Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa
File: jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa (raw, json)
Hash identifier: 6/IUnm1z2RXBBDoxUH/u87d0A7qwfIMiGYz6tFhwGB8=
Subject key identifier: 8D:DF:46:F1:27:32:63:F6:20:39:A0:D9:1A:CE:23:30:2D:FF:39:CA
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1175
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa
Signing time: Fri 01 Sep 2023 03:14:23 +0000
ROA not before: Fri 01 Sep 2023 03:14:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 16509
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4469 (0x1175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 1 03:14:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8DDF46F1273263F62039A0D91ACE23302DFF39CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:06:47:3a:4b:9a:60:32:30:64:bb:85:04:
a6:bf:1f:54:89:40:b5:b8:62:6c:56:e8:73:f2:f6:
81:1a:d0:b9:5f:dd:50:22:4c:db:cb:bb:a7:0d:81:
16:e7:4d:a8:a1:74:6d:ea:a3:65:2e:cf:d8:98:1d:
49:f9:f2:c7:01:9c:de:05:3e:4d:3f:d7:df:dc:f1:
21:02:53:93:fb:39:81:37:40:39:22:9b:41:20:be:
b8:32:9f:b1:1c:97:dc:c5:f6:6a:0b:9c:f0:03:3f:
cb:0a:3b:88:2b:42:79:74:b0:20:e6:bc:a2:03:23:
37:4e:70:70:f3:40:8c:ad:ef:0e:45:94:41:6d:44:
d8:1b:36:2e:c3:ba:42:08:73:ca:09:06:a6:72:25:
e4:a9:5c:49:db:14:e7:68:d2:cb:a4:68:02:a4:27:
59:bc:cb:d4:58:d6:c4:24:71:a7:fa:28:a8:c3:1f:
23:d9:bb:74:85:9b:ed:07:82:2d:80:94:29:b0:87:
b4:3b:b6:ad:28:c8:b0:7c:15:dd:6f:85:8f:03:bc:
d5:72:73:4a:85:58:3c:88:fa:62:72:ac:3f:e0:80:
0d:83:27:8c:ee:d7:b7:a4:50:56:97:7b:ba:89:d0:
16:b7:16:76:e2:6a:74:77:c0:40:07:d5:c9:52:43:
ad:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DF:46:F1:27:32:63:F6:20:39:A0:D9:1A:CE:23:30:2D:FF:39:CA
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
6f:9a:aa:38:cc:67:60:fd:75:9b:38:55:61:fc:54:ae:9b:96:
02:ce:03:0e:74:b9:77:5f:b0:a9:bb:0f:aa:fd:1f:81:7c:d8:
ec:a7:7e:b8:d3:c1:ae:6f:ab:c1:7a:2c:b2:2b:a7:98:44:5e:
b2:7d:7f:48:50:d5:67:f6:e9:f3:e6:0c:24:09:7a:c8:f0:e4:
a9:b5:ed:b8:60:3c:d2:a8:0d:28:e0:0f:81:0d:14:da:e8:e8:
72:91:91:22:03:ba:55:a5:cb:de:04:0d:74:b9:7c:b3:32:37:
95:69:27:a9:8a:42:a2:46:1a:6c:e7:61:9e:9e:d6:ed:a7:c0:
30:06:ab:c9:17:e0:ff:4f:27:23:8f:36:e3:f1:39:6d:a6:53:
a7:43:4c:4a:10:40:3d:b8:3e:31:70:88:f5:f1:d7:5c:37:89:
05:13:8d:84:05:1e:1e:30:08:56:8f:ca:0c:dd:48:aa:a0:70:
3d:c1:c0:9e:88:c5:f9:92:16:7a:35:56:ae:a4:ce:53:6e:4b:
c5:ad:3e:23:0b:04:18:4e:97:fc:ab:13:f1:00:09:7e:78:59:
38:9f:b9:da:1a:84:a7:4e:f0:7e:4e:29:3f:de:bf:40:1d:25:
3e:2b:09:e6:d3:78:28:29:c6:54:1d:aa:57:36:d6:46:6b:d3:
78:e1:78:a8
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICEXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzA5MDEw
MzE0MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhEREY0NkYxMjczMjYz
RjYyMDM5QTBEOTFBQ0UyMzMwMkRGRjM5Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuXwZHOkuaYDIwZLuFBKa/H1SJQLW4YmxW6HPy9oEa0Llf3VAi
TNvLu6cNgRbnTaihdG3qo2Uuz9iYHUn58scBnN4FPk0/19/c8SECU5P7OYE3QDki
m0Egvrgyn7Ecl9zF9moLnPADP8sKO4grQnl0sCDmvKIDIzdOcHDzQIyt7w5FlEFt
RNgbNi7DukIIc8oJBqZyJeSpXEnbFOdo0sukaAKkJ1m8y9RY1sQkcaf6KKjDHyPZ
u3SFm+0Hgi2AlCmwh7Q7tq0oyLB8Fd1vhY8DvNVyc0qFWDyI+mJyrD/ggA2DJ4zu
17ekUFaXe7qJ0Ba3FnbianR3wEAH1clSQ60RAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUjd9G8ScyY/YgOaDZGs4jMC3/OcowHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9qZDlHOFNjeVlfWWdPYURaR3M0
ak1DM19PY28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
wQAAMA0GCSqGSIb3DQEBCwUAA4IBAQBvmqo4zGdg/XWbOFVh/FSum5YCzgMOdLl3
X7Cpuw+q/R+BfNjsp36408Gub6vBeiyyK6eYRF6yfX9IUNVn9unz5gwkCXrI8OSp
te24YDzSqA0o4A+BDRTa6OhykZEiA7pVpcveBA10uXyzMjeVaSepikKiRhps52Ge
ntbtp8AwBqvJF+D/Tycjjzbj8TltplOnQ0xKEEA9uD4xcIj18ddcN4kFE42EBR4e
MAhWj8oM3UiqoHA9wcCeiMX5khZ6NVaupM5TbkvFrT4jCwQYTpf8qxPxAAl+eFk4
n7naGoSnTvB+Tik/3r9AHSU+Kwnm03goKcZUHapXNtZGa9N44Xio
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:27 2024 by rpki-client on console-fra.rpki-client.org