Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/hMYsc4E1Qk_EgYoVnYmCtAvtUjQ.roa
File: hMYsc4E1Qk_EgYoVnYmCtAvtUjQ.roa (raw, json)
Hash identifier: szBDlNDGhAe/KFCSvlKnf0W+n2VswBGBk1+/IgzKa2Q=
Subject key identifier: 84:C6:2C:73:81:35:42:4F:C4:81:8A:15:9D:89:82:B4:0B:ED:52:34
Certificate issuer: /CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Certificate serial: 110C
Authority key identifier: DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/hMYsc4E1Qk_EgYoVnYmCtAvtUjQ.roa
Signing time: Mon 14 Nov 2022 16:04:45 +0000
ROA not before: Mon 14 Nov 2022 16:04:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 103.123.196.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4364 (0x110c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Validity
Not Before: Nov 14 16:04:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=84C62C738135424FC4818A159D8982B40BED5234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:88:1c:f7:36:da:47:53:e2:76:53:65:00:d7:
8e:fa:0e:13:57:bf:8f:70:78:85:c6:ae:10:33:08:
cb:ab:9b:02:1b:60:75:16:d2:1b:b8:44:ae:18:8f:
c0:fe:a9:54:a5:a1:8b:2a:72:37:be:ad:0b:1f:b0:
19:e1:6f:d0:1f:f8:c0:e9:ee:45:24:d5:91:3f:7d:
dc:49:2f:b4:f5:93:50:b9:60:7c:3f:e1:c4:98:4b:
c2:f1:32:28:66:77:c4:af:f7:ce:5f:7e:e4:fb:e1:
38:96:04:48:7d:24:a7:c7:b9:7e:fa:b1:78:f9:9c:
51:43:b5:8b:19:87:61:c4:12:3a:51:af:d0:c4:2d:
a0:65:33:bc:3f:23:74:f8:8b:38:2c:76:e0:98:9d:
6f:17:22:e6:ea:09:17:7a:8f:94:7a:c8:99:02:d6:
2e:89:e7:f6:4d:9b:3f:4e:bc:30:51:bc:0c:0c:98:
ab:2c:74:62:d0:70:8f:4b:09:6e:55:01:7d:46:88:
fc:4a:9a:93:00:8e:30:4d:23:38:1f:d6:96:61:25:
0d:85:2f:53:d1:8b:27:7a:84:e9:f0:9f:95:9f:3b:
43:ce:49:09:93:db:de:c0:fa:01:14:0f:b4:4e:a7:
c6:a0:78:1c:86:65:aa:54:70:63:79:ef:eb:48:a8:
da:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C6:2C:73:81:35:42:4F:C4:81:8A:15:9D:89:82:B4:0B:ED:52:34
X509v3 Authority Key Identifier:
keyid:DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/2zQozMTBLPTxW6-C6rtMagYwRkI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/hMYsc4E1Qk_EgYoVnYmCtAvtUjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.196.0/22
Signature Algorithm: sha256WithRSAEncryption
35:70:ab:55:88:31:b3:46:84:a5:c1:48:7f:22:e3:04:34:c0:
b0:09:c0:f2:10:c6:2f:92:b9:11:bc:ec:04:c9:55:a9:bc:4c:
ff:e1:3d:46:8d:16:35:12:b9:66:20:7d:53:93:b7:93:9b:4e:
3e:96:e6:8f:98:46:b9:f8:45:a2:24:b5:47:e7:a1:12:c6:98:
94:bc:12:3e:d8:0a:88:26:74:43:b4:29:1a:0a:b7:36:d4:1f:
bf:08:4d:28:10:c1:46:e3:8e:90:21:bf:da:95:92:d3:97:2b:
39:3c:16:c0:cb:9a:30:6f:da:9d:cf:9f:10:02:5b:f4:3e:b3:
4b:48:54:21:85:d5:42:f5:85:b0:42:2f:b4:3a:90:40:09:7c:
95:ba:90:66:ab:26:59:16:6e:2c:71:92:7a:ef:42:85:e5:2c:
44:8b:ab:70:bf:ad:dc:96:ef:2a:b3:8c:d5:31:f8:a0:af:e7:
7f:e2:df:57:15:45:27:74:24:52:77:44:2c:2d:0f:5e:bb:49:
0c:da:04:25:8a:62:a9:2e:fd:92:91:95:6b:34:54:e6:ce:e9:
f2:f1:8d:50:79:89:f9:f0:b2:2d:c7:cf:43:b6:b8:44:90:af:
7b:f4:6a:9f:34:c3:ec:e2:35:cf:69:65:c6:bd:77:44:3c:b3:
f5:09:cf:55
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICEQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIz
NDI4Q0NDNEMxMkNGNEYxNUJBRjgyRUFCQjRDNkEwNjMwNDY0MjAeFw0yMjExMTQx
NjA0NDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg0QzYyQzczODEzNTQy
NEZDNDgxOEExNTlEODk4MkI0MEJFRDUyMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD0iBz3NtpHU+J2U2UA1476DhNXv49weIXGrhAzCMurmwIbYHUW
0hu4RK4Yj8D+qVSloYsqcje+rQsfsBnhb9Af+MDp7kUk1ZE/fdxJL7T1k1C5YHw/
4cSYS8LxMihmd8Sv985ffuT74TiWBEh9JKfHuX76sXj5nFFDtYsZh2HEEjpRr9DE
LaBlM7w/I3T4izgsduCYnW8XIubqCRd6j5R6yJkC1i6J5/ZNmz9OvDBRvAwMmKss
dGLQcI9LCW5VAX1GiPxKmpMAjjBNIzgf1pZhJQ2FL1PRiyd6hOnwn5WfO0POSQmT
297A+gEUD7ROp8ageByGZapUcGN57+tIqNrJAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUhMYsc4E1Qk/EgYoVnYmCtAvtUjQwHwYDVR0jBBgwFoAU2zQozMTBLPTxW6+C
6rtMagYwRkIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVWSVNF
SE9TVC8yelFvek1UQkxQVHhXNi1DNnJ0TWFnWXdSa0kuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBLzJ6UW96TVRCTFBUeFc2LUM2cnRNYWdZd1JrSS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFVklTRUhPU1QvaE1Zc2M0RTFR
a19FZ1lvVm5ZbUN0QXZ0VWpRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAmd7xDANBgkqhkiG9w0BAQsFAAOCAQEANXCrVYgxs0aEpcFIfyLjBDTA
sAnA8hDGL5K5EbzsBMlVqbxM/+E9Ro0WNRK5ZiB9U5O3k5tOPpbmj5hGufhFoiS1
R+ehEsaYlLwSPtgKiCZ0Q7QpGgq3NtQfvwhNKBDBRuOOkCG/2pWS05crOTwWwMua
MG/anc+fEAJb9D6zS0hUIYXVQvWFsEIvtDqQQAl8lbqQZqsmWRZuLHGSeu9CheUs
RIurcL+t3JbvKrOM1TH4oK/nf+LfVxVFJ3QkUndELC0PXrtJDNoEJYpiqS79kpGV
azRU5s7p8vGNUHmJ+fCyLcfPQ7a4RJCve/RqnzTD7OI1z2llxr13RDyz9QnPVQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org