Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/x9t3qRJsQjRuusJVQDkSE2Hx6hk.roa
File: x9t3qRJsQjRuusJVQDkSE2Hx6hk.roa (raw, json)
Hash identifier: 7RMR+5lRuvnBU+4Uy79pr+ZxLgjRuwxX0BKJTmR35ko=
Subject key identifier: C7:DB:77:A9:12:6C:42:34:6E:BA:C2:55:40:39:12:13:61:F1:EA:19
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 0759
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/x9t3qRJsQjRuusJVQDkSE2Hx6hk.roa
Signing time: Mon 10 Feb 2025 13:49:08 +0000
ROA not before: Mon 10 Feb 2025 13:49:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134098
IP address blocks: 103.152.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1881 (0x759)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Feb 10 13:49:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C7DB77A9126C42346EBAC2554039121361F1EA19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1e:e5:88:fc:b4:12:6b:b4:ca:76:c3:7b:ca:
92:61:40:37:9b:33:aa:eb:fe:4f:32:e5:4c:1e:6a:
e5:6d:cf:99:e5:d6:18:99:06:50:42:d9:3e:d9:05:
61:d1:89:58:36:35:c3:22:b6:33:cb:13:31:4b:8f:
7d:61:8a:90:a8:e2:e6:be:0c:2d:83:22:5c:e0:04:
9c:61:f1:ba:4c:cd:e5:d4:7d:5e:66:09:9d:c0:23:
3e:52:75:f7:47:b8:be:81:10:70:91:ca:87:5f:c6:
84:0a:7c:25:46:ad:85:40:5b:af:77:6d:0c:30:7e:
06:b2:c8:f6:f0:f6:56:73:5c:17:cc:6a:8f:3d:7a:
41:d6:bc:84:32:d0:47:7d:b2:05:c6:ac:4b:08:f2:
84:74:59:cc:ef:4f:c7:20:76:51:db:d4:16:42:82:
04:cf:26:7b:40:f9:40:1e:b3:c7:4a:52:7d:2a:5c:
0a:c3:65:57:f8:a7:a1:92:78:97:60:97:04:64:93:
ba:83:d3:b9:81:79:e1:2c:12:cd:0e:65:26:28:53:
7e:fd:10:38:99:a8:72:5d:5f:2f:8c:19:42:46:d5:
f4:41:c1:40:42:af:1d:c8:d4:6c:71:80:17:55:09:
b3:19:84:e6:5f:db:e1:b6:06:a3:8b:f5:f7:f5:90:
62:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DB:77:A9:12:6C:42:34:6E:BA:C2:55:40:39:12:13:61:F1:EA:19
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/x9t3qRJsQjRuusJVQDkSE2Hx6hk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.203.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:15:fb:9d:99:ca:ac:da:65:e7:3e:c5:63:21:06:0f:0c:74:
19:dd:6a:f8:78:a3:b8:af:71:09:c0:66:7a:c6:57:e5:74:6f:
29:68:f8:2d:1c:e2:a6:d5:3b:17:2a:4a:53:7b:e7:ee:11:c1:
26:23:bd:56:41:02:1d:bd:d0:ff:3a:47:b8:ad:ce:e7:30:e1:
4b:4b:4b:14:89:4d:2a:28:ea:c7:e8:d5:78:2a:f3:2d:3f:68:
4d:48:83:85:52:a6:54:1f:e3:41:26:8a:5d:c4:3a:09:99:68:
a8:03:61:62:04:ec:b1:5f:77:1c:01:d6:fe:40:54:f4:1a:80:
3a:88:c4:07:9f:dc:b8:fd:01:9d:2c:94:3e:13:ff:c4:92:58:
50:b1:7d:9d:ad:22:ba:5b:9a:86:6d:81:c3:02:24:b2:27:6b:
b1:1a:ed:69:55:97:ed:84:79:89:ac:52:47:bd:30:57:e5:95:
30:bf:48:57:5e:ba:10:48:25:75:e9:55:1b:74:93:9a:f9:ce:
97:0c:b0:69:35:92:18:c3:bd:c0:dd:a4:30:ca:4a:85:71:13:
d4:d3:4f:90:f7:cf:f1:5e:d2:56:f6:18:62:ae:be:4d:72:09:
b4:c4:f4:10:d9:f6:61:f9:29:9f:39:30:eb:b2:0d:22:4a:5e:
03:ba:40:63
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG
RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yNTAyMTAx
MzQ5MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM3REI3N0E5MTI2QzQy
MzQ2RUJBQzI1NTQwMzkxMjEzNjFGMUVBMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGHuWI/LQSa7TKdsN7ypJhQDebM6rr/k8y5UweauVtz5nl1hiZ
BlBC2T7ZBWHRiVg2NcMitjPLEzFLj31hipCo4ua+DC2DIlzgBJxh8bpMzeXUfV5m
CZ3AIz5SdfdHuL6BEHCRyodfxoQKfCVGrYVAW693bQwwfgayyPbw9lZzXBfMao89
ekHWvIQy0Ed9sgXGrEsI8oR0WczvT8cgdlHb1BZCggTPJntA+UAes8dKUn0qXArD
ZVf4p6GSeJdglwRkk7qD07mBeeEsEs0OZSYoU379EDiZqHJdXy+MGUJG1fRBwUBC
rx3I1GxxgBdVCbMZhOZf2+G2BqOL9ff1kGL7AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUx9t3qRJsQjRuusJVQDkSE2Hx6hkwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz
qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ
VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL3g5dDNxUkpzUWpS
dXVzSlZRRGtTRTJIeDZoay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABnmMswDQYJKoZIhvcNAQELBQADggEBAAoV+52ZyqzaZec+xWMhBg8MdBnd
avh4o7ivcQnAZnrGV+V0bylo+C0c4qbVOxcqSlN75+4RwSYjvVZBAh290P86R7it
zucw4UtLSxSJTSoo6sfo1Xgq8y0/aE1Ig4VSplQf40Emil3EOgmZaKgDYWIE7LFf
dxwB1v5AVPQagDqIxAef3Lj9AZ0slD4T/8SSWFCxfZ2tIrpbmoZtgcMCJLIna7Ea
7WlVl+2EeYmsUke9MFfllTC/SFdeuhBIJXXpVRt0k5r5zpcMsGk1khjDvcDdpDDK
SoVxE9TTT5D3z/Fe0lb2GGKuvk1yCbTE9BDZ9mH5KZ85MOuyDSJKXgO6QGM=
-----END CERTIFICATE-----
Generated at Mon Apr 7 00:53:06 2025 by rpki-client