Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa
File: 6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa (raw, json)
Hash identifier: QBDWbg9KBgJ4ovfrQVUtL+sRlePn3Jq5q8ouv0OGk4E=
Subject key identifier: E8:68:3D:ED:0D:1F:5B:86:51:A1:F5:D8:9C:4E:96:71:2A:B8:FA:74
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 285D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa
Signing time: Fri 01 Sep 2023 10:05:15 +0000
ROA not before: Fri 01 Sep 2023 10:05:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10333 (0x285d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E8683DED0D1F5B8651A1F5D89C4E96712AB8FA74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:52:6f:4d:4d:4b:32:3e:5e:ce:d9:66:d4:e7:
ae:9b:6c:57:86:03:a2:0b:63:91:71:9d:7a:5c:b0:
c8:35:1f:a1:c7:7a:f2:71:80:0c:3a:77:5c:a2:0f:
63:b1:1b:4e:2f:a7:48:fa:59:5e:9f:4b:8b:1e:e7:
75:2a:c7:f5:d4:4c:e9:4b:2e:45:3e:92:69:e4:9a:
bd:59:a4:9b:7e:20:01:1f:df:60:dd:57:39:e8:39:
d2:0b:06:fe:00:ab:7e:de:70:31:1a:85:c0:27:6d:
e5:42:60:e0:b5:47:0a:9d:de:bd:bf:22:0d:a8:97:
20:8e:e0:3e:75:d0:a7:15:75:9f:a1:b3:b6:7b:2a:
ec:c0:f3:18:9c:3b:2e:7e:1b:1b:0d:ab:2a:b6:dc:
66:64:fd:9c:0f:a0:92:a5:0e:84:9e:a7:3c:7f:03:
3b:d0:17:6a:f4:9d:56:7c:8a:b4:26:14:97:30:73:
60:09:eb:f3:bc:9f:fd:9c:31:b4:ff:fe:68:84:40:
18:66:38:fb:a8:91:43:db:b2:33:7a:7f:89:14:67:
ea:30:70:dd:d6:2b:39:39:33:ce:58:b6:c5:23:ac:
5c:b4:87:e2:90:b8:f7:68:81:64:d2:a5:19:9f:ea:
fe:50:43:eb:a5:45:6b:86:65:63:f9:8d:8a:2b:84:
90:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:68:3D:ED:0D:1F:5B:86:51:A1:F5:D8:9C:4E:96:71:2A:B8:FA:74
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.72.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:3f:54:b7:92:9c:cb:8c:2e:94:52:a3:b4:11:2a:25:04:79:
da:59:f8:f6:76:26:b7:a5:5d:47:7d:2f:a1:dd:f6:aa:90:33:
b8:47:c3:06:d6:7e:86:32:3f:14:53:da:17:df:23:d3:61:eb:
55:28:bb:5a:9d:c1:fe:41:e6:62:10:de:68:75:56:41:11:10:
55:1d:1c:e0:3a:ef:16:a7:76:64:07:6f:d0:49:01:9d:a7:ef:
46:a2:b9:e3:8a:f9:41:a9:dc:89:0b:61:66:20:d3:62:56:c2:
87:32:cc:54:83:a7:ab:3b:27:62:5f:9e:92:35:f6:71:41:dc:
64:2d:0b:fe:98:4d:de:3b:d5:53:8d:71:68:15:22:e0:e8:37:
7d:4d:8b:27:92:02:3d:f8:49:01:3c:53:02:7c:c0:fb:db:ad:
32:3c:25:9f:d4:0f:78:14:1d:e8:36:f5:7c:5e:41:a0:4c:b6:
37:51:22:a8:8c:75:f9:c8:ec:e3:ea:49:7f:57:cb:bf:cb:44:
c8:7b:a7:5b:fc:a4:b7:dd:87:ab:e8:fc:6e:2c:71:d3:89:e5:
01:d1:65:9f:2b:5c:8f:9c:0e:88:2e:4f:af:d4:34:12:10:43:
1c:0c:f6:c1:1d:9a:aa:ed:a0:ea:0f:e2:b5:7d:a2:93:6d:f4:
8e:09:4c:e6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA1MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU4NjgzREVEMEQxRjVC
ODY1MUExRjVEODlDNEU5NjcxMkFCOEZBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgUm9NTUsyPl7O2WbU566bbFeGA6ILY5FxnXpcsMg1H6HHevJx
gAw6d1yiD2OxG04vp0j6WV6fS4se53Uqx/XUTOlLLkU+kmnkmr1ZpJt+IAEf32Dd
VznoOdILBv4Aq37ecDEahcAnbeVCYOC1Rwqd3r2/Ig2olyCO4D510KcVdZ+hs7Z7
KuzA8xicOy5+GxsNqyq23GZk/ZwPoJKlDoSepzx/AzvQF2r0nVZ8irQmFJcwc2AJ
6/O8n/2cMbT//miEQBhmOPuokUPbsjN6f4kUZ+owcN3WKzk5M85YtsUjrFy0h+KQ
uPdogWTSpRmf6v5QQ+ulRWuGZWP5jYorhJChAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU6Gg97Q0fW4ZRofXYnE6WcSq4+nQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZHZzk3UTBmVzRaUm9mWFlu
RTZXY1NxNC1uUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq
AUgwDQYJKoZIhvcNAQELBQADggEBAKE/VLeSnMuMLpRSo7QRKiUEedpZ+PZ2Jrel
XUd9L6Hd9qqQM7hHwwbWfoYyPxRT2hffI9Nh61Uou1qdwf5B5mIQ3mh1VkEREFUd
HOA67xandmQHb9BJAZ2n70aiueOK+UGp3IkLYWYg02JWwocyzFSDp6s7J2JfnpI1
9nFB3GQtC/6YTd471VONcWgVIuDoN31NiyeSAj34SQE8UwJ8wPvbrTI8JZ/UD3gU
Heg29XxeQaBMtjdRIqiMdfnI7OPqSX9Xy7/LRMh7p1v8pLfdh6vo/G4scdOJ5QHR
ZZ8rXI+cDoguT6/UNBIQQxwM9sEdmqrtoOoP4rV9opNt9I4JTOY=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:24 2024 by rpki-client on console-fra.rpki-client.org