Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/MGj860tCg3csKQmupYKVJ4K8bws.roa
File: MGj860tCg3csKQmupYKVJ4K8bws.roa (raw, json)
Hash identifier: uLKw5LOBbI+Dw+pXJ2tILEadw9nhDaXkET6fZmWTSn0=
Subject key identifier: 30:68:FC:EB:4B:42:83:77:2C:29:09:AE:A5:82:95:27:82:BC:6F:0B
Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686
Certificate serial: 1267
Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/MGj860tCg3csKQmupYKVJ4K8bws.roa
Signing time: Mon 10 Feb 2025 14:21:15 +0000
ROA not before: Mon 10 Feb 2025 14:21:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63199
IP address blocks: 103.124.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4711 (0x1267)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686
Validity
Not Before: Feb 10 14:21:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3068FCEB4B4283772C2909AEA582952782BC6F0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:46:da:b7:16:84:cf:12:50:57:8c:6f:0f:23:
17:cb:f9:3b:d6:72:27:72:a6:d4:7e:f2:60:49:a9:
ab:f4:72:ea:e9:da:18:a1:2a:81:c4:8a:ac:3c:c7:
84:6b:be:f8:d4:23:1c:bf:4e:04:8e:5f:d4:45:77:
eb:81:4a:c7:0e:a3:3d:f6:1c:8d:10:e2:80:eb:71:
f1:92:39:dd:a9:ed:0a:78:d7:d8:30:2c:a5:42:3d:
e9:7e:cb:83:04:99:41:a5:f0:86:9f:6e:0a:ca:4d:
ec:06:1f:34:c8:e6:9c:3f:47:7d:a5:8a:5d:27:39:
df:76:22:ba:f0:52:b1:1c:9d:0e:54:0a:fe:67:9d:
c6:44:5b:38:52:92:03:b9:45:ac:8c:b0:74:48:7f:
27:4e:ee:85:f4:fd:96:b5:2d:5e:1d:47:b7:ef:63:
56:c6:29:b1:f5:2f:73:5a:94:b6:06:37:66:82:d2:
4b:9f:d3:39:35:ff:e5:92:94:cc:a6:1a:f7:6c:26:
93:96:77:c7:c4:c8:d3:6e:1e:1e:fe:bb:71:e0:45:
eb:32:5f:08:28:0b:b7:28:76:c8:4c:00:73:d0:4c:
2d:00:1c:36:26:c3:86:b8:a9:74:ab:09:b3:2d:cb:
ad:86:59:c1:11:79:c9:a3:a6:d5:82:be:b3:20:a9:
dd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:68:FC:EB:4B:42:83:77:2C:29:09:AE:A5:82:95:27:82:BC:6F:0B
X509v3 Authority Key Identifier:
keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/MGj860tCg3csKQmupYKVJ4K8bws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.149.0/24
Signature Algorithm: sha256WithRSAEncryption
84:f4:30:4d:52:e4:7a:b2:d8:56:56:72:8b:b8:b5:2b:50:e1:
17:0e:07:43:9d:8a:6e:43:b3:20:fe:c9:ec:95:32:18:bf:ae:
56:62:30:55:43:c3:27:67:a8:a4:3e:8e:2a:1f:7c:48:0d:67:
ff:c2:a9:ce:9c:d7:6c:ac:90:29:b2:ed:b6:19:a3:4e:e8:61:
3b:f4:b6:02:45:43:b1:bd:b4:4b:ce:69:43:59:e3:4b:a7:e1:
06:b3:6d:15:f0:47:bf:5e:31:f1:04:23:a6:b1:5c:14:7f:94:
60:a3:d2:8a:3d:d0:f3:f6:65:3b:93:1e:cd:8f:69:8f:ee:ff:
e0:8d:fd:84:41:26:56:71:15:f1:b3:8f:5f:72:c0:6c:89:6b:
12:a8:0f:65:ec:97:63:15:af:5c:71:49:74:90:b7:fd:c1:18:
c5:89:c4:ed:98:76:eb:d9:5a:47:31:77:d7:68:dd:fc:ab:43:
0a:19:ad:f2:c5:58:50:c7:b0:9a:b2:64:24:7f:7f:18:40:b1:
c2:8c:29:e3:96:fd:4b:11:f0:cd:5b:aa:e9:e9:1c:58:2e:86:
91:ae:a2:f3:71:fb:b5:ec:fd:4f:34:8e:ea:99:f4:d1:30:8f:
cc:a6:2f:11:41:c0:ad:55:a5:87:2d:9d:ad:12:26:82:20:6c:
70:98:a1:f6
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDM5
QTAyQUUxNTA4NjJEMTVGQjcyN0M1MTFCMTA0RDYzRUZCNDY4NjAeFw0yNTAyMTAx
NDIxMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMwNjhGQ0VCNEI0Mjgz
NzcyQzI5MDlBRUE1ODI5NTI3ODJCQzZGMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPRtq3FoTPElBXjG8PIxfL+TvWcidyptR+8mBJqav0curp2hih
KoHEiqw8x4RrvvjUIxy/TgSOX9RFd+uBSscOoz32HI0Q4oDrcfGSOd2p7Qp419gw
LKVCPel+y4MEmUGl8IafbgrKTewGHzTI5pw/R32lil0nOd92IrrwUrEcnQ5UCv5n
ncZEWzhSkgO5RayMsHRIfydO7oX0/Za1LV4dR7fvY1bGKbH1L3NalLYGN2aC0kuf
0zk1/+WSlMymGvdsJpOWd8fEyNNuHh7+u3HgResyXwgoC7codshMAHPQTC0AHDYm
w4a4qXSrCbMty62GWcERecmjptWCvrMgqd1zAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMGj860tCg3csKQmupYKVJ4K8bwswHwYDVR0jBBgwFoAU05oCrhUIYtFftyfF
EbEE1j77RoYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdBQ09N
LzA1b0NyaFVJWXRGZnR5ZkZFYkVFMWo3N1JvWS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvMDVvQ3JoVUlZdEZmdHlmRkViRUUxajc3Um9ZLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdBQ09NL01Hajg2MHRDZzNjc0tRbXVw
WUtWSjRLOGJ3cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
fJUwDQYJKoZIhvcNAQELBQADggEBAIT0ME1S5Hqy2FZWcou4tStQ4RcOB0Odim5D
syD+yeyVMhi/rlZiMFVDwydnqKQ+jioffEgNZ//Cqc6c12yskCmy7bYZo07oYTv0
tgJFQ7G9tEvOaUNZ40un4QazbRXwR79eMfEEI6axXBR/lGCj0oo90PP2ZTuTHs2P
aY/u/+CN/YRBJlZxFfGzj19ywGyJaxKoD2Xsl2MVr1xxSXSQt/3BGMWJxO2YduvZ
Wkcxd9do3fyrQwoZrfLFWFDHsJqyZCR/fxhAscKMKeOW/UsR8M1bqunpHFguhpGu
ovNx+7Xs/U80juqZ9NEwj8ymLxFBwK1VpYctna0SJoIgbHCYofY=
-----END CERTIFICATE-----
Generated at Tue Apr 22 13:00:55 2025 by rpki-client