Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/xQuLs34NjnF74q9qT2xWEo-XPfU.roa
File: xQuLs34NjnF74q9qT2xWEo-XPfU.roa (raw, json)
Hash identifier: LHs592pMpIxh/ZtFqwqMi5gYmswRaPCha1dNRA4ymGE=
Subject key identifier: C5:0B:8B:B3:7E:0D:8E:71:7B:E2:AF:6A:4F:6C:56:12:8F:97:3D:F5
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0BA7
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xQuLs34NjnF74q9qT2xWEo-XPfU.roa
Signing time: Fri 01 Sep 2023 10:01:09 +0000
ROA not before: Fri 01 Sep 2023 10:01:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 61.58.157.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2983 (0xba7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Sep 1 10:01:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C50B8BB37E0D8E717BE2AF6A4F6C56128F973DF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:79:3f:bb:59:98:aa:c9:d7:8b:dd:2c:10:77:
d5:f3:c7:e3:da:3c:91:9c:e0:5a:3c:48:da:87:e4:
33:e8:f9:bb:7c:8c:2a:ed:83:e4:15:4a:57:b8:9d:
b7:8c:aa:8d:43:8b:57:88:43:c2:54:03:af:fe:7a:
d8:5e:9e:25:64:51:8e:70:1f:1f:58:63:6b:c0:dc:
dd:a1:09:65:11:0a:91:ec:8c:1a:b5:dc:6a:96:41:
5d:98:99:89:29:11:3f:56:09:92:0b:d1:2a:bb:a6:
0c:3f:d6:c7:24:6e:33:90:bc:71:16:d3:e7:30:46:
88:3f:6e:42:4d:0e:8a:86:b6:b2:8d:9c:bf:f2:74:
0d:48:33:8b:66:1e:1d:c9:c6:f2:9c:a4:85:2b:ec:
1a:2d:d9:3a:ba:85:75:dd:b8:7f:7e:22:67:2c:83:
fc:1f:ff:bb:63:88:57:aa:aa:11:15:cb:a0:37:6f:
28:2d:2f:e2:ff:8c:cf:47:e5:dc:a7:3a:dc:6e:ec:
82:a2:32:7d:54:36:c9:12:01:7e:6b:39:2e:1a:46:
e3:dc:b5:41:70:32:73:05:22:fe:b6:b5:57:36:84:
1b:4e:05:a2:4a:9f:a9:6d:e9:1d:62:4f:f0:b9:01:
3a:a3:29:ce:27:57:92:61:47:e4:be:03:60:da:c9:
c1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:0B:8B:B3:7E:0D:8E:71:7B:E2:AF:6A:4F:6C:56:12:8F:97:3D:F5
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xQuLs34NjnF74q9qT2xWEo-XPfU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c6:e1:61:78:50:a2:af:22:50:97:1d:ad:cd:3d:79:80:d9:
d3:7e:fe:34:0e:da:fa:84:93:a7:a0:eb:6f:7d:d8:8a:8d:42:
b0:79:c5:a4:e7:c9:12:bb:cf:db:bc:ad:ef:65:45:e6:97:54:
1b:d1:94:c3:d7:85:9a:10:45:37:a3:e1:a0:d2:f4:17:52:d8:
ba:82:6c:0d:46:f5:0c:66:27:89:aa:d2:56:70:95:25:95:c2:
a4:e5:d8:3c:0a:63:d5:41:4e:ca:5d:f7:4c:fd:1b:29:13:82:
0f:06:be:d7:d9:3c:83:20:2c:59:bd:9b:cd:b3:1d:85:22:2e:
2e:a2:e5:0e:9a:9c:62:52:80:8f:d0:7c:b2:97:42:1d:1f:2a:
2b:7e:49:5f:c6:03:fc:f6:e5:2d:af:23:a6:99:16:05:ec:cd:
ec:64:4a:3e:f8:c6:20:e4:81:40:9e:f2:d6:d7:0a:2d:0e:6d:
25:cf:74:f1:26:fd:9a:4d:01:d3:33:4a:35:dd:e0:c2:c7:5d:
6a:ea:de:4f:5d:6b:ce:eb:5c:62:5b:3f:35:86:9a:13:a9:68:
d4:f9:bd:3b:9e:90:21:86:a8:72:f7:05:26:09:f7:a7:32:49:
a9:d3:52:a3:63:80:03:8c:9e:81:38:03:ec:4f:58:bb:e4:09:
83:ec:82:88
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy
NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMzA5MDEx
MDAxMDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM1MEI4QkIzN0UwRDhF
NzE3QkUyQUY2QTRGNkM1NjEyOEY5NzNERjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCweT+7WZiqydeL3SwQd9Xzx+PaPJGc4Fo8SNqH5DPo+bt8jCrt
g+QVSle4nbeMqo1Di1eIQ8JUA6/+etheniVkUY5wHx9YY2vA3N2hCWURCpHsjBq1
3GqWQV2YmYkpET9WCZIL0Sq7pgw/1sckbjOQvHEW0+cwRog/bkJNDoqGtrKNnL/y
dA1IM4tmHh3JxvKcpIUr7Bot2Tq6hXXduH9+Imcsg/wf/7tjiFeqqhEVy6A3bygt
L+L/jM9H5dynOtxu7IKiMn1UNskSAX5rOS4aRuPctUFwMnMFIv62tVc2hBtOBaJK
n6lt6R1iT/C5ATqjKc4nV5JhR+S+A2DaycEnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUxQuLs34NjnF74q9qT2xWEo+XPfUwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo
SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80
Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAveFF1THMzNE5qbkY3NHE5cVQyeFdF
by1YUGZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD06nTAN
BgkqhkiG9w0BAQsFAAOCAQEAHMbhYXhQoq8iUJcdrc09eYDZ037+NA7a+oSTp6Dr
b33Yio1CsHnFpOfJErvP27yt72VF5pdUG9GUw9eFmhBFN6PhoNL0F1LYuoJsDUb1
DGYniarSVnCVJZXCpOXYPApj1UFOyl33TP0bKROCDwa+19k8gyAsWb2bzbMdhSIu
LqLlDpqcYlKAj9B8spdCHR8qK35JX8YD/PblLa8jppkWBezN7GRKPvjGIOSBQJ7y
1tcKLQ5tJc908Sb9mk0B0zNKNd3gwsddaureT11rzutcYls/NYaaE6lo1Pm9O56Q
IYaocvcFJgn3pzJJqdNSo2OAA4yegTgD7E9Yu+QJg+yCiA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org