Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/L7VhIx4Rmr01YOhQiNK4U1f8RY0.roa
File: L7VhIx4Rmr01YOhQiNK4U1f8RY0.roa (raw, json)
Hash identifier: BODOM+K3DC+AgLKOzXHmQR8u8j2vUBbWn3oEKGK4jfg=
Subject key identifier: 2F:B5:61:23:1E:11:9A:BD:35:60:E8:50:88:D2:B8:53:57:FC:45:8D
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B84
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/L7VhIx4Rmr01YOhQiNK4U1f8RY0.roa
Signing time: Fri 01 Sep 2023 09:59:53 +0000
ROA not before: Fri 01 Sep 2023 09:59:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2948 (0xb84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2FB561231E119ABD3560E85088D2B85357FC458D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:13:42:ea:be:9f:ff:fe:a6:93:40:58:1f:3a:
34:7c:61:8b:63:70:7d:7a:33:71:b0:ed:3a:71:25:
45:0a:08:b2:18:ef:2c:82:7f:ce:fa:2c:ec:a1:7e:
fb:9c:59:68:3b:83:d3:2c:73:7f:a2:eb:46:ee:93:
4f:ec:e6:1a:f5:28:f9:4b:ef:70:34:75:73:a0:d7:
91:42:51:4a:47:05:03:b8:cb:78:b2:25:69:c4:95:
87:d3:b5:58:be:46:79:ad:09:63:69:d8:ef:fc:bf:
6a:77:cd:40:b9:d9:fc:d0:0a:bf:fa:3e:96:34:dc:
23:18:9b:fc:ba:42:73:e6:c7:d0:0b:55:ee:5c:b8:
f2:4c:97:ac:5b:a9:83:d1:ad:ef:71:68:10:27:c3:
0c:b6:b2:2a:2d:59:47:10:f9:78:74:f9:21:63:fe:
f4:2d:94:12:83:59:69:29:ef:54:dc:1f:43:6b:0c:
c7:8b:1e:bc:f6:e8:22:1d:91:f6:63:e8:b6:6f:21:
e2:a5:27:9e:cc:66:61:c5:97:e0:99:65:05:27:14:
0c:36:55:63:31:17:55:04:70:86:ae:b2:a5:23:3b:
0f:a6:9f:02:57:d1:c2:16:88:8a:4d:da:80:2d:04:
c6:3d:96:19:68:73:ab:7d:b1:38:0e:12:be:ee:ed:
ee:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B5:61:23:1E:11:9A:BD:35:60:E8:50:88:D2:B8:53:57:FC:45:8D
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/L7VhIx4Rmr01YOhQiNK4U1f8RY0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b3:ef:48:43:c7:31:f6:bb:ff:f3:74:ca:8c:97:e7:4c:65:cb:
1b:2d:f1:f6:ac:0a:80:98:53:4c:64:8e:b9:cd:9d:29:e5:4c:
bb:43:dc:26:a2:dd:85:eb:a9:f8:13:00:33:10:45:f2:80:fb:
e1:1c:40:16:00:1b:bf:9f:95:6b:e7:a9:f0:9f:d4:4e:ff:bd:
22:e0:b3:dd:47:c2:87:0a:13:68:28:26:54:3e:3f:79:9f:70:
8e:f7:30:39:62:f0:60:e1:11:9a:36:df:49:ab:1c:e7:90:22:
db:d0:63:25:ba:38:20:1e:bd:ba:f8:50:4e:02:24:92:f8:b5:
75:06:c7:be:a3:87:6b:65:40:b5:e7:90:35:99:85:45:bf:74:
34:f7:bc:3c:ec:b4:18:43:0c:b3:85:eb:7d:91:64:7a:73:d6:
07:c3:7a:0d:d1:42:e3:e3:df:2a:6e:65:21:58:10:14:a4:46:
d0:d1:b5:db:80:ab:50:c8:da:1a:cc:59:9b:dc:81:62:3e:bc:
d6:37:4f:5d:09:2b:0b:e5:c1:68:e0:6b:8d:a6:b7:dd:b9:e4:
75:e7:5a:1e:7a:94:c1:1b:6f:a4:76:c0:b5:81:82:fd:a9:2c:
df:44:72:d7:04:43:5f:7f:6d:86:6e:25:e2:fa:ff:36:88:52:
54:1c:4f:8f
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMzA5MDEw
OTU5NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGQjU2MTIzMUUxMTlB
QkQzNTYwRTg1MDg4RDJCODUzNTdGQzQ1OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfE0Lqvp///qaTQFgfOjR8YYtjcH16M3Gw7TpxJUUKCLIY7yyC
f876LOyhfvucWWg7g9Msc3+i60buk0/s5hr1KPlL73A0dXOg15FCUUpHBQO4y3iy
JWnElYfTtVi+RnmtCWNp2O/8v2p3zUC52fzQCr/6PpY03CMYm/y6QnPmx9ALVe5c
uPJMl6xbqYPRre9xaBAnwwy2siotWUcQ+Xh0+SFj/vQtlBKDWWkp71TcH0NrDMeL
Hrz26CIdkfZj6LZvIeKlJ57MZmHFl+CZZQUnFAw2VWMxF1UEcIausqUjOw+mnwJX
0cIWiIpN2oAtBMY9lhloc6t9sTgOEr7u7e4RAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUL7VhIx4Rmr01YOhQiNK4U1f8RY0wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9MN1ZoSXg0Um1yMDFZT2hRaU5L
NFUxZjhSWTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHO2aA
MA0GCSqGSIb3DQEBCwUAA4IBAQCz70hDxzH2u//zdMqMl+dMZcsbLfH2rAqAmFNM
ZI65zZ0p5Uy7Q9wmot2F66n4EwAzEEXygPvhHEAWABu/n5Vr56nwn9RO/70i4LPd
R8KHChNoKCZUPj95n3CO9zA5YvBg4RGaNt9JqxznkCLb0GMlujggHr26+FBOAiSS
+LV1Bse+o4drZUC155A1mYVFv3Q097w87LQYQwyzhet9kWR6c9YHw3oN0ULj498q
bmUhWBAUpEbQ0bXbgKtQyNoazFmb3IFiPrzWN09dCSsL5cFo4GuNprfdueR151oe
epTBG2+kdsC1gYL9qSzfRHLXBENff22GbiXi+v82iFJUHE+P
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org