Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fn9cve2TzSP4ZkUAA_FpjSIa6nc.roa
File: fn9cve2TzSP4ZkUAA_FpjSIa6nc.roa (raw, json)
Hash identifier: 8G720RH9K0EmxoWe8lTHHN6gYZCa1UKDDFedlrxZesc=
Subject key identifier: 7E:7F:5C:BD:ED:93:CD:23:F8:66:45:00:03:F1:69:8D:22:1A:EA:77
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B85
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fn9cve2TzSP4ZkUAA_FpjSIa6nc.roa
Signing time: Fri 01 Sep 2023 09:59:53 +0000
ROA not before: Fri 01 Sep 2023 09:59:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 59.102.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2949 (0xb85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7E7F5CBDED93CD23F866450003F1698D221AEA77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:75:96:47:ce:ce:57:d7:a0:f3:4a:02:fc:79:
f9:0c:aa:2e:c0:e5:b5:ba:66:aa:99:79:ff:96:31:
1d:1f:95:a6:d5:b4:73:d0:6c:fc:a7:e5:fd:49:e3:
27:17:a8:fe:93:f3:5b:e4:f8:9b:b3:28:6c:77:e2:
4f:16:69:bb:88:06:a4:f3:44:59:6f:8e:11:e0:2b:
c7:0a:03:f4:04:6e:6e:fa:47:fd:93:b4:45:a4:77:
0e:24:b3:c2:13:e9:4f:49:cb:23:3b:e0:f4:0e:5e:
cf:5b:24:99:08:43:59:46:ec:55:1a:01:94:cd:f6:
b1:4c:2f:ca:e6:c5:02:a5:8d:de:9c:52:52:1d:47:
ae:d5:d2:3d:dd:4b:4f:ff:1a:8a:4a:76:b4:05:18:
6f:da:49:c2:ff:c6:57:f6:d4:64:fe:96:db:60:8e:
a2:4f:ef:15:c2:a9:af:1c:cf:ee:e3:08:07:7c:6f:
1b:af:a7:d2:b5:f3:6d:d8:3a:4a:34:68:1c:a5:f8:
77:45:c7:db:a0:9c:dd:c5:5c:0f:25:2b:16:5e:b9:
dc:26:f9:3d:d3:33:c1:d2:15:39:f9:5b:14:a2:7b:
58:d4:5a:f6:36:c5:70:69:96:bd:29:a0:16:dc:4d:
75:5e:b0:cf:ca:28:28:8d:31:d2:dd:f1:89:82:3f:
1a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:7F:5C:BD:ED:93:CD:23:F8:66:45:00:03:F1:69:8D:22:1A:EA:77
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/fn9cve2TzSP4ZkUAA_FpjSIa6nc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/22
Signature Algorithm: sha256WithRSAEncryption
78:59:e5:fc:5a:cc:c2:96:f5:f3:af:af:a0:65:09:af:c7:2c:
0c:04:72:bc:07:08:de:1a:dc:c7:da:b0:38:54:1a:a4:97:3a:
dd:69:aa:cb:cc:f6:cb:07:c0:d4:ec:4f:e5:55:51:32:89:2d:
81:73:9a:b9:e9:7e:36:18:58:8f:bb:19:f9:db:8c:99:cd:9c:
19:cf:51:f3:30:5d:11:b7:50:1f:34:ac:37:bd:cd:e2:df:22:
da:68:29:bd:57:3e:0a:38:b9:48:97:f6:fd:40:1b:d3:c6:09:
8e:30:22:69:e9:98:56:c7:5c:ab:b5:ce:4f:e0:61:e1:26:be:
fc:0c:df:f3:89:5c:7f:76:32:f5:cc:12:e4:16:94:7e:b9:83:
8f:ee:bc:63:62:d2:96:18:fb:1e:31:6f:16:22:12:69:b2:70:
f6:03:76:78:de:ca:76:2c:76:3e:3f:9c:21:a4:11:32:84:4b:
d4:21:bd:6f:f9:d8:96:cb:ae:bc:d8:dc:7d:fc:c3:c3:71:0b:
79:9c:ff:c2:29:b4:f6:a2:b5:aa:55:7c:9f:e4:81:bc:b6:80:
de:64:3d:e7:d0:3f:6a:a7:df:5e:53:c3:9e:00:25:91:53:75:
64:45:b1:ca:c0:11:42:8e:44:98:58:48:6f:27:ea:64:16:2e:
b8:55:81:77
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC4UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMzA5MDEw
OTU5NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdFN0Y1Q0JERUQ5M0NE
MjNGODY2NDUwMDAzRjE2OThEMjIxQUVBNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHdZZHzs5X16DzSgL8efkMqi7A5bW6ZqqZef+WMR0flabVtHPQ
bPyn5f1J4ycXqP6T81vk+JuzKGx34k8WabuIBqTzRFlvjhHgK8cKA/QEbm76R/2T
tEWkdw4ks8IT6U9JyyM74PQOXs9bJJkIQ1lG7FUaAZTN9rFML8rmxQKljd6cUlId
R67V0j3dS0//GopKdrQFGG/aScL/xlf21GT+lttgjqJP7xXCqa8cz+7jCAd8bxuv
p9K1823YOko0aByl+HdFx9ugnN3FXA8lKxZeudwm+T3TM8HSFTn5WxSie1jUWvY2
xXBplr0poBbcTXVesM/KKCiNMdLd8YmCPxotAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUfn9cve2TzSP4ZkUAA/FpjSIa6ncwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9mbjljdmUyVHpTUDRaa1VBQV9G
cGpTSWE2bmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCO2aA
MA0GCSqGSIb3DQEBCwUAA4IBAQB4WeX8WszClvXzr6+gZQmvxywMBHK8BwjeGtzH
2rA4VBqklzrdaarLzPbLB8DU7E/lVVEyiS2Bc5q56X42GFiPuxn524yZzZwZz1Hz
MF0Rt1AfNKw3vc3i3yLaaCm9Vz4KOLlIl/b9QBvTxgmOMCJp6ZhWx1yrtc5P4GHh
Jr78DN/ziVx/djL1zBLkFpR+uYOP7rxjYtKWGPseMW8WIhJpsnD2A3Z43sp2LHY+
P5whpBEyhEvUIb1v+diWy6682Nx9/MPDcQt5nP/CKbT2orWqVXyf5IG8toDeZD3n
0D9qp99eU8OeACWRU3VkRbHKwBFCjkSYWEhvJ+pkFi64VYF3
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org