Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa
File: h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa (raw, json)
Hash identifier: IlW838uD1/w2VzRKyuIT3W9SLRmPyTNOew6NAc0GelM=
Subject key identifier: 87:A5:D2:35:DA:E3:10:A4:DA:07:1F:04:FE:71:A6:3D:E6:94:79:E6
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0B4F
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa
Signing time: Fri 01 Sep 2023 08:35:11 +0000
ROA not before: Fri 01 Sep 2023 08:35:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131662
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2895 (0xb4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 1 08:35:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=87A5D235DAE310A4DA071F04FE71A63DE69479E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e1:55:90:64:2e:c8:a0:b3:ec:78:a2:4c:80:
8b:49:3c:5c:5b:ee:e9:06:d4:fe:2c:67:f2:bf:83:
4f:a6:bb:6b:5f:b2:d7:11:f6:37:33:f5:eb:23:fa:
fd:c6:7b:1c:92:b7:df:ff:64:2b:66:b0:17:09:fb:
99:81:1f:69:0f:b6:a2:50:0f:31:63:cc:8b:9e:22:
10:9b:b6:48:bc:d9:09:4f:96:1b:42:21:40:03:e1:
20:bb:3f:d7:5b:e4:8f:cb:7d:1a:77:ac:5f:1e:37:
09:e4:dc:14:09:28:16:be:3f:72:6b:c1:57:16:6f:
d3:7f:d0:ad:58:8a:ee:15:06:04:dc:9d:c8:7b:38:
3f:e2:91:9e:b9:af:25:4c:34:f1:ac:fc:5e:db:90:
dc:98:d0:b5:f9:5c:e0:c6:03:6e:7b:d0:1c:d7:38:
7d:06:fa:53:49:1f:92:f8:b0:bc:59:bf:53:62:4c:
72:28:2e:9d:a3:95:da:0b:c7:f9:0b:70:9f:1d:26:
ff:07:01:df:4e:4f:fc:44:cf:91:a5:cb:1e:e4:cd:
55:ab:8b:4f:8e:8d:6b:03:be:b7:81:6c:83:ac:2d:
f5:f9:d5:82:05:6a:d3:20:c1:d7:8c:8d:d4:ca:10:
2b:1c:11:fb:83:c1:77:85:24:23:32:38:67:4c:c1:
31:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A5:D2:35:DA:E3:10:A4:DA:07:1F:04:FE:71:A6:3D:E6:94:79:E6
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
55:d1:aa:ea:a9:a8:fd:29:b7:76:fe:eb:e4:23:be:25:a6:c4:
a4:69:d0:f4:b0:83:ae:14:6e:d9:8c:e2:be:4d:3f:9d:3b:5c:
8e:3c:6a:30:49:58:82:64:db:79:54:5b:68:79:0c:76:3c:1e:
d0:cd:69:71:81:67:d3:dc:97:b5:bb:b0:2b:e0:33:0f:60:f5:
45:23:cb:3e:c3:d3:47:aa:77:7d:39:eb:4b:1c:8a:14:6d:c6:
96:42:c8:aa:44:d6:a7:f4:7d:b7:1b:04:cf:96:60:8f:df:8c:
d2:57:cc:5a:35:30:62:ab:e2:ae:2b:ca:c9:54:c3:42:88:97:
5b:bf:3b:f2:28:7b:9d:d2:d7:b3:35:4f:d7:f5:93:3a:2d:a5:
4e:16:7f:b6:19:90:a9:59:cd:93:52:99:42:fe:4d:ea:ea:f6:
af:2d:91:52:87:2c:97:c9:87:1e:4b:e6:01:e2:f1:17:7f:8d:
66:e1:6e:83:b6:e2:3f:f2:af:76:78:a5:7c:11:80:05:6a:72:
00:3b:74:dc:f0:c2:b6:d0:56:fa:1a:eb:f9:b8:7f:b3:ef:26:
a8:9c:b0:ae:4c:b8:74:de:46:12:a2:7c:58:d8:4d:be:ed:f3:
ca:51:f4:82:d4:1d:b1:96:d4:31:f5:64:5c:6b:9a:01:fb:08:
a8:cf:56:50
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF
RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMzA5MDEw
ODM1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg3QTVEMjM1REFFMzEw
QTREQTA3MUYwNEZFNzFBNjNERTY5NDc5RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDs4VWQZC7IoLPseKJMgItJPFxb7ukG1P4sZ/K/g0+mu2tfstcR
9jcz9esj+v3GexySt9//ZCtmsBcJ+5mBH2kPtqJQDzFjzIueIhCbtki82QlPlhtC
IUAD4SC7P9db5I/LfRp3rF8eNwnk3BQJKBa+P3JrwVcWb9N/0K1Yiu4VBgTcnch7
OD/ikZ65ryVMNPGs/F7bkNyY0LX5XODGA2570BzXOH0G+lNJH5L4sLxZv1NiTHIo
Lp2jldoLx/kLcJ8dJv8HAd9OT/xEz5Glyx7kzVWri0+OjWsDvreBbIOsLfX51YIF
atMgwdeMjdTKECscEfuDwXeFJCMyOGdMwTHrAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUh6XSNdrjEKTaBx8E/nGmPeaUeeYwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc
TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ
Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vaDZYU05kcmpFS1RhQng4
RV9uR21QZWFVZWVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Amd7gDANBgkqhkiG9w0BAQsFAAOCAQEAVdGq6qmo/Sm3dv7r5CO+JabEpGnQ9LCD
rhRu2Yzivk0/nTtcjjxqMElYgmTbeVRbaHkMdjwe0M1pcYFn09yXtbuwK+AzD2D1
RSPLPsPTR6p3fTnrSxyKFG3GlkLIqkTWp/R9txsEz5Zgj9+M0lfMWjUwYqvirivK
yVTDQoiXW7878ih7ndLXszVP1/WTOi2lThZ/thmQqVnNk1KZQv5N6ur2ry2RUocs
l8mHHkvmAeLxF3+NZuFug7biP/KvdnilfBGABWpyADt03PDCttBW+hrr+bh/s+8m
qJywrky4dN5GEqJ8WNhNvu3zylH0gtQdsZbUMfVkXGuaAfsIqM9WUA==
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org