Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/TZjWZUOcCa0UT3mNJ79y873wlKo.roa
File: TZjWZUOcCa0UT3mNJ79y873wlKo.roa (raw, json)
Hash identifier: dWBwPtErNCUeZ2yxiGQ/tYxQU3pqfCZh85yygd55Ews=
Subject key identifier: 4D:98:D6:65:43:9C:09:AD:14:4F:79:8D:27:BF:72:F3:BD:F0:94:AA
Certificate issuer: /CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97
Certificate serial: 023F
Authority key identifier: C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/TZjWZUOcCa0UT3mNJ79y873wlKo.roa
Signing time: Fri 01 Sep 2023 10:21:07 +0000
ROA not before: Fri 01 Sep 2023 10:21:07 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 208148
IP address blocks: 2407:a0c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 575 (0x23f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97
Validity
Not Before: Sep 1 10:21:07 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4D98D665439C09AD144F798D27BF72F3BDF094AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a4:aa:4b:f4:78:db:f1:ea:46:b3:88:64:a6:
54:09:7a:69:cd:aa:f8:3b:24:ed:88:aa:90:e5:31:
d0:b0:32:db:58:dc:1e:e3:24:ae:66:10:2b:27:1d:
d6:f9:03:5f:c9:5f:58:16:4f:da:b5:c7:ee:39:3f:
d6:9b:ba:79:04:96:54:85:f8:31:6f:36:b4:3c:f6:
48:73:6b:fc:11:2d:38:e4:c1:82:af:46:79:ad:0e:
16:32:f5:33:48:ec:09:17:b5:77:a6:bf:bd:71:d2:
26:fa:2d:0b:c3:4c:78:53:73:22:05:c1:a2:18:89:
d5:ef:3e:10:f9:07:21:02:8d:b2:9a:ec:0e:f0:81:
2c:7d:50:11:4e:5d:71:b1:1e:7c:b5:b7:80:db:c1:
ae:43:42:c9:19:87:23:4b:60:3d:71:69:89:b3:40:
96:6b:7c:f7:84:65:c2:49:78:0a:c3:52:e1:d9:42:
df:e0:6a:d8:89:3e:49:17:9e:ff:2d:17:a5:74:05:
b1:af:7f:07:18:d6:7d:98:68:3b:ce:c6:3a:6f:e1:
c7:e3:b0:03:81:a0:a8:f8:54:bb:73:16:82:df:6f:
59:5c:29:6d:a6:ac:cc:b6:9f:61:23:85:65:e5:8b:
f7:50:c4:49:9c:51:4c:9d:79:38:cf:85:78:cf:5a:
3b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:98:D6:65:43:9C:09:AD:14:4F:79:8D:27:BF:72:F3:BD:F0:94:AA
X509v3 Authority Key Identifier:
keyid:C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/TZjWZUOcCa0UT3mNJ79y873wlKo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:a0c0::/32
Signature Algorithm: sha256WithRSAEncryption
64:55:92:ab:df:0b:1b:f3:a9:6c:3b:64:a7:1b:6f:e4:67:69:
d4:6f:9a:93:13:4e:51:0c:e3:1a:24:ac:fe:f4:90:bd:f6:2b:
5e:f0:43:6f:9f:95:ad:9e:8e:d7:ef:b8:1e:74:73:88:8b:60:
66:85:c7:68:a1:90:28:9b:80:68:2f:28:b2:78:3c:25:fb:11:
ca:b9:53:b4:06:0a:09:53:e3:72:5c:6a:4e:ee:8a:0d:37:9c:
81:0c:c7:84:3f:89:c3:25:fc:51:9d:37:87:f1:ca:9f:22:46:
4c:c8:a7:a6:0b:d5:83:18:58:92:fb:9f:05:ed:12:2e:7c:e2:
19:ff:b6:51:4f:3a:a8:bf:dd:64:12:db:1f:fa:78:63:54:1f:
4a:99:14:00:3d:c9:5b:cb:08:48:cc:ed:88:7b:ee:99:01:63:
b1:69:be:52:7e:5f:36:1e:16:d5:90:c0:7e:a5:e8:fc:c3:f5:
c9:69:31:76:0f:f9:3b:11:c8:6a:c3:4d:3d:c7:da:ba:83:a1:
d6:89:0e:e3:f6:9c:29:d6:f4:2c:7c:3d:ef:2d:f4:af:58:24:
11:72:7d:1e:a3:06:c7:d3:78:ba:4b:46:ce:6b:8f:7a:bd:53:
f8:f0:7f:b2:a6:37:c2:1f:75:12:8f:ad:10:53:a2:e1:4d:d7:
8e:e9:55:6d
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzNG
QzExNkEzQ0NCMTA1QUI1MERBNDE3Njc5QjFGOUM3MEE0QkQ5NzAeFw0yMzA5MDEx
MDIxMDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDREOThENjY1NDM5QzA5
QUQxNDRGNzk4RDI3QkY3MkYzQkRGMDk0QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCipKpL9Hjb8epGs4hkplQJemnNqvg7JO2IqpDlMdCwMttY3B7j
JK5mECsnHdb5A1/JX1gWT9q1x+45P9abunkEllSF+DFvNrQ89khza/wRLTjkwYKv
RnmtDhYy9TNI7AkXtXemv71x0ib6LQvDTHhTcyIFwaIYidXvPhD5ByECjbKa7A7w
gSx9UBFOXXGxHny1t4Dbwa5DQskZhyNLYD1xaYmzQJZrfPeEZcJJeArDUuHZQt/g
atiJPkkXnv8tF6V0BbGvfwcY1n2YaDvOxjpv4cfjsAOBoKj4VLtzFoLfb1lcKW2m
rMy2n2EjhWXli/dQxEmcUUydeTjPhXjPWjuTAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUTZjWZUOcCa0UT3mNJ79y873wlKowHwYDVR0jBBgwFoAUw/wRajzLEFq1DaQX
Z5sfnHCkvZcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV09MRk5F
VC93X3dSYWp6TEVGcTFEYVFYWjVzZm5IQ2t2WmMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3dfd1JhanpMRUZxMURhUVhaNXNmbkhDa3ZaYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dPTEZORVQvVFpqV1pVT2NDYTBVVDNt
Tko3OXk4NzN3bEtvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQHoMAwDQYJKoZIhvcNAQELBQADggEBAGRVkqvfCxvzqWw7ZKcbb+RnadRvmpMT
TlEM4xokrP70kL32K17wQ2+fla2ejtfvuB50c4iLYGaFx2ihkCibgGgvKLJ4PCX7
Ecq5U7QGCglT43Jcak7uig03nIEMx4Q/icMl/FGdN4fxyp8iRkzIp6YL1YMYWJL7
nwXtEi584hn/tlFPOqi/3WQS2x/6eGNUH0qZFAA9yVvLCEjM7Yh77pkBY7FpvlJ+
XzYeFtWQwH6l6PzD9clpMXYP+TsRyGrDTT3H2rqDodaJDuP2nCnW9Cx8Pe8t9K9Y
JBFyfR6jBsfTeLpLRs5rj3q9U/jwf7KmN8IfdRKPrRBTouFN147pVW0=
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:28 2024 by rpki-client on console-fra.rpki-client.org