Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/Ghxf_w2NQ2UzwTPQGWYIajRgY1M.roa
File: Ghxf_w2NQ2UzwTPQGWYIajRgY1M.roa (raw, json)
Hash identifier: lIrOP6SfvLDSOnP7SRzqX3kuWRnpdlcv71u6hVSLP3A=
Subject key identifier: 1A:1C:5F:FF:0D:8D:43:65:33:C1:33:D0:19:66:08:6A:34:60:63:53
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 107D
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/Ghxf_w2NQ2UzwTPQGWYIajRgY1M.roa
Signing time: Thu 15 Sep 2022 02:48:59 +0000
ROA not before: Thu 15 Sep 2022 02:48:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 2403:ac40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4221 (0x107d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Sep 15 02:48:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A1C5FFF0D8D436533C133D01966086A34606353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a2:2f:5d:1b:46:57:9c:1e:68:71:9f:82:b8:
6d:28:9c:7c:0b:ec:c6:fa:5b:05:d3:5a:a6:9c:cc:
bc:65:26:bb:4c:73:12:35:ab:03:b7:6a:aa:61:5e:
fb:4f:e3:79:ac:8d:a8:9b:12:71:ef:21:ea:a6:6f:
99:e0:e6:e6:42:8d:2b:31:8d:a5:60:54:ae:ba:56:
26:f6:60:7a:6d:fa:ce:f7:99:f3:02:0d:4d:72:80:
fb:68:2d:d1:b7:98:e9:80:30:21:36:e5:a9:ea:d0:
cd:fc:34:e3:24:d2:7e:2b:72:e2:56:5d:f7:7c:fe:
d2:98:34:9b:9f:ca:33:51:b8:1e:c7:6b:96:a4:18:
9d:5a:35:8e:6a:f3:71:96:b7:9d:8e:6e:a9:66:9b:
15:a8:28:85:2f:8b:65:5a:8f:4f:e1:e1:a6:7f:0b:
ab:ad:64:1d:82:b1:71:77:99:0f:53:e7:9a:5a:76:
d4:24:60:08:47:92:07:b2:17:87:c5:8a:4a:96:8e:
c6:08:54:33:21:20:1a:f6:75:c6:5d:a6:13:33:ca:
55:83:a3:96:e3:20:ee:52:63:21:5a:8a:95:68:b8:
18:1c:b7:63:66:04:f4:16:e8:2f:f2:6c:1e:aa:0d:
61:cc:e7:35:79:b7:86:d6:2f:36:b6:3c:41:eb:a0:
c8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:1C:5F:FF:0D:8D:43:65:33:C1:33:D0:19:66:08:6A:34:60:63:53
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/Ghxf_w2NQ2UzwTPQGWYIajRgY1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:ac40::/32
Signature Algorithm: sha256WithRSAEncryption
09:13:8f:ad:9b:fd:6c:bb:bf:39:34:3a:73:7c:96:f1:d1:66:
fd:32:f1:1e:f6:cc:e9:a1:2d:07:ce:e1:cf:93:6d:22:80:55:
b1:20:ad:a5:a4:f0:4a:bd:a1:32:6b:3f:0f:58:14:c3:47:f2:
32:f7:8a:61:f8:ca:a1:b4:8e:3b:e1:7e:61:44:b0:af:ec:7e:
2f:40:68:2c:13:cb:76:2f:b1:d5:c2:79:58:f1:83:28:f6:dc:
bf:75:41:72:8f:4c:34:54:78:37:1c:d4:3f:6b:d4:e3:1b:9c:
c1:ee:81:cf:c5:68:9a:4e:57:ba:fc:09:d6:19:2d:cf:6d:bb:
e1:6f:ec:30:0a:50:7a:a6:2e:d3:22:95:01:7e:2b:54:90:c3:
eb:51:7e:35:e9:c1:3d:78:f6:39:8f:bf:95:df:ea:da:3c:10:
7b:3b:c7:bd:ae:ba:63:57:8c:a2:3e:83:39:5b:83:c1:eb:0c:
7d:0b:cf:8a:ae:2b:78:a9:4e:99:4d:78:40:f5:96:e3:4f:eb:
96:8e:6a:84:f9:e8:b7:9b:9a:91:d8:cf:50:0e:42:49:3e:9b:
3c:e1:52:59:00:91:88:b2:b1:15:c1:aa:cd:bd:9f:8a:27:da:
af:23:f2:fb:5f:28:a1:b3:fc:33:fe:d9:5a:f3:d9:41:df:fd:
50:97:68:a2
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICEH0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjNE
NUUwQjM1MjBEQUM0MjY5QUI0QTQyNUIyM0QyMjVDQjI2NEE4ODAeFw0yMjA5MTUw
MjQ4NTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFBMUM1RkZGMEQ4RDQz
NjUzM0MxMzNEMDE5NjYwODZBMzQ2MDYzNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRoi9dG0ZXnB5ocZ+CuG0onHwL7Mb6WwXTWqaczLxlJrtMcxI1
qwO3aqphXvtP43msjaibEnHvIeqmb5ng5uZCjSsxjaVgVK66Vib2YHpt+s73mfMC
DU1ygPtoLdG3mOmAMCE25anq0M38NOMk0n4rcuJWXfd8/tKYNJufyjNRuB7Ha5ak
GJ1aNY5q83GWt52ObqlmmxWoKIUvi2Vaj0/h4aZ/C6utZB2CsXF3mQ9T55padtQk
YAhHkgeyF4fFikqWjsYIVDMhIBr2dcZdphMzylWDo5bjIO5SYyFaipVouBgct2Nm
BPQW6C/ybB6qDWHM5zV5t4bWLza2PEHroMg3AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUGhxf/w2NQ2UzwTPQGWYIajRgY1MwHwYDVR0jBBgwFoAUI9Xgs1INrEJpq0pC
WyPSJcsmSogwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOT0Mv
STlYZ3MxSU5yRUpwcTBwQ1d5UFNKY3NtU29nLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9JOVhnczFJTnJFSnBxMHBDV3lQU0pjc21Tb2cuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05PQy9HaHhmX3cyTlEyVXp3VFBRR1dZ
SWFqUmdZMU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOs
QDANBgkqhkiG9w0BAQsFAAOCAQEACROPrZv9bLu/OTQ6c3yW8dFm/TLxHvbM6aEt
B87hz5NtIoBVsSCtpaTwSr2hMms/D1gUw0fyMveKYfjKobSOO+F+YUSwr+x+L0Bo
LBPLdi+x1cJ5WPGDKPbcv3VBco9MNFR4NxzUP2vU4xucwe6Bz8Vomk5XuvwJ1hkt
z2274W/sMApQeqYu0yKVAX4rVJDD61F+NenBPXj2OY+/ld/q2jwQezvHva66Y1eM
oj6DOVuDwesMfQvPiq4reKlOmU14QPWW40/rlo5qhPnot5uakdjPUA5CST6bPOFS
WQCRiLKxFcGqzb2fiifaryPy+18oobP8M/7ZWvPZQd/9UJdoog==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org