Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VIBO/Z2wP8aIpPHvw4n1PYbQJXq6iZZs.roa
File: Z2wP8aIpPHvw4n1PYbQJXq6iZZs.roa (raw, json)
Hash identifier: L5Z4Q17z6w+yZ9VAywnBoLXQAtp+1SZWlTnahEm8SIw=
Subject key identifier: 67:6C:0F:F1:A2:29:3C:7B:F0:E2:7D:4F:61:B4:09:5E:AE:A2:65:9B
Certificate issuer: /CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Certificate serial: 0B82
Authority key identifier: 52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/Z2wP8aIpPHvw4n1PYbQJXq6iZZs.roa
Signing time: Fri 01 Sep 2023 10:19:14 +0000
ROA not before: Fri 01 Sep 2023 10:19:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24157
IP address blocks: 103.5.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2946 (0xb82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Validity
Not Before: Sep 1 10:19:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=676C0FF1A2293C7BF0E27D4F61B4095EAEA2659B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:9c:a5:39:19:3c:2d:4c:40:70:7a:b2:7c:55:
df:15:3a:c7:81:28:d6:a3:9f:59:16:09:7f:ea:68:
30:fe:79:e9:03:06:e6:2e:5d:39:f3:cd:f4:a3:62:
10:fa:4b:73:41:e8:d2:df:fa:8d:22:bc:9a:94:15:
72:28:f8:04:e4:ec:fb:c6:9d:a3:d3:00:e6:2f:98:
68:07:3d:11:62:64:f9:06:44:e5:24:3a:9a:b1:a7:
13:7b:37:a2:60:45:ba:59:90:f1:fd:c2:5f:9d:b8:
4e:20:fd:48:61:80:02:f3:55:04:7f:96:8d:0b:79:
66:15:09:65:30:23:e9:c3:1a:be:2b:35:95:ea:a3:
0d:36:fb:2a:09:e7:d1:97:1a:c6:f4:89:92:e1:a6:
67:9a:05:03:84:0d:fb:51:4a:a4:e8:56:da:17:8e:
4e:55:85:c2:3d:cb:51:d2:87:52:cc:4c:51:33:61:
56:83:bd:6e:f1:de:ee:91:b7:fd:77:23:8b:41:cd:
3f:f7:a0:53:45:8d:89:da:29:81:94:eb:ea:26:c2:
4b:57:2b:53:14:05:4a:b3:5c:dd:b4:ed:0b:4a:45:
ad:bc:87:d8:9c:7e:9e:07:e6:10:2e:dc:fc:09:d0:
ce:6a:fd:32:05:83:6a:ba:00:33:97:88:90:b4:3a:
84:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6C:0F:F1:A2:29:3C:7B:F0:E2:7D:4F:61:B4:09:5E:AE:A2:65:9B
X509v3 Authority Key Identifier:
keyid:52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/Z2wP8aIpPHvw4n1PYbQJXq6iZZs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.32.0/22
Signature Algorithm: sha256WithRSAEncryption
38:09:e0:17:4f:79:07:64:f3:6f:d2:7a:e6:5e:8b:7f:30:68:
b4:0e:38:43:0b:14:2c:cf:b8:28:72:ae:a5:5c:4a:6e:cf:e4:
2d:f7:a1:74:8d:21:3f:11:73:ae:43:c0:b7:3a:ad:9d:1f:17:
df:59:77:75:4d:8b:28:a1:94:e2:e7:dc:e4:45:cf:f3:5d:a3:
bb:a5:82:71:d4:47:3f:6b:08:20:ce:17:2b:01:71:3d:52:c3:
af:2d:6e:6d:cf:22:5e:a4:ac:4c:15:20:cb:31:fc:6d:c9:82:
4d:64:90:c4:19:61:66:31:e5:29:c5:6f:1b:0b:9d:e9:6c:bc:
73:10:d7:e4:04:fb:d9:20:52:e7:8e:18:61:5c:bb:28:8e:ef:
c4:9e:f4:2e:c5:e7:e5:46:d4:7e:ec:24:14:b3:58:87:3b:53:
c9:e1:9a:a7:72:71:94:b8:82:98:05:06:44:eb:eb:c7:2a:37:
60:f0:c9:a7:c5:0d:e2:88:65:73:10:44:4b:06:8a:7a:27:4d:
5c:1a:9f:0f:fc:73:24:0f:2c:e2:89:c9:aa:74:44:9b:4e:ad:
17:2c:94:35:fc:45:79:5d:ed:fb:a5:98:ce:cf:b8:bf:61:f5:
af:56:c5:9b:b6:1b:15:d2:27:b2:63:97:c7:2f:e4:6c:a5:1d:
f4:ee:d6:44
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICC4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTJB
M0YwMTk4MDA5ODAzQjUxNjVERTVFQ0I2MUZENDUxMjQ2Q0ZBQjAeFw0yMzA5MDEx
MDE5MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY3NkMwRkYxQTIyOTND
N0JGMEUyN0Q0RjYxQjQwOTVFQUVBMjY1OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDynKU5GTwtTEBwerJ8Vd8VOseBKNajn1kWCX/qaDD+eekDBuYu
XTnzzfSjYhD6S3NB6NLf+o0ivJqUFXIo+ATk7PvGnaPTAOYvmGgHPRFiZPkGROUk
OpqxpxN7N6JgRbpZkPH9wl+duE4g/UhhgALzVQR/lo0LeWYVCWUwI+nDGr4rNZXq
ow02+yoJ59GXGsb0iZLhpmeaBQOEDftRSqToVtoXjk5VhcI9y1HSh1LMTFEzYVaD
vW7x3u6Rt/13I4tBzT/3oFNFjYnaKYGU6+omwktXK1MUBUqzXN207QtKRa28h9ic
fp4H5hAu3PwJ0M5q/TIFg2q6ADOXiJC0OoTBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUZ2wP8aIpPHvw4n1PYbQJXq6iZZswHwYDVR0jBBgwFoAUUqPwGYAJgDtRZd5e
y2H9RRJGz6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklCTy9V
cVB3R1lBSmdEdFJaZDVleTJIOVJSSkd6NnMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L1VxUHdHWUFKZ0R0UlpkNWV5Mkg5UlJKR3o2cy5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1ZJQk8vWjJ3UDhhSXBQSHZ3NG4xUFliUUpY
cTZpWlpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcFIDAN
BgkqhkiG9w0BAQsFAAOCAQEAOAngF095B2Tzb9J65l6LfzBotA44QwsULM+4KHKu
pVxKbs/kLfehdI0hPxFzrkPAtzqtnR8X31l3dU2LKKGU4ufc5EXP812ju6WCcdRH
P2sIIM4XKwFxPVLDry1ubc8iXqSsTBUgyzH8bcmCTWSQxBlhZjHlKcVvGwud6Wy8
cxDX5AT72SBS544YYVy7KI7vxJ70LsXn5UbUfuwkFLNYhztTyeGap3JxlLiCmAUG
ROvrxyo3YPDJp8UN4ohlcxBESwaKeidNXBqfD/xzJA8s4onJqnREm06tFyyUNfxF
eV3t+6WYzs+4v2H1r1bFm7YbFdInsmOXxy/kbKUd9O7WRA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org