCBH67TDv0oezDRxDdwMvzeMoqHxwg
PoXx2HEQF5ghgMTNS0n21jcoDO6EDuSqAc1VAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHFtlOXjxHka2GieGGSJNhc5gYjYwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9IRnRsT1hqeEhrYTJHaWVHR1NK
TmhjNWdZalkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPTlA
MA0GCSqGSIb3DQEBCwUAA4IBAQAoEiR66X0Cj8lwwHE3r0g3+iYcUbMFQcCHKyJk
4jUYGj4sY48LenkHnoBTnVLj4fZ2TqbTSEjDNmxDU0az9XSql2CnElDyVhARKv+b
PfP2Odl/WqsNoBGS684EoY2uKjPSDOowMbclDDOm2o2CoPSo6JNvIePMQQK3O3W3
W91++10NosfvVlhQdwSpia4BtwdkMegRa5MDt8qk4U7dYva0IzaeqvBzJZY064Cf
ls/HE9TbtuG+OCzA+YjaicPciqEckobAY4qOxhYkORZfK6pKKTGM7U/WJYMIcyY6
mlGNA1RUkLtAdQ4M35qFoMnklfnPX3dlQd4zu1AcDD/tu8Q3
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org