Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/5ZNCC0i6pKTuYopUhxZSAU0RqDQ.roa
File: 5ZNCC0i6pKTuYopUhxZSAU0RqDQ.roa (raw, json)
Hash identifier: CjhhZ+wEQz6RJAuBAxQxkLTHKBupDEtKFOpBtntGFWQ=
Subject key identifier: E5:93:42:0B:48:BA:A4:A4:EE:62:8A:54:87:16:52:01:4D:11:A8:34
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0B5A
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/5ZNCC0i6pKTuYopUhxZSAU0RqDQ.roa
Signing time: Fri 01 Sep 2023 10:00:09 +0000
ROA not before: Fri 01 Sep 2023 10:00:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131590
IP address blocks: 2400:c780:fffe:1d00::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2906 (0xb5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 1 10:00:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E593420B48BAA4A4EE628A54871652014D11A834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:7f:25:38:45:10:6f:83:61:09:b9:b6:00:
36:10:6e:e0:34:23:af:c6:df:3e:a3:7f:96:7d:e1:
65:8a:0c:b1:2d:33:85:09:96:f4:96:ec:a9:01:be:
68:08:93:1c:13:92:67:b8:c9:de:d2:f0:17:78:5c:
89:4e:e9:d2:60:77:16:62:d8:7d:f3:07:2e:92:54:
cf:1d:84:05:d2:06:fe:d8:42:f1:ca:67:ae:30:35:
e4:8c:18:53:54:18:6b:0b:89:3a:c2:2b:b5:a9:23:
73:54:97:3e:09:f9:04:f2:00:f3:19:72:68:4a:0f:
72:d3:d8:d1:99:a2:53:44:35:90:41:56:0a:f4:95:
6d:e5:35:06:e6:2b:b1:03:d0:bc:a6:41:fe:8c:09:
b3:60:97:8b:4b:fa:49:c6:54:88:94:72:b5:28:d9:
47:db:95:ef:96:c2:5c:b3:cf:49:79:a1:d5:b8:7d:
7f:46:e7:65:a9:f8:3c:a7:56:26:05:d4:b9:db:02:
05:f4:fb:d1:f4:53:84:7a:1c:81:19:74:b2:4a:f1:
38:fb:a6:26:a7:f1:7b:cf:1d:ae:5f:4d:96:5e:da:
71:e6:f0:f0:7e:ac:9e:62:84:f2:0f:00:26:e3:c4:
a3:4a:16:a8:f2:ab:86:60:46:fa:1a:99:30:15:28:
82:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:93:42:0B:48:BA:A4:A4:EE:62:8A:54:87:16:52:01:4D:11:A8:34
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/5ZNCC0i6pKTuYopUhxZSAU0RqDQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c780:fffe:1d00::/64
Signature Algorithm: sha256WithRSAEncryption
cf:33:b2:ed:05:f3:9a:6b:77:fd:34:b3:c2:dd:d5:c5:ba:fc:
b1:5e:c5:92:bf:b2:97:1e:a5:95:40:19:05:44:85:3d:29:43:
4a:5c:ca:c8:e7:b7:e9:05:28:75:e1:15:a1:99:bf:39:81:08:
45:59:68:05:7b:72:85:84:5e:1b:6d:8f:aa:7f:ab:f1:27:ab:
f4:96:25:58:a0:a2:e4:f5:26:17:ff:2f:dc:7f:25:70:85:82:
1e:2a:97:95:64:bc:2b:92:7f:44:9d:da:fb:e7:64:23:76:4b:
23:bd:fb:af:59:a9:ee:8f:26:c0:55:17:8d:7d:fb:8b:86:ec:
71:b1:d2:1b:07:28:da:50:3c:18:fc:fb:57:da:1d:53:63:ad:
d5:b2:5a:aa:4e:57:22:fe:0d:38:9d:01:b6:23:37:e9:2b:af:
42:78:7b:d4:06:19:13:25:1f:87:da:f4:b1:09:8f:45:a5:a5:
0b:af:78:1e:c4:8e:58:26:cc:e3:bc:08:77:f7:b7:15:e7:79:
fa:b1:c6:41:67:da:d7:7b:3d:dc:cc:c5:68:7f:5b:73:ce:35:
a8:64:08:51:c7:40:cf:6d:bf:cb:86:63:3e:6f:c4:6d:35:f4:
b0:15:4d:e7:93:2d:59:fe:a7:e9:24:66:c3:d8:6f:df:d0:e5:
43:b0:a7:5e
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICC1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4
MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yMzA5MDEx
MDAwMDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU1OTM0MjBCNDhCQUE0
QTRFRTYyOEE1NDg3MTY1MjAxNEQxMUE4MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCSZn8lOEUQb4NhCbm2ADYQbuA0I6/G3z6jf5Z94WWKDLEtM4UJ
lvSW7KkBvmgIkxwTkme4yd7S8Bd4XIlO6dJgdxZi2H3zBy6SVM8dhAXSBv7YQvHK
Z64wNeSMGFNUGGsLiTrCK7WpI3NUlz4J+QTyAPMZcmhKD3LT2NGZolNENZBBVgr0
lW3lNQbmK7ED0LymQf6MCbNgl4tL+knGVIiUcrUo2Ufble+Wwlyzz0l5odW4fX9G
52Wp+DynViYF1LnbAgX0+9H0U4R6HIEZdLJK8Tj7pian8XvPHa5fTZZe2nHm8PB+
rJ5ihPIPACbjxKNKFqjyq4ZgRvoamTAVKIIdAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU5ZNCC0i6pKTuYopUhxZSAU0RqDQwHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0
NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0
S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVENCLzVaTkNDMGk2cEtUdVlvcFVoeFpTQVUw
UnFEUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwJAYIKwYBBQUHAQcBAf8EFTATMBEEAgACMAsDCQAkAMeA//4d
ADANBgkqhkiG9w0BAQsFAAOCAQEAzzOy7QXzmmt3/TSzwt3Vxbr8sV7Fkr+ylx6l
lUAZBUSFPSlDSlzKyOe36QUodeEVoZm/OYEIRVloBXtyhYReG22Pqn+r8Ser9JYl
WKCi5PUmF/8v3H8lcIWCHiqXlWS8K5J/RJ3a++dkI3ZLI737r1mp7o8mwFUXjX37
i4bscbHSGwco2lA8GPz7V9odU2Ot1bJaqk5XIv4NOJ0BtiM36SuvQnh71AYZEyUf
h9r0sQmPRaWlC694HsSOWCbM47wId/e3Fed5+rHGQWfa13s93MzFaH9bc841qGQI
UcdAz22/y4ZjPm/EbTX0sBVN55MtWf6n6SRmw9hv39DlQ7CnXg==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org