Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/T81D2fIKorIXn65cIThLq_9Y09M.roa
File: T81D2fIKorIXn65cIThLq_9Y09M.roa (raw, json)
Hash identifier: 7ceNEGFLH7xf13orLn1dTRUeNpW+b1TCkz2CbQmRlmY=
Subject key identifier: 4F:CD:43:D9:F2:0A:A2:B2:17:9F:AE:5C:21:38:4B:AB:FF:58:D3:D3
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0B5B
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/T81D2fIKorIXn65cIThLq_9Y09M.roa
Signing time: Tue 03 Oct 2023 07:10:05 +0000
ROA not before: Tue 03 Oct 2023 07:10:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131607
IP address blocks: 103.130.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2907 (0xb5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Oct 3 07:10:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4FCD43D9F20AA2B2179FAE5C21384BABFF58D3D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:45:a0:5d:43:f2:46:20:d3:45:0c:4e:cd:94:
eb:aa:25:06:64:99:7e:52:26:d9:84:12:e9:ba:f6:
61:82:1d:d2:0e:f8:df:5f:ab:e7:08:b5:0f:3e:3d:
6d:79:a2:bf:45:5b:2d:3a:8b:ce:34:f5:55:92:4d:
28:3b:46:b7:30:d2:c1:d8:a5:e9:8f:8c:8e:e0:b9:
fd:69:df:3a:e0:f6:b5:70:c6:53:13:6f:54:56:04:
3e:9c:45:63:29:19:dc:1f:49:bf:17:fc:60:51:a3:
aa:92:e5:ec:8f:3a:11:f7:02:d3:08:4a:c3:8f:e9:
ae:4e:05:90:42:ec:77:5e:4e:81:8e:c8:68:17:1a:
df:c5:5c:aa:a8:1e:29:2f:87:8f:cb:e7:9d:7f:6d:
66:ee:c1:7a:44:c1:63:24:64:4f:3a:67:74:0c:ee:
9d:81:ea:fd:02:64:5c:1a:10:04:02:61:3e:81:d4:
32:7e:9e:35:e5:fb:c1:e6:71:bb:cc:6b:8a:0a:65:
9c:ae:40:01:14:23:54:a0:9c:b0:b4:27:99:71:80:
42:a4:38:c3:4a:20:67:50:30:96:31:1c:19:46:c1:
c1:4b:8e:89:cc:51:0b:57:1f:47:4a:ac:88:b1:42:
4c:d8:54:ff:4e:af:15:ac:38:f7:9e:bf:af:50:66:
fb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:CD:43:D9:F2:0A:A2:B2:17:9F:AE:5C:21:38:4B:AB:FF:58:D3:D3
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/T81D2fIKorIXn65cIThLq_9Y09M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.0.0/22
Signature Algorithm: sha256WithRSAEncryption
76:1d:b8:cb:a3:90:43:42:bc:e0:31:b3:38:f1:21:6f:db:f1:
cd:4c:f2:e1:fd:bb:22:f2:c6:16:34:10:3e:b3:bc:93:3d:ea:
89:68:d0:35:80:d9:f1:d1:6e:5e:3a:af:7a:8a:f7:c2:99:a2:
0b:7f:8f:a4:26:52:e2:4e:c3:9e:1d:10:15:af:6a:1c:cd:e1:
e3:20:be:e6:b3:5c:b6:33:4e:31:d6:3f:40:ad:fe:bc:f2:f1:
48:69:5c:55:d0:b0:3f:99:41:07:3c:4b:3c:03:6a:a2:b7:c6:
89:55:26:c2:1f:9c:b5:0c:72:a5:bc:85:18:45:de:a3:63:4b:
3b:7a:5f:9b:70:45:14:6b:89:9b:99:d4:e1:10:2d:d2:16:98:
0f:34:98:67:fe:0c:73:28:3d:88:73:12:0f:84:e8:ea:87:8f:
25:a0:f2:ea:af:11:48:b7:a4:5c:3b:df:85:87:a9:cb:54:1f:
96:cc:16:e2:8f:e0:2a:bc:cb:8b:9d:fa:a0:71:03:aa:09:b8:
fe:20:97:19:0c:98:a8:fe:04:db:a5:c0:be:90:13:a4:81:33:
37:03:05:0f:d4:d3:d1:a9:a3:73:35:90:cd:2a:f5:a7:aa:bf:
46:e6:84:7c:04:91:0a:f1:7c:c3:ce:4e:23:02:83:e8:ae:c2:
d0:ba:6b:65
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw
QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yMzEwMDMw
NzEwMDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRGQ0Q0M0Q5RjIwQUEy
QjIxNzlGQUU1QzIxMzg0QkFCRkY1OEQzRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwRaBdQ/JGINNFDE7NlOuqJQZkmX5SJtmEEum69mGCHdIO+N9f
q+cItQ8+PW15or9FWy06i8409VWSTSg7Rrcw0sHYpemPjI7guf1p3zrg9rVwxlMT
b1RWBD6cRWMpGdwfSb8X/GBRo6qS5eyPOhH3AtMISsOP6a5OBZBC7HdeToGOyGgX
Gt/FXKqoHikvh4/L551/bWbuwXpEwWMkZE86Z3QM7p2B6v0CZFwaEAQCYT6B1DJ+
njXl+8HmcbvMa4oKZZyuQAEUI1SgnLC0J5lxgEKkOMNKIGdQMJYxHBlGwcFLjonM
UQtXH0dKrIixQkzYVP9OrxWsOPeev69QZvv1AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUT81D2fIKorIXn65cIThLq/9Y09MwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz
phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU
RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvVDgxRDJmSUtvcklYbjY1
Y0lUaExxXzlZMDlNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AmeCADANBgkqhkiG9w0BAQsFAAOCAQEAdh24y6OQQ0K84DGzOPEhb9vxzUzy4f27
IvLGFjQQPrO8kz3qiWjQNYDZ8dFuXjqveor3wpmiC3+PpCZS4k7Dnh0QFa9qHM3h
4yC+5rNctjNOMdY/QK3+vPLxSGlcVdCwP5lBBzxLPANqorfGiVUmwh+ctQxypbyF
GEXeo2NLO3pfm3BFFGuJm5nU4RAt0haYDzSYZ/4Mcyg9iHMSD4To6oePJaDy6q8R
SLekXDvfhYepy1QflswW4o/gKrzLi536oHEDqgm4/iCXGQyYqP4E26XAvpATpIEz
NwMFD9TT0amjczWQzSr1p6q/RuaEfASRCvF8w85OIwKD6K7C0LprZQ==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org