Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/-zKFDLZiZOOhcSXb6Rtje-T_7F0.roa
File: -zKFDLZiZOOhcSXb6Rtje-T_7F0.roa (raw, json)
Hash identifier: I2OvlZIQt2bfjdURJ2Ix+F1p5kRpuQJ2vqtxLYgE034=
Subject key identifier: FB:32:85:0C:B6:62:64:E3:A1:71:25:DB:E9:1B:63:7B:E4:FF:EC:5D
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0B67
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/-zKFDLZiZOOhcSXb6Rtje-T_7F0.roa
Signing time: Thu 19 Oct 2023 06:25:06 +0000
ROA not before: Thu 19 Oct 2023 06:25:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17408
IP address blocks: 2403:ad40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2919 (0xb67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Oct 19 06:25:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FB32850CB66264E3A17125DBE91B637BE4FFEC5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:91:d2:ec:88:ad:70:c8:2e:1f:99:bc:bb:86:
33:3f:4e:0a:5a:08:d1:b6:d8:8c:8a:3c:8d:96:36:
41:04:93:1c:b1:29:ec:dd:99:0f:e5:4c:2e:e8:b9:
c2:1b:12:92:0c:d0:1a:4a:74:1b:5f:d9:98:a9:30:
69:ac:2a:b2:68:ed:1d:2d:3b:8d:05:b6:bc:9a:40:
05:92:2c:06:c8:73:86:98:49:d9:2e:63:b4:7a:92:
19:70:fd:b0:cd:7c:c5:f7:41:9f:5d:94:9e:58:4b:
8e:9c:0e:5d:da:e0:9c:27:28:23:1d:96:ae:7a:f9:
6d:c7:4e:b2:79:17:b0:2f:d7:69:7a:cb:36:e1:18:
88:06:df:1a:01:f6:11:4c:d0:81:56:bb:36:91:76:
f6:2d:75:23:95:4a:ab:91:73:b3:f4:6f:f5:1f:94:
0a:4a:78:1c:7c:92:2a:d0:95:34:bc:94:a6:d3:01:
88:c6:1b:e9:5f:19:b6:b2:91:32:52:c4:a8:16:5c:
ad:66:a3:ec:33:66:16:30:e5:b5:7d:15:7e:94:60:
41:36:68:62:42:d2:c2:f3:b1:72:51:b1:fd:6c:f0:
28:8e:13:0f:cd:d5:bc:38:35:ef:7c:60:33:f7:8d:
53:1c:34:ca:07:83:0f:7c:58:e1:80:d1:01:a5:04:
5f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:32:85:0C:B6:62:64:E3:A1:71:25:DB:E9:1B:63:7B:E4:FF:EC:5D
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/-zKFDLZiZOOhcSXb6Rtje-T_7F0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:ad40::/32
Signature Algorithm: sha256WithRSAEncryption
8a:45:42:04:92:c5:49:ec:bc:bc:9d:ed:a9:57:93:d7:6d:e8:
85:42:38:fa:0a:2d:7b:63:dc:81:4d:9f:8d:a5:69:d2:15:0f:
ac:ce:e4:a7:6c:6d:87:3c:c9:7d:2d:f2:87:eb:f1:77:93:54:
a7:47:0b:43:b5:80:dd:68:a5:40:54:2b:91:a3:4e:ec:4b:a8:
5d:70:f9:f5:98:66:1f:6a:6c:a5:68:07:eb:7f:f9:89:bd:6f:
95:0a:95:69:af:ca:ba:9d:68:2b:11:5b:4e:30:ed:6e:18:3e:
a7:76:aa:45:33:18:5e:2e:ce:60:e3:ad:72:73:a5:03:12:1f:
ac:37:18:6b:9a:99:48:08:43:f4:b4:9e:75:28:9e:a7:66:21:
48:71:2b:5c:59:04:b4:d3:fd:5e:92:24:f4:6b:bf:b3:c9:3b:
1e:ed:5d:74:bd:00:b8:ec:60:c8:72:14:1a:57:ce:cd:11:ea:
29:d2:8e:74:bf:e9:00:24:fa:71:f6:59:93:42:96:64:ac:89:
29:71:95:70:09:3c:b7:8d:36:e6:9c:78:f3:44:97:06:4c:ca:
41:fc:c6:c0:ee:0a:54:e9:56:1c:f7:44:84:5f:28:67:82:9b:
f7:f8:cc:ae:4b:52:c2:c0:93:69:24:d1:32:58:02:4e:3e:ae:
29:76:a9:97
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICC2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw
QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yMzEwMTkw
NjI1MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZCMzI4NTBDQjY2MjY0
RTNBMTcxMjVEQkU5MUI2MzdCRTRGRkVDNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqkdLsiK1wyC4fmby7hjM/TgpaCNG22IyKPI2WNkEEkxyxKezd
mQ/lTC7oucIbEpIM0BpKdBtf2ZipMGmsKrJo7R0tO40FtryaQAWSLAbIc4aYSdku
Y7R6khlw/bDNfMX3QZ9dlJ5YS46cDl3a4JwnKCMdlq56+W3HTrJ5F7Av12l6yzbh
GIgG3xoB9hFM0IFWuzaRdvYtdSOVSquRc7P0b/UflApKeBx8kirQlTS8lKbTAYjG
G+lfGbaykTJSxKgWXK1mo+wzZhYw5bV9FX6UYEE2aGJC0sLzsXJRsf1s8CiOEw/N
1bw4Ne98YDP3jVMcNMoHgw98WOGA0QGlBF9fAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU+zKFDLZiZOOhcSXb6Rtje+T/7F0wHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz
phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU
RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvLXpLRkRMWmlaT09oY1NY
YjZSdGplLVRfN0YwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQDrUAwDQYJKoZIhvcNAQELBQADggEBAIpFQgSSxUnsvLyd7alXk9dt6IVCOPoK
LXtj3IFNn42ladIVD6zO5KdsbYc8yX0t8ofr8XeTVKdHC0O1gN1opUBUK5GjTuxL
qF1w+fWYZh9qbKVoB+t/+Ym9b5UKlWmvyrqdaCsRW04w7W4YPqd2qkUzGF4uzmDj
rXJzpQMSH6w3GGuamUgIQ/S0nnUonqdmIUhxK1xZBLTT/V6SJPRrv7PJOx7tXXS9
ALjsYMhyFBpXzs0R6inSjnS/6QAk+nH2WZNClmSsiSlxlXAJPLeNNuacePNElwZM
ykH8xsDuClTpVhz3RIRfKGeCm/f4zK5LUsLAk2kk0TJYAk4+ril2qZc=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:22 2024 by rpki-client on console-ams.rpki-client.org