Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/q-totuW-6uCqiUDqyNenFJe_Uls.roa
File: q-totuW-6uCqiUDqyNenFJe_Uls.roa (raw, json)
Hash identifier: DvT3wc+wS+YcUm88Ovu3bHEEY9QHV8W+4YQ1kV5VivI=
Subject key identifier: AB:EB:68:B6:E5:BE:EA:E0:AA:89:40:EA:C8:D7:A7:14:97:BF:52:5B
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0C59
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/q-totuW-6uCqiUDqyNenFJe_Uls.roa
Signing time: Mon 17 Jun 2024 08:52:08 +0000
ROA not before: Mon 17 Jun 2024 08:52:08 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17709
IP address blocks: 210.202.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3161 (0xc59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Jun 17 08:52:08 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ABEB68B6E5BEEAE0AA8940EAC8D7A71497BF525B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fd:87:94:46:89:08:4a:7a:b2:4b:ef:93:2d:
61:cc:46:86:bc:6a:cc:97:5c:c9:c8:3f:46:aa:cc:
1f:39:50:5a:2d:02:4b:23:c0:f4:fa:88:6c:02:a7:
23:54:f5:dc:05:2a:8b:8d:22:fe:cf:ef:54:45:6b:
71:53:c0:ce:54:d3:c5:0d:cf:99:0a:db:88:08:c6:
1c:9b:77:d9:12:e2:8e:d1:6b:a8:91:25:ff:17:de:
19:2e:f0:53:ad:a5:f8:97:43:a6:16:c8:f3:fc:f1:
58:1c:c5:90:93:52:f0:d1:79:ed:9e:a9:1f:3e:06:
85:f5:ba:50:d5:74:ad:6d:15:0a:95:22:01:00:d8:
b7:61:e1:3f:c7:9f:19:99:54:d6:10:14:89:b8:b9:
9b:ba:a1:fa:f8:5b:27:cf:fb:9c:33:93:a5:8e:97:
c4:02:44:89:75:49:98:ab:82:64:07:50:81:92:b3:
2b:89:7e:91:f8:ae:db:d8:f9:13:81:67:0b:56:0f:
2f:d8:ee:33:1a:f4:13:5c:34:c2:ba:66:f9:2f:74:
06:b7:b8:9b:f5:9e:e0:ba:aa:4f:6c:37:c8:7e:80:
e6:63:50:f5:0b:f5:4a:f1:9a:23:ba:c1:92:a6:c4:
7e:8b:d5:7f:ab:21:2c:9e:0e:8a:62:97:d8:96:fa:
19:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EB:68:B6:E5:BE:EA:E0:AA:89:40:EA:C8:D7:A7:14:97:BF:52:5B
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/q-totuW-6uCqiUDqyNenFJe_Uls.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.56.0/21
Signature Algorithm: sha256WithRSAEncryption
6a:85:90:29:55:27:18:a0:4e:3b:4b:94:d8:23:65:e6:68:3c:
67:7f:56:20:4b:3e:66:26:18:97:bb:2e:22:12:d8:d3:40:59:
f2:37:73:16:e8:b3:46:1c:cb:c5:4e:5b:1d:db:ca:70:7a:df:
d3:9d:03:45:83:e7:f0:10:25:6d:de:6d:a3:ee:57:a0:f1:6c:
f4:79:11:86:6c:3c:a8:cb:94:e4:98:8c:2b:14:1f:2b:f9:a0:
d4:51:95:5e:6a:9a:e0:ae:a1:36:ae:51:03:e4:cd:f9:ad:91:
3c:c3:c3:11:ec:80:fa:27:61:60:bf:8a:ca:f9:38:d0:1d:1f:
48:40:4a:d2:73:fc:dd:c5:e9:a8:55:77:a8:0f:e8:2b:0a:81:
f8:a0:15:b3:46:14:33:d7:e9:31:db:be:03:96:49:21:b3:15:
07:51:eb:4c:39:7f:94:83:c1:4f:a8:1c:30:7d:21:ea:28:9a:
4a:a8:8f:f2:68:4f:22:53:7b:af:27:44:43:35:b1:24:f4:fa:
b2:a9:3a:45:14:a7:32:1d:0a:e2:dc:b2:f5:53:43:f8:a6:be:
b5:cc:05:14:2d:17:5a:e8:3e:1a:29:93:c2:17:d0:8a:a3:b1:
52:95:b1:ab:26:74:d3:c9:42:a6:ff:13:e4:81:6b:46:dc:76:
29:d7:73:74
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA2MTcw
ODUyMDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFCRUI2OEI2RTVCRUVB
RTBBQTg5NDBFQUM4RDdBNzE0OTdCRjUyNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDD/YeURokISnqyS++TLWHMRoa8asyXXMnIP0aqzB85UFotAksj
wPT6iGwCpyNU9dwFKouNIv7P71RFa3FTwM5U08UNz5kK24gIxhybd9kS4o7Ra6iR
Jf8X3hku8FOtpfiXQ6YWyPP88VgcxZCTUvDRee2eqR8+BoX1ulDVdK1tFQqVIgEA
2Ldh4T/HnxmZVNYQFIm4uZu6ofr4WyfP+5wzk6WOl8QCRIl1SZirgmQHUIGSsyuJ
fpH4rtvY+ROBZwtWDy/Y7jMa9BNcNMK6ZvkvdAa3uJv1nuC6qk9sN8h+gOZjUPUL
9UrxmiO6wZKmxH6L1X+rISyeDopil9iW+hmPAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUq+totuW+6uCqiUDqyNenFJe/UlswHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9xLXRvdHVXLTZ1Q3FpVURxeU5l
bkZKZV9VbHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0so4
MA0GCSqGSIb3DQEBCwUAA4IBAQBqhZApVScYoE47S5TYI2XmaDxnf1YgSz5mJhiX
uy4iEtjTQFnyN3MW6LNGHMvFTlsd28pwet/TnQNFg+fwECVt3m2j7leg8Wz0eRGG
bDyoy5TkmIwrFB8r+aDUUZVeaprgrqE2rlED5M35rZE8w8MR7ID6J2Fgv4rK+TjQ
HR9IQErSc/zdxemoVXeoD+grCoH4oBWzRhQz1+kx274DlkkhsxUHUetMOX+Ug8FP
qBwwfSHqKJpKqI/yaE8iU3uvJ0RDNbEk9PqyqTpFFKcyHQri3LL1U0P4pr61zAUU
LRda6D4aKZPCF9CKo7FSlbGrJnTTyUKm/xPkgWtG3HYp13N0
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org