Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/9Kk5m4LnwWp28EQUlGXv6Z-T3cg.roa
File: 9Kk5m4LnwWp28EQUlGXv6Z-T3cg.roa (raw, json)
Hash identifier: 6Xee5IUaJGIbbXFldgiJEuPjxjfzeniZdDXeCjTCr2M=
Subject key identifier: F4:A9:39:9B:82:E7:C1:6A:76:F0:44:14:94:65:EF:E9:9F:93:DD:C8
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 010A
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/9Kk5m4LnwWp28EQUlGXv6Z-T3cg.roa
Signing time: Fri 20 Sep 2024 07:49:54 +0000
ROA not before: Fri 20 Sep 2024 07:49:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 139076
IP address blocks: 202.160.64.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266 (0x10a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Sep 20 07:49:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F4A9399B82E7C16A76F044149465EFE99F93DDC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:9e:e6:96:69:d3:d4:16:3d:8b:86:c5:c3:
05:b0:53:e0:4f:ba:e1:ea:64:71:46:38:51:2f:ac:
90:a1:67:1e:81:ed:62:cd:6e:19:c7:d4:45:73:9a:
3e:89:3e:6f:6f:6d:31:ca:aa:79:d8:df:36:81:ef:
80:21:34:04:d3:5a:a3:9c:fa:37:ee:b8:c6:23:e9:
ff:82:37:1d:01:8e:9d:12:00:97:b8:39:54:e9:48:
8b:8e:fb:8a:0d:f7:a5:ad:dc:27:61:2f:41:2d:5f:
ca:59:db:3d:ef:83:ce:0d:1c:61:c5:2f:78:0d:93:
e7:3f:94:00:f6:e4:98:4f:cb:c7:d4:92:10:c1:90:
65:15:eb:32:7b:db:ef:a1:2d:88:cc:b7:0e:77:c9:
95:a0:f4:6d:75:a2:f3:ea:a6:2a:50:31:da:76:32:
bb:d1:0c:18:a4:e1:e8:a9:6e:9a:ff:4a:93:71:a3:
3b:9a:f8:fb:bb:30:9c:8f:65:a1:31:5f:6c:c6:a6:
ec:ac:be:cb:c0:ec:c8:0b:81:41:3a:ec:60:b5:09:
15:56:4a:f4:b2:4e:30:3c:c3:12:81:d1:f1:d1:e5:
f5:3a:5a:a7:b0:f9:44:23:97:80:d1:c4:53:7f:b3:
fb:48:91:9e:05:70:fe:7f:72:2d:4a:71:14:a6:dc:
6c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A9:39:9B:82:E7:C1:6A:76:F0:44:14:94:65:EF:E9:9F:93:DD:C8
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/9Kk5m4LnwWp28EQUlGXv6Z-T3cg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.64.0/21
Signature Algorithm: sha256WithRSAEncryption
75:02:ed:87:5c:2e:a8:14:bc:ac:cc:45:96:3b:3e:cf:02:22:
2b:e5:41:b8:db:70:e1:29:3f:0b:0f:de:3b:11:9b:66:0c:0d:
eb:23:20:64:2c:bb:35:b1:47:cf:1a:33:1c:3b:72:bb:1c:43:
72:e9:98:16:2b:35:09:12:d8:00:07:4a:98:b6:bf:9c:a9:86:
61:28:e1:63:30:8c:a1:dc:fb:55:36:de:6e:b0:33:d1:75:f3:
38:06:52:a8:18:58:91:93:a6:c4:c7:1e:da:24:9c:4f:42:11:
db:45:ef:89:8c:8f:ef:a4:19:27:50:97:5d:55:1d:62:93:1b:
2a:92:ab:c7:34:15:de:1b:a8:e1:a6:05:cd:c0:3a:b5:79:f3:
6b:fe:0d:26:12:c0:f3:77:54:28:c9:f9:c1:9a:ce:4c:9f:3a:
f9:66:95:b1:6b:57:72:07:31:43:b7:af:a1:b1:af:b0:01:b3:
33:85:11:84:4a:33:22:e5:ea:9e:f9:ed:4a:fb:2b:85:b0:2c:
55:ce:02:67:d6:29:ed:9c:ad:c4:9c:91:73:7e:1b:0e:36:44:
39:82:2f:73:4f:8a:c4:25:e3:fa:fb:ae:da:7f:a5:c0:04:11:
ca:fb:06:54:66:d5:61:18:07:a5:2b:1e:da:35:df:f6:cc:cd:
3b:e9:b9:8e
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE
MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDA5MjAw
NzQ5NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY0QTkzOTlCODJFN0Mx
NkE3NkYwNDQxNDk0NjVFRkU5OUY5M0REQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuOp7mlmnT1BY9i4bFwwWwU+BPuuHqZHFGOFEvrJChZx6B7WLN
bhnH1EVzmj6JPm9vbTHKqnnY3zaB74AhNATTWqOc+jfuuMYj6f+CNx0Bjp0SAJe4
OVTpSIuO+4oN96Wt3CdhL0EtX8pZ2z3vg84NHGHFL3gNk+c/lAD25JhPy8fUkhDB
kGUV6zJ72++hLYjMtw53yZWg9G11ovPqpipQMdp2MrvRDBik4eipbpr/SpNxozua
+Pu7MJyPZaExX2zGpuysvsvA7MgLgUE67GC1CRVWSvSyTjA8wxKB0fHR5fU6Wqew
+UQjl4DRxFN/s/tIkZ4FcP5/ci1KcRSm3Gz7AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQU9Kk5m4LnwWp28EQUlGXv6Z+T3cgwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9
HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL
RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBLzlLazVtNExud1dw
MjhFUVVsR1h2NlotVDNjZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAPKoEAwDQYJKoZIhvcNAQELBQADggEBAHUC7YdcLqgUvKzMRZY7Ps8CIivl
QbjbcOEpPwsP3jsRm2YMDesjIGQsuzWxR88aMxw7crscQ3LpmBYrNQkS2AAHSpi2
v5yphmEo4WMwjKHc+1U23m6wM9F18zgGUqgYWJGTpsTHHtoknE9CEdtF74mMj++k
GSdQl11VHWKTGyqSq8c0Fd4bqOGmBc3AOrV582v+DSYSwPN3VCjJ+cGazkyfOvlm
lbFrV3IHMUO3r6Gxr7ABszOFEYRKMyLl6p757Ur7K4WwLFXOAmfWKe2crcSckXN+
Gw42RDmCL3NPisQl4/r7rtp/pcAEEcr7BlRm1WEYB6UrHto13/bMzTvpuY4=
Generated at Tue Oct 8 20:56:10 2024 by rpki-client on console-fra.rpki-client.org