Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zl0Wg7ctUmGue5ziKSobyyRj9VU.roa
File: zl0Wg7ctUmGue5ziKSobyyRj9VU.roa (raw, json)
Hash identifier: 5FYbgRJDCAUMuk3+ABeELTv+Z1dIBq44QWmS3B+jmd0=
Subject key identifier: CE:5D:16:83:B7:2D:52:61:AE:7B:9C:E2:29:2A:1B:CB:24:63:F5:55
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0B8C
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zl0Wg7ctUmGue5ziKSobyyRj9VU.roa
Signing time: Fri 01 Sep 2023 09:59:55 +0000
ROA not before: Fri 01 Sep 2023 09:59:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131596
IP address blocks: 123.240.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2956 (0xb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Sep 1 09:59:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CE5D1683B72D5261AE7B9CE2292A1BCB2463F555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:6d:d1:58:56:af:bd:9d:02:91:14:9b:fc:42:
31:fc:1d:69:f9:b1:9a:74:03:72:d1:eb:ba:16:4a:
6a:04:20:c5:e8:ed:33:7d:1a:5c:95:e7:0b:cc:58:
63:34:79:9f:39:f8:06:d9:c5:46:db:00:ec:44:95:
49:ed:76:39:b1:35:1d:a6:7b:13:c2:7f:71:f8:7c:
b5:a8:2c:cb:85:1f:00:f5:c7:a5:db:af:ec:99:85:
5e:ef:34:7c:dd:ef:90:59:34:bb:6e:91:25:15:bc:
51:28:75:56:15:0b:d3:16:7e:eb:90:d4:1b:04:cc:
ed:41:6a:d5:9b:ff:7d:0d:28:35:56:f7:cd:ee:75:
9c:77:1d:89:ae:c0:dc:f3:71:0c:f7:58:27:27:c3:
ac:ce:94:e3:cc:79:2b:2d:9b:54:1a:ec:19:ec:86:
4d:44:00:c5:7b:44:d2:7c:13:3a:f8:15:c4:bf:b0:
f1:d7:37:2c:ac:a2:8e:e1:1c:e9:86:2d:ed:2e:a9:
b3:e5:e8:26:36:0c:06:01:7e:b5:4d:47:75:74:f3:
aa:39:a4:0c:a5:d7:f9:51:67:09:77:63:9f:6a:e8:
18:e7:fb:92:5a:1e:93:e3:c1:8b:42:73:ac:3a:5c:
9e:1b:ff:14:13:02:04:6d:77:a5:79:cb:79:35:a2:
af:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:5D:16:83:B7:2D:52:61:AE:7B:9C:E2:29:2A:1B:CB:24:63:F5:55
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/zl0Wg7ctUmGue5ziKSobyyRj9VU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.240.0.0/15
Signature Algorithm: sha256WithRSAEncryption
17:12:29:39:30:46:7a:00:80:9d:32:82:d1:43:9b:80:f2:88:
12:1a:66:af:a0:dd:05:c5:9f:35:cd:99:97:98:a7:14:f1:95:
92:61:3b:53:af:23:0f:51:7e:5d:4a:67:1b:fb:a1:05:43:04:
67:56:61:be:ca:3a:3f:e5:44:d2:2f:2f:54:65:f8:c0:9e:b6:
17:bd:b8:5d:b8:ee:1b:6d:4c:a7:57:cb:18:16:b5:ff:a3:9a:
12:63:fa:56:4b:57:60:14:61:6e:a0:64:c7:10:53:0d:38:74:
43:03:68:ce:e9:f8:5c:9c:dd:cb:05:95:70:b3:f2:38:cd:a3:
f4:8e:f5:78:e4:2f:26:a4:a2:a6:d7:a5:d1:09:34:71:fb:f0:
b3:62:76:96:e6:3a:51:27:fb:f3:46:6e:e8:5a:e2:09:a0:f3:
83:55:3b:03:a9:05:ee:94:b2:25:45:01:81:2a:fd:f8:8a:62:
c9:c1:9a:73:29:c4:ca:cf:1b:a8:e5:37:24:7f:02:88:ca:71:
55:aa:9d:0b:04:2c:d3:58:66:0b:8c:5c:cb:9d:27:35:13:30:
27:6d:b9:71:5f:4e:fc:ab:48:78:08:2d:f6:4f:8e:53:36:66:
ed:7b:5f:9e:bc:ee:62:b0:97:65:82:b2:44:46:de:ca:48:56:
ec:49:1d:95
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy
NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yMzA5MDEw
OTU5NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENFNUQxNjgzQjcyRDUy
NjFBRTdCOUNFMjI5MkExQkNCMjQ2M0Y1NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD3bdFYVq+9nQKRFJv8QjH8HWn5sZp0A3LR67oWSmoEIMXo7TN9
GlyV5wvMWGM0eZ85+AbZxUbbAOxElUntdjmxNR2mexPCf3H4fLWoLMuFHwD1x6Xb
r+yZhV7vNHzd75BZNLtukSUVvFEodVYVC9MWfuuQ1BsEzO1BatWb/30NKDVW983u
dZx3HYmuwNzzcQz3WCcnw6zOlOPMeSstm1Qa7Bnshk1EAMV7RNJ8Ezr4FcS/sPHX
Nyysoo7hHOmGLe0uqbPl6CY2DAYBfrVNR3V086o5pAyl1/lRZwl3Y59q6Bjn+5Ja
HpPjwYtCc6w6XJ4b/xQTAgRtd6V5y3k1oq9nAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUzl0Wg7ctUmGue5ziKSobyyRj9VUwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO
McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v
Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS96bDBXZzdjdFVtR3VlNXppS1Nv
Ynl5Umo5VlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBe/Aw
DQYJKoZIhvcNAQELBQADggEBABcSKTkwRnoAgJ0ygtFDm4DyiBIaZq+g3QXFnzXN
mZeYpxTxlZJhO1OvIw9Rfl1KZxv7oQVDBGdWYb7KOj/lRNIvL1Rl+MCethe9uF24
7httTKdXyxgWtf+jmhJj+lZLV2AUYW6gZMcQUw04dEMDaM7p+Fyc3csFlXCz8jjN
o/SO9XjkLyakoqbXpdEJNHH78LNidpbmOlEn+/NGbuha4gmg84NVOwOpBe6UsiVF
AYEq/fiKYsnBmnMpxMrPG6jlNyR/AojKcVWqnQsELNNYZguMXMudJzUTMCdtuXFf
TvyrSHgILfZPjlM2Zu17X5687mKwl2WCskRG3spIVuxJHZU=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:17 2024 by rpki-client on console-ams.rpki-client.org