Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/9GovltGgbny6SsI0yrRh1V597r8.roa
File: 9GovltGgbny6SsI0yrRh1V597r8.roa (raw, json)
Hash identifier: xv3astAaKRGhvyLLqh8bdv+U6sjr95aTMwpZMicMds4=
Subject key identifier: F4:6A:2F:96:D1:A0:6E:7C:BA:4A:C2:34:CA:B4:61:D5:5E:7D:EE:BF
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B8F
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/9GovltGgbny6SsI0yrRh1V597r8.roa
Signing time: Fri 01 Sep 2023 08:35:39 +0000
ROA not before: Fri 01 Sep 2023 08:35:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38851
IP address blocks: 103.234.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2959 (0xb8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 1 08:35:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F46A2F96D1A06E7CBA4AC234CAB461D55E7DEEBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9e:8a:da:d7:a1:22:5e:f4:9f:90:0f:7e:41:
8e:e7:2c:0d:33:46:bb:fa:a4:09:e1:d3:b4:3e:04:
10:6d:6a:8d:3e:6a:d0:fc:9b:ea:64:cf:30:59:00:
82:b7:e1:64:05:70:cd:89:cb:84:0a:00:55:ec:a2:
12:87:f5:78:c7:8b:d2:d9:3b:6f:29:56:37:46:92:
df:c8:9a:3b:68:6b:8b:8b:64:e8:b2:d9:48:7c:f4:
a7:8c:e4:0a:13:ea:7b:ec:cd:7b:e5:25:ec:79:b8:
69:97:24:96:67:c6:59:42:a4:aa:c1:d1:85:7e:a3:
13:11:7e:a2:2f:94:91:e2:0f:e6:50:7b:df:c3:47:
f2:ba:5f:e8:9a:5f:8b:f9:cc:62:0d:71:a4:83:09:
d4:4c:7f:54:37:7b:53:f3:dd:7b:6e:d8:88:95:ab:
81:52:17:07:2d:bf:b6:31:b0:6a:4e:74:26:2e:62:
02:f3:b8:9e:d0:0d:06:63:8d:0a:0a:29:42:29:47:
32:7f:6b:36:f3:8a:65:07:94:68:4c:14:a0:13:82:
0a:2a:19:d4:cb:d6:51:8e:a3:56:70:67:44:f9:09:
b4:fb:0b:65:72:df:56:51:28:d2:2e:aa:0e:8e:99:
ba:82:82:78:dc:4f:65:24:07:63:cd:c2:28:6a:43:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6A:2F:96:D1:A0:6E:7C:BA:4A:C2:34:CA:B4:61:D5:5E:7D:EE:BF
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/9GovltGgbny6SsI0yrRh1V597r8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.76.0/22
Signature Algorithm: sha256WithRSAEncryption
52:d2:34:44:bf:a2:90:a0:3f:bb:df:03:0e:ec:df:54:f4:6c:
cd:79:3c:42:d6:83:5b:41:03:2f:f9:07:69:ce:d1:52:8f:5b:
80:3e:5c:65:02:93:d2:f4:e6:b5:0f:91:e9:3e:bb:f8:68:c0:
60:0d:1c:8f:81:cc:ca:39:59:8b:9d:62:e5:ca:94:d5:86:e3:
51:36:fb:ba:49:cd:61:ec:c1:50:8d:c5:d2:2b:fe:81:fd:0f:
88:b4:c8:b2:66:36:34:00:f5:c2:9d:7b:45:26:23:61:1e:2d:
56:79:39:91:0b:64:61:aa:64:64:e7:41:92:fd:db:ff:1d:f3:
7a:30:d3:db:93:9c:2b:0d:5d:84:b7:42:ea:98:35:31:6d:04:
18:a8:c5:3e:18:92:78:fa:c8:ac:85:d2:00:77:63:fe:bc:80:
12:fe:45:f8:b4:8d:31:77:4b:54:82:8a:10:89:c7:8a:e6:c8:
89:43:3f:bf:82:a9:4c:13:b1:ea:07:bf:dd:76:ff:9c:9c:97:
4a:8a:c5:a6:57:76:15:13:b0:ee:b8:60:5b:6f:10:4e:21:5d:
42:13:8c:48:94:ce:de:a1:52:41:84:93:75:b8:3a:a9:e1:3e:
a6:9a:4f:15:e5:0b:cc:47:db:77:30:db:31:19:bb:dd:8b:1f:
d0:b1:eb:a3
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw
ODM1MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY0NkEyRjk2RDFBMDZF
N0NCQTRBQzIzNENBQjQ2MUQ1NUU3REVFQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBnora16EiXvSfkA9+QY7nLA0zRrv6pAnh07Q+BBBtao0+atD8
m+pkzzBZAIK34WQFcM2Jy4QKAFXsohKH9XjHi9LZO28pVjdGkt/Imjtoa4uLZOiy
2Uh89KeM5AoT6nvszXvlJex5uGmXJJZnxllCpKrB0YV+oxMRfqIvlJHiD+ZQe9/D
R/K6X+iaX4v5zGINcaSDCdRMf1Q3e1Pz3Xtu2IiVq4FSFwctv7YxsGpOdCYuYgLz
uJ7QDQZjjQoKKUIpRzJ/azbzimUHlGhMFKATggoqGdTL1lGOo1ZwZ0T5CbT7C2Vy
31ZRKNIuqg6OmbqCgnjcT2UkB2PNwihqQ+NPAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU9GovltGgbny6SsI0yrRh1V597r8wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy85R292bHRHZ2JueTZT
c0kweXJSaDFWNTk3cjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ+pMMA0GCSqGSIb3DQEBCwUAA4IBAQBS0jREv6KQoD+73wMO7N9U9GzNeTxC
1oNbQQMv+QdpztFSj1uAPlxlApPS9Oa1D5HpPrv4aMBgDRyPgczKOVmLnWLlypTV
huNRNvu6Sc1h7MFQjcXSK/6B/Q+ItMiyZjY0APXCnXtFJiNhHi1WeTmRC2RhqmRk
50GS/dv/HfN6MNPbk5wrDV2Et0LqmDUxbQQYqMU+GJJ4+sishdIAd2P+vIAS/kX4
tI0xd0tUgooQiceK5siJQz+/gqlME7HqB7/ddv+cnJdKisWmV3YVE7DuuGBbbxBO
IV1CE4xIlM7eoVJBhJN1uDqp4T6mmk8V5QvMR9t3MNsxGbvdix/Qseuj
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org