Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEZkM3vUj-KucNUZ-HwWbKs265k.roa
File: wEZkM3vUj-KucNUZ-HwWbKs265k.roa (raw, json)
Hash identifier: soIpcJSuCylHotSuD66cpG3Cvd0sNOGj6kZTlwMlCyM=
Subject key identifier: C0:46:64:33:7B:D4:8F:E2:AE:70:D5:19:F8:7C:16:6C:AB:36:EB:99
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 28E6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEZkM3vUj-KucNUZ-HwWbKs265k.roa
Signing time: Fri 01 Sep 2023 10:05:53 +0000
ROA not before: Fri 01 Sep 2023 10:05:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38841
IP address blocks: 180.176.248.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10470 (0x28e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 1 10:05:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C04664337BD48FE2AE70D519F87C166CAB36EB99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:77:b3:1e:f7:76:23:9a:f0:d3:24:29:d8:0d:
cc:87:27:2e:ea:31:1f:09:b9:cb:d8:1f:6d:84:a3:
85:cf:e6:1b:9d:56:cc:79:2d:2e:d0:73:5a:25:3c:
9c:3c:f8:f6:ff:ae:08:06:27:c8:99:49:8f:b9:d7:
8d:e0:a9:5f:ac:02:e2:d4:65:2c:fc:3b:44:62:83:
dc:46:6e:f3:db:99:5b:fe:8f:3d:d8:a5:bf:64:1e:
22:93:44:b2:7e:13:b8:16:d0:42:93:da:c7:0c:f2:
e3:46:46:92:11:81:88:60:3f:7e:63:0f:41:bf:20:
5f:fa:06:ea:7e:ed:72:55:43:9d:c3:86:e8:bb:dd:
bd:7a:4e:59:de:6e:d3:fb:72:29:88:bb:18:40:5c:
88:8c:0b:84:84:04:d0:54:c2:b6:19:f0:17:bc:4e:
e1:c8:4a:50:ef:39:99:bc:00:9f:83:53:2c:d6:7e:
c2:44:fb:a2:bc:6e:37:65:e9:71:05:64:9f:cd:5b:
e4:7c:5e:c2:dc:c8:57:81:a0:04:ea:92:77:a7:79:
ea:01:ad:f9:bc:09:b6:48:dc:4f:53:10:05:28:38:
3b:72:a8:09:24:9c:ea:ef:ed:43:80:55:20:60:34:
68:48:61:5d:b3:a2:2f:6f:9c:ab:f4:7d:9f:55:f1:
43:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:46:64:33:7B:D4:8F:E2:AE:70:D5:19:F8:7C:16:6C:AB:36:EB:99
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEZkM3vUj-KucNUZ-HwWbKs265k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.248.0/21
Signature Algorithm: sha256WithRSAEncryption
b1:4d:ad:a9:c9:21:a5:ec:41:2f:e7:d6:f8:94:a1:0b:fe:c3:
fd:46:97:48:7b:f5:94:d1:ce:57:d1:5e:a7:f6:73:ba:60:18:
8f:6e:b1:55:a8:29:22:d1:06:38:46:99:49:1a:3d:00:36:8f:
85:c3:fd:d1:89:84:f8:d8:e5:b8:e9:33:bd:d7:fd:08:9a:1a:
01:2f:93:26:d9:cf:33:fb:b8:b8:0e:66:58:39:66:bf:fa:2b:
55:db:90:a1:bb:aa:05:2f:15:d0:d4:f2:96:71:a7:ac:a4:3b:
a9:35:c1:87:72:36:24:ac:52:b1:f6:45:b4:2f:c6:82:0b:29:
e0:4b:00:2e:8a:3f:60:92:73:63:bd:7d:19:a4:40:cc:ff:ba:
ad:04:22:f8:0e:f6:94:05:12:9d:30:29:e6:3a:79:b1:25:0b:
f2:9b:73:90:8b:71:b4:c8:9e:91:b0:57:70:a0:42:37:f6:e0:
57:4c:13:de:f9:d3:d5:2f:9d:f2:b9:51:17:8b:cd:43:1d:7e:
b7:eb:b2:b5:ee:56:21:0a:4e:b4:3c:9b:0f:80:6c:ee:ae:15:
78:6e:97:20:e6:88:01:be:5f:e0:a0:57:5f:55:c2:31:34:3b:
e4:2e:34:e0:6d:f3:82:0a:60:a5:a0:4f:11:8f:cd:ff:1a:07:
14:96:8e:9f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICKOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx
MDA1NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMwNDY2NDMzN0JENDhG
RTJBRTcwRDUxOUY4N0MxNjZDQUIzNkVCOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSd7Me93YjmvDTJCnYDcyHJy7qMR8JucvYH22Eo4XP5hudVsx5
LS7Qc1olPJw8+Pb/rggGJ8iZSY+5143gqV+sAuLUZSz8O0Rig9xGbvPbmVv+jz3Y
pb9kHiKTRLJ+E7gW0EKT2scM8uNGRpIRgYhgP35jD0G/IF/6Bup+7XJVQ53Dhui7
3b16TlnebtP7cimIuxhAXIiMC4SEBNBUwrYZ8Be8TuHISlDvOZm8AJ+DUyzWfsJE
+6K8bjdl6XEFZJ/NW+R8XsLcyFeBoATqkneneeoBrfm8CbZI3E9TEAUoODtyqAkk
nOrv7UOAVSBgNGhIYV2zoi9vnKv0fZ9V8UODAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUwEZkM3vUj+KucNUZ+HwWbKs265kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3dFWmtNM3ZVai1LdWNOVVot
SHdXYktzMjY1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
sPgwDQYJKoZIhvcNAQELBQADggEBALFNranJIaXsQS/n1viUoQv+w/1Gl0h79ZTR
zlfRXqf2c7pgGI9usVWoKSLRBjhGmUkaPQA2j4XD/dGJhPjY5bjpM73X/QiaGgEv
kybZzzP7uLgOZlg5Zr/6K1XbkKG7qgUvFdDU8pZxp6ykO6k1wYdyNiSsUrH2RbQv
xoILKeBLAC6KP2CSc2O9fRmkQMz/uq0EIvgO9pQFEp0wKeY6ebElC/Kbc5CLcbTI
npGwV3CgQjf24FdME97509UvnfK5UReLzUMdfrfrsrXuViEKTrQ8mw+AbO6uFXhu
lyDmiAG+X+CgV19VwjE0O+QuNOBt84IKYKWgTxGPzf8aBxSWjp8=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org