Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/qDEDnnuwVa2b_Rsd8GJ0hyrDVCg.roa
File: qDEDnnuwVa2b_Rsd8GJ0hyrDVCg.roa (raw, json)
Hash identifier: FVot6SR7Qi1zTiAtzDa77kZPXY/r6qxJdggZJsmXoOE=
Subject key identifier: A8:31:03:9E:7B:B0:55:AD:9B:FD:1B:1D:F0:62:74:87:2A:C3:54:28
Certificate issuer: /CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8
Certificate serial: 0AD1
Authority key identifier: 33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/qDEDnnuwVa2b_Rsd8GJ0hyrDVCg.roa
Signing time: Fri 01 Sep 2023 10:18:59 +0000
ROA not before: Fri 01 Sep 2023 10:18:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131597
IP address blocks: 45.113.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2769 (0xad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8
Validity
Not Before: Sep 1 10:18:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A831039E7BB055AD9BFD1B1DF06274872AC35428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:05:a4:9e:57:be:7f:08:4b:62:11:9f:58:b1:
1a:3f:e8:21:ab:a4:e9:b1:8d:05:1c:49:bf:04:65:
10:ce:7d:da:87:a6:28:57:6a:24:8d:bc:7a:be:5e:
ab:ef:9d:22:55:2c:29:7a:9a:83:2a:93:90:51:ae:
10:76:50:c5:e1:3b:21:45:75:c7:7c:66:94:58:79:
5c:ce:39:e1:f9:b1:84:50:15:c5:36:46:92:56:bc:
71:2c:6d:7c:78:a2:e0:4b:43:66:7b:6e:b0:45:cf:
27:1c:69:b1:cf:33:8d:3f:4e:28:d4:8a:03:2c:1a:
02:d4:44:c3:f6:fb:85:a0:f6:9b:94:79:99:d9:fc:
29:cc:ce:e0:bf:6a:08:8c:6a:a4:f6:6a:2b:ae:a2:
97:df:29:59:99:18:3f:f2:83:e6:e3:98:44:b5:6b:
51:a2:1a:8d:da:54:29:87:eb:f2:db:7f:b0:8e:cd:
56:cd:3e:a8:c4:5a:82:1b:36:0e:c2:13:7a:71:88:
f1:7c:ea:65:26:ba:ea:a0:d8:3b:b9:95:bf:3f:10:
93:84:ca:66:ba:64:35:bc:85:3d:55:19:7f:9d:11:
f0:4c:11:94:b5:b2:58:80:35:6d:33:ee:60:f7:b1:
a3:b9:25:1b:18:20:b0:5b:53:5f:b0:dc:5f:38:5a:
61:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:31:03:9E:7B:B0:55:AD:9B:FD:1B:1D:F0:62:74:87:2A:C3:54:28
X509v3 Authority Key Identifier:
keyid:33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/M6gOdbovKw_UMSGJp-Q-Q1Po06g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/qDEDnnuwVa2b_Rsd8GJ0hyrDVCg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.113.156.0/22
Signature Algorithm: sha256WithRSAEncryption
70:48:ce:75:c7:9a:e9:68:7d:d4:3b:99:a7:44:db:ab:8b:56:
a6:34:dd:69:ed:49:76:54:e7:b4:5b:ed:6b:4a:6e:42:19:69:
98:ba:77:8b:15:43:f8:0c:92:01:9c:41:d8:ec:38:59:70:f5:
55:62:13:ee:ea:88:57:a4:e1:5b:56:bb:98:32:bd:e1:f6:9b:
32:7f:e2:ee:67:1c:8a:e4:15:29:6f:7b:70:31:e6:96:51:9b:
9f:37:b1:13:3f:78:13:7e:57:ec:71:bf:76:5b:9d:de:1e:6a:
90:1e:d6:ca:1b:27:db:9c:20:38:b1:91:4c:4c:e0:04:57:f2:
1f:0f:86:cb:04:83:ee:a5:9e:38:5c:c7:e6:bf:c8:91:25:a4:
5e:c5:0f:e3:10:b4:51:e0:2c:c5:e3:22:13:6b:07:3f:a5:f7:
28:ba:57:3c:fa:09:8d:92:1d:d2:06:99:c5:94:b7:d1:6a:e8:
31:10:51:31:7d:cb:cb:6a:88:e7:ad:59:8e:73:80:92:87:95:
da:4d:16:b5:1c:61:9b:89:26:f2:31:29:88:05:c0:55:90:0b:
42:eb:b3:8a:f2:13:b1:23:11:4d:0d:7f:88:13:be:b1:6d:c2:
7b:a0:9d:14:0e:fe:32:c4:e7:7b:97:df:43:2b:4a:0a:9a:98:
4e:bf:23:a0
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzNB
ODBFNzVCQTJGMkIwRkQ0MzEyMTg5QTdFNDNFNDM1M0U4RDNBODAeFw0yMzA5MDEx
MDE4NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE4MzEwMzlFN0JCMDU1
QUQ5QkZEMUIxREYwNjI3NDg3MkFDMzU0MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkBaSeV75/CEtiEZ9YsRo/6CGrpOmxjQUcSb8EZRDOfdqHpihX
aiSNvHq+XqvvnSJVLCl6moMqk5BRrhB2UMXhOyFFdcd8ZpRYeVzOOeH5sYRQFcU2
RpJWvHEsbXx4ouBLQ2Z7brBFzyccabHPM40/TijUigMsGgLURMP2+4Wg9puUeZnZ
/CnMzuC/agiMaqT2aiuuopffKVmZGD/yg+bjmES1a1GiGo3aVCmH6/Lbf7COzVbN
PqjEWoIbNg7CE3pxiPF86mUmuuqg2Du5lb8/EJOEyma6ZDW8hT1VGX+dEfBMEZS1
sliANW0z7mD3saO5JRsYILBbU1+w3F84WmH/AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUqDEDnnuwVa2b/Rsd8GJ0hyrDVCgwHwYDVR0jBBgwFoAUM6gOdbovKw/UMSGJ
p+Q+Q1Po06gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JT05J
U01FL002Z09kYm92S3dfVU1TR0pwLVEtUTFQbzA2Zy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvTTZnT2Rib3ZLd19VTVNHSnAtUS1RMVBvMDZnLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JT05JU01FL3FERURubnV3VmEy
Yl9Sc2Q4R0owaHlyRFZDZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAItcZwwDQYJKoZIhvcNAQELBQADggEBAHBIznXHmulofdQ7madE26uLVqY0
3WntSXZU57Rb7WtKbkIZaZi6d4sVQ/gMkgGcQdjsOFlw9VViE+7qiFek4VtWu5gy
veH2mzJ/4u5nHIrkFSlve3Ax5pZRm583sRM/eBN+V+xxv3Zbnd4eapAe1sobJ9uc
IDixkUxM4ARX8h8PhssEg+6lnjhcx+a/yJElpF7FD+MQtFHgLMXjIhNrBz+l9yi6
Vzz6CY2SHdIGmcWUt9Fq6DEQUTF9y8tqiOetWY5zgJKHldpNFrUcYZuJJvIxKYgF
wFWQC0Lrs4ryE7EjEU0Nf4gTvrFtwnugnRQO/jLE53uX30MrSgqamE6/I6A=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org