Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/1KLSjL66QbuR1OC8_TMXoiAx2h0.roa
File: 1KLSjL66QbuR1OC8_TMXoiAx2h0.roa (raw, json)
Hash identifier: 6+C1lPy2tL7ZtAomAE8OqeJqUGaDrriqAeFS5H46Yt0=
Subject key identifier: D4:A2:D2:8C:BE:BA:41:BB:91:D4:E0:BC:FD:33:17:A2:20:31:DA:1D
Certificate issuer: /CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Certificate serial: 0FF6
Authority key identifier: DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/1KLSjL66QbuR1OC8_TMXoiAx2h0.roa
Signing time: Wed 29 Sep 2021 02:56:07 +0000
ROA not before: Wed 29 Sep 2021 02:56:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 103.123.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4086 (0xff6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Validity
Not Before: Sep 29 02:56:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D4A2D28CBEBA41BB91D4E0BCFD3317A22031DA1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:1b:00:02:d3:1e:c4:95:06:97:96:65:ea:7a:
4c:88:c4:e1:54:8b:b7:48:d6:a9:44:78:f1:0e:4b:
97:0a:f7:34:ff:4c:64:4a:ba:3b:f8:28:81:27:44:
88:ad:a6:df:b8:1f:07:ad:3a:f3:ed:bb:d2:ba:83:
ac:fd:6e:81:a0:f3:2f:6e:bb:ed:db:b1:69:01:8c:
2b:3d:ab:ee:e5:6f:23:6d:9e:95:bc:f5:c7:f3:b8:
6e:c7:cd:cf:12:23:4a:27:53:5c:6e:59:4f:b9:a5:
76:45:86:a6:68:60:2e:27:4d:f8:00:c3:b8:61:b2:
41:ed:52:89:12:98:42:da:cd:a1:0f:ef:33:8e:35:
d1:2e:d8:66:11:5c:f8:ba:be:12:1a:dd:ba:da:d2:
ad:16:be:b3:40:90:b8:93:9c:04:ed:4c:80:20:6a:
37:8e:54:ef:d8:db:dc:be:1d:fc:7f:67:2e:c9:27:
e1:23:b4:db:32:b3:c7:ef:21:8c:73:78:a4:14:71:
e4:fc:95:bb:24:ce:9d:88:5c:2e:0f:f5:44:e6:fc:
e7:1c:1d:01:80:f7:dd:f6:c2:de:42:74:97:26:49:
68:67:d1:f0:ee:78:c4:a7:9e:6e:0a:44:4b:cc:ef:
ca:d3:fd:46:1c:89:c3:44:ae:d4:7f:ca:2c:e0:ee:
ab:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A2:D2:8C:BE:BA:41:BB:91:D4:E0:BC:FD:33:17:A2:20:31:DA:1D
X509v3 Authority Key Identifier:
keyid:DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/2zQozMTBLPTxW6-C6rtMagYwRkI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/1KLSjL66QbuR1OC8_TMXoiAx2h0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:fa:e0:a9:2b:80:68:95:5f:0d:5f:19:88:e2:3c:31:e7:4d:
fe:a4:74:73:bb:5d:af:12:ed:b0:b7:47:70:4a:b0:e3:45:a7:
4c:86:ad:33:44:d7:a7:12:f2:c6:e4:63:d5:05:30:10:86:b9:
91:2e:78:8a:81:29:9b:4e:6c:3e:c9:97:e8:d3:fc:68:d1:4a:
fd:e9:06:99:27:5e:bb:a7:bf:43:06:cf:26:d7:a4:b2:6d:a0:
7b:b0:eb:24:0d:a8:c0:5c:9b:02:c9:17:d4:0e:10:4c:1c:af:
0b:73:a9:4f:3c:fe:70:3b:c0:f8:4d:cc:e9:45:a0:55:2a:6e:
70:42:f3:ba:6d:f1:b0:78:c4:43:a0:9c:9a:e2:66:0c:6c:15:
bb:46:4b:0a:10:c0:84:d8:0e:f0:d9:a3:69:de:65:4a:a9:14:
a4:7c:6a:c1:e7:31:71:09:68:d1:bd:3d:b9:36:2e:75:9e:bd:
ab:6b:dd:77:fb:ca:b7:50:b1:e7:e7:b5:15:56:10:4f:28:f7:
dd:e5:a9:f7:67:ba:17:d5:ee:46:be:c9:c1:b2:71:8c:eb:11:
77:f6:98:38:8e:f6:f5:3d:ca:ab:c9:41:81:c1:12:ad:20:b2:
59:a8:38:a7:3c:f7:10:4c:98:ef:76:46:92:fa:17:e4:a4:77:
86:c8:6d:d9
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICD/YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIz
NDI4Q0NDNEMxMkNGNEYxNUJBRjgyRUFCQjRDNkEwNjMwNDY0MjAeFw0yMTA5Mjkw
MjU2MDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ0QTJEMjhDQkVCQTQx
QkI5MUQ0RTBCQ0ZEMzMxN0EyMjAzMURBMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDyGwAC0x7ElQaXlmXqekyIxOFUi7dI1qlEePEOS5cK9zT/TGRK
ujv4KIEnRIitpt+4HwetOvPtu9K6g6z9boGg8y9uu+3bsWkBjCs9q+7lbyNtnpW8
9cfzuG7Hzc8SI0onU1xuWU+5pXZFhqZoYC4nTfgAw7hhskHtUokSmELazaEP7zOO
NdEu2GYRXPi6vhIa3bra0q0WvrNAkLiTnATtTIAgajeOVO/Y29y+Hfx/Zy7JJ+Ej
tNsys8fvIYxzeKQUceT8lbskzp2IXC4P9UTm/OccHQGA9932wt5CdJcmSWhn0fDu
eMSnnm4KREvM78rT/UYcicNErtR/yizg7qsbAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQU1KLSjL66QbuR1OC8/TMXoiAx2h0wHwYDVR0jBBgwFoAU2zQozMTBLPTxW6+C
6rtMagYwRkIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVWSVNF
SE9TVC8yelFvek1UQkxQVHhXNi1DNnJ0TWFnWXdSa0kuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBLzJ6UW96TVRCTFBUeFc2LUM2cnRNYWdZd1JrSS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFVklTRUhPU1QvMUtMU2pMNjZR
YnVSMU9DOF9UTVhvaUF4MmgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAmd7xDANBgkqhkiG9w0BAQsFAAOCAQEAC/rgqSuAaJVfDV8ZiOI8MedN
/qR0c7tdrxLtsLdHcEqw40WnTIatM0TXpxLyxuRj1QUwEIa5kS54ioEpm05sPsmX
6NP8aNFK/ekGmSdeu6e/QwbPJteksm2ge7DrJA2owFybAskX1A4QTByvC3OpTzz+
cDvA+E3M6UWgVSpucELzum3xsHjEQ6CcmuJmDGwVu0ZLChDAhNgO8Nmjad5lSqkU
pHxqwecxcQlo0b09uTYudZ69q2vdd/vKt1Cx5+e1FVYQTyj33eWp92e6F9XuRr7J
wbJxjOsRd/aYOI729T3Kq8lBgcESrSCyWag4pzz3EEyY73ZGkvoX5KR3hsht2Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org