Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bEAzSWrvTNDEvqO8YnLjAlK5q8M.roa
File: bEAzSWrvTNDEvqO8YnLjAlK5q8M.roa (raw, json)
Hash identifier: XqBHz0oYQ61imEI6Wi1Mo4Z+JVoQmctOyr/JdqbEp/U=
Subject key identifier: 6C:40:33:49:6A:EF:4C:D0:C4:BE:A3:BC:62:72:E3:02:52:B9:AB:C3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2A0B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bEAzSWrvTNDEvqO8YnLjAlK5q8M.roa
Signing time: Fri 01 Sep 2023 10:07:25 +0000
ROA not before: Fri 01 Sep 2023 10:07:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 106.1.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10763 (0x2a0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:07:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6C4033496AEF4CD0C4BEA3BC6272E30252B9ABC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:fb:f1:fa:41:80:3d:d7:84:fc:77:0a:65:
b9:94:61:7e:ca:c3:53:ab:bd:7d:c3:98:cf:2f:4e:
bc:cc:d8:da:55:e1:74:7a:4b:09:95:c9:84:65:67:
61:cb:b1:14:0d:31:ce:ad:5d:b8:48:70:98:74:d7:
05:de:5a:8e:2b:74:ef:c3:13:92:f7:63:18:63:f0:
18:cf:d1:2d:c0:10:d2:b7:01:59:6d:d1:74:fa:d0:
0f:aa:d4:df:75:a7:93:c5:34:5a:f5:01:c0:6f:c2:
83:f4:3e:21:3d:a7:67:fe:6c:b3:ca:72:4b:67:b2:
8b:e2:9a:04:49:0e:07:d6:fd:16:0a:50:0c:6b:12:
60:1c:62:8c:cd:76:ef:b5:67:e4:b9:ad:29:97:4b:
b7:0a:77:f0:22:4d:37:e6:77:cd:25:f7:9c:65:63:
e0:cd:46:3b:d0:c6:be:77:93:b2:32:7d:6e:c6:a7:
57:3e:0a:90:69:2c:4e:8a:94:ec:e8:59:7e:69:97:
b2:2b:a0:15:04:ee:98:84:72:8b:b2:87:a3:07:13:
38:ed:ec:be:42:62:95:bf:0b:3f:83:d5:8a:9c:b6:
74:79:55:ac:52:d5:8c:e5:b6:7b:3c:56:42:11:0b:
8d:61:51:7f:df:dc:bb:87:02:64:b4:cf:33:9c:76:
65:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:40:33:49:6A:EF:4C:D0:C4:BE:A3:BC:62:72:E3:02:52:B9:AB:C3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bEAzSWrvTNDEvqO8YnLjAlK5q8M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.172.0/22
Signature Algorithm: sha256WithRSAEncryption
89:14:f8:5f:f5:49:62:a6:6f:48:b5:18:1d:5c:b5:b4:e6:82:
bd:62:55:15:3b:1c:2d:5e:65:03:74:12:ae:d2:b7:6f:63:fd:
71:86:8f:bd:0d:ee:35:18:81:74:0c:65:02:9c:bd:22:9f:f7:
b0:a3:3f:1b:b2:12:60:2c:e7:e0:88:b9:11:57:e3:7f:b4:85:
fc:11:7a:2d:82:24:df:7a:2e:53:f0:02:72:7c:a9:70:9d:0d:
47:95:0c:23:d0:55:00:cd:47:c9:62:e2:d0:b8:00:df:56:f7:
46:74:f7:d7:91:d6:c3:21:26:5c:9e:2f:8b:82:2a:e1:12:62:
97:19:ac:65:e7:ae:e3:9b:6d:10:b2:30:9f:d0:96:ba:13:d6:
8c:87:d5:7a:53:d9:4a:eb:80:ab:2c:05:e3:7f:8b:78:4f:ba:
c9:a1:0e:59:de:0e:59:b3:26:0f:d5:ea:de:c0:80:4f:02:3a:
cf:0c:8d:5a:23:de:b0:0f:54:21:e1:22:11:77:bd:c0:0c:42:
83:ef:7c:bc:98:97:5c:9d:b6:f4:1a:37:b9:f3:4f:73:56:88:
cd:22:29:6c:92:3a:ce:a0:db:b1:48:69:7d:a8:7e:32:36:13:
ed:c7:cd:a0:f7:88:41:e5:31:05:e7:3a:a3:6b:e9:63:03:e8:
56:27:35:76
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA3MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZDNDAzMzQ5NkFFRjRD
RDBDNEJFQTNCQzYyNzJFMzAyNTJCOUFCQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyWfvx+kGAPdeE/HcKZbmUYX7Kw1OrvX3DmM8vTrzM2NpV4XR6
SwmVyYRlZ2HLsRQNMc6tXbhIcJh01wXeWo4rdO/DE5L3Yxhj8BjP0S3AENK3AVlt
0XT60A+q1N91p5PFNFr1AcBvwoP0PiE9p2f+bLPKcktnsovimgRJDgfW/RYKUAxr
EmAcYozNdu+1Z+S5rSmXS7cKd/AiTTfmd80l95xlY+DNRjvQxr53k7IyfW7Gp1c+
CpBpLE6KlOzoWX5pl7IroBUE7piEcouyh6MHEzjt7L5CYpW/Cz+D1YqctnR5VaxS
1Yzltns8VkIRC41hUX/f3LuHAmS0zzOcdmUJAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUbEAzSWrvTNDEvqO8YnLjAlK5q8MwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JFQXpTV3J2VE5ERXZxTzhZ
bkxqQWxLNXE4TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
AawwDQYJKoZIhvcNAQELBQADggEBAIkU+F/1SWKmb0i1GB1ctbTmgr1iVRU7HC1e
ZQN0Eq7St29j/XGGj70N7jUYgXQMZQKcvSKf97CjPxuyEmAs5+CIuRFX43+0hfwR
ei2CJN96LlPwAnJ8qXCdDUeVDCPQVQDNR8li4tC4AN9W90Z099eR1sMhJlyeL4uC
KuESYpcZrGXnruObbRCyMJ/QlroT1oyH1XpT2UrrgKssBeN/i3hPusmhDlneDlmz
Jg/V6t7AgE8COs8MjVoj3rAPVCHhIhF3vcAMQoPvfLyYl1ydtvQaN7nzT3NWiM0i
KWySOs6g27FIaX2ofjI2E+3HzaD3iEHlMQXnOqNr6WMD6FYnNXY=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:25 2024 by rpki-client on console-fra.rpki-client.org