Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/bneXsa_NpvVoz88v_mV7vb_5SEU.roa
File: bneXsa_NpvVoz88v_mV7vb_5SEU.roa (raw, json)
Hash identifier: rtyZ/WW6nLUfmjvxDzcbkGju36c8ypobXAAjqRDPOJQ=
Subject key identifier: 6E:77:97:B1:AF:CD:A6:F5:68:CF:CF:2F:FE:65:7B:BD:BF:F9:48:45
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 0B4F
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/bneXsa_NpvVoz88v_mV7vb_5SEU.roa
Signing time: Fri 01 Sep 2023 10:14:09 +0000
ROA not before: Fri 01 Sep 2023 10:14:09 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38851
IP address blocks: 103.229.100.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2895 (0xb4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 1 10:14:09 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6E7797B1AFCDA6F568CFCF2FFE657BBDBFF94845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:58:3a:b1:7f:c4:44:b6:1b:5d:68:27:92:3c:
2e:10:71:74:5c:41:e4:a7:38:1e:3c:21:32:d5:70:
82:fb:a7:a0:83:eb:bf:65:d4:cb:8a:14:2f:99:61:
64:26:bd:da:b6:1a:e1:59:9d:04:26:c3:47:8d:9a:
41:7e:ef:b2:7d:d0:b3:13:e5:2f:f3:c2:a5:ba:83:
e4:52:50:e2:2c:7a:17:ba:7c:8b:7c:05:39:73:a6:
90:02:4a:3d:f3:f2:09:9c:db:1a:73:dd:68:ea:0c:
47:88:3f:e0:8a:7f:f6:60:c5:60:d1:4d:a3:65:a5:
f7:a5:aa:70:7a:30:b9:ca:da:8a:5a:d5:b6:f9:83:
c7:43:20:47:ad:ad:0b:4c:38:65:63:07:f9:c3:31:
98:4f:57:c6:4f:3b:8f:ff:47:ea:8c:af:c7:2e:12:
fa:92:c4:7c:ec:d2:4a:4a:c8:87:41:7f:71:b7:02:
f3:68:da:5b:70:6f:e6:29:5f:da:33:61:1f:96:c8:
51:d6:0e:d4:54:b8:39:f9:b6:52:08:e2:ab:aa:86:
23:5e:77:74:ee:b7:09:74:6e:b7:e2:b4:02:90:0c:
8f:87:34:c9:fa:bc:6b:57:97:a6:c6:bd:40:01:32:
ad:bc:51:6d:ee:24:d4:da:3c:8c:7a:91:f3:7d:0f:
36:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:77:97:B1:AF:CD:A6:F5:68:CF:CF:2F:FE:65:7B:BD:BF:F9:48:45
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/bneXsa_NpvVoz88v_mV7vb_5SEU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:66:2c:8c:93:91:f8:bb:ec:71:5f:5c:76:32:49:fe:8f:16:
9d:d8:83:5d:32:04:28:07:f6:1a:0c:c5:bf:dd:6e:31:c5:64:
52:b8:49:a0:5f:eb:62:fe:32:a5:79:32:0b:fd:c4:7c:4d:72:
c9:14:8f:d2:fd:a9:f0:4d:39:0f:1b:36:5e:ff:0e:a8:98:fa:
63:29:1a:de:cd:c2:8c:ed:f8:fc:a9:ed:ae:9a:9f:83:83:cf:
f3:9b:c3:a6:a1:39:a1:b9:26:be:ae:03:95:9e:06:ca:24:ac:
ee:d5:91:57:b7:ef:9b:40:2a:3d:32:8c:61:02:ea:81:57:f7:
80:6f:c6:95:4f:e0:69:21:c8:4e:5e:f1:5a:42:a7:ee:a4:ae:
a9:da:ba:fb:4e:5c:1d:dc:71:6d:2e:1f:01:c0:f4:29:72:2b:
6c:f9:d5:75:8e:b0:17:a5:bf:e6:c9:ab:27:d2:8e:3c:85:65:
e5:0c:af:31:95:34:20:78:82:a5:1c:aa:8f:a4:68:74:13:5c:
99:ca:52:84:67:7f:f0:2e:ac:a9:47:a4:95:f0:be:33:6b:a4:
65:66:2c:c1:0a:9a:8e:b1:bf:bc:ac:87:05:ff:b0:d9:47:a8:
8b:7f:38:4b:e6:da:37:34:e9:49:65:8f:96:81:e7:6b:2c:37:
37:67:ff:ff
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICC08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD
N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMzA5MDEx
MDE0MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZFNzc5N0IxQUZDREE2
RjU2OENGQ0YyRkZFNjU3QkJEQkZGOTQ4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4WDqxf8REthtdaCeSPC4QcXRcQeSnOB48ITLVcIL7p6CD679l
1MuKFC+ZYWQmvdq2GuFZnQQmw0eNmkF+77J90LMT5S/zwqW6g+RSUOIsehe6fIt8
BTlzppACSj3z8gmc2xpz3WjqDEeIP+CKf/ZgxWDRTaNlpfelqnB6MLnK2opa1bb5
g8dDIEetrQtMOGVjB/nDMZhPV8ZPO4//R+qMr8cuEvqSxHzs0kpKyIdBf3G3AvNo
2ltwb+YpX9ozYR+WyFHWDtRUuDn5tlII4quqhiNed3Tutwl0brfitAKQDI+HNMn6
vGtXl6bGvUABMq28UW3uJNTaPIx6kfN9DzZvAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUbneXsa/NpvVoz88v/mV7vb/5SEUwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7
t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz
ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2JuZVhzYV9OcHZWb3o4OHZfbVY3dmJf
NVNFVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn5WQwDQYJ
KoZIhvcNAQELBQADggEBACpmLIyTkfi77HFfXHYySf6PFp3Yg10yBCgH9hoMxb/d
bjHFZFK4SaBf62L+MqV5Mgv9xHxNcskUj9L9qfBNOQ8bNl7/DqiY+mMpGt7Nwozt
+Pyp7a6an4ODz/Obw6ahOaG5Jr6uA5WeBsokrO7VkVe375tAKj0yjGEC6oFX94Bv
xpVP4GkhyE5e8VpCp+6krqnauvtOXB3ccW0uHwHA9ClyK2z51XWOsBelv+bJqyfS
jjyFZeUMrzGVNCB4gqUcqo+kaHQTXJnKUoRnf/AurKlHpJXwvjNrpGVmLMEKmo6x
v7yshwX/sNlHqIt/OEvm2jc06Ullj5aB52ssNzdn//8=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:20 2024 by rpki-client on console-ams.rpki-client.org