Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/MHH43HTkhj6_F5Mwpyad6NmPHhM.roa
File: MHH43HTkhj6_F5Mwpyad6NmPHhM.roa (raw, json)
Hash identifier: /BzZp+3Xn/Ne/ypGUbC4+NFQebuk8rlyR9/28XGF6VE=
Subject key identifier: 30:71:F8:DC:74:E4:86:3E:BF:17:93:30:A7:26:9D:E8:D9:8F:1E:13
Certificate issuer: /CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Certificate serial: 0AE6
Authority key identifier: 36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/MHH43HTkhj6_F5Mwpyad6NmPHhM.roa
Signing time: Sun 07 Feb 2021 11:54:29 +0000
ROA not before: Sun 07 Feb 2021 11:54:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131670
IP address blocks: 103.140.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2790 (0xae6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Validity
Not Before: Feb 7 11:54:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3071F8DC74E4863EBF179330A7269DE8D98F1E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:29:a8:0d:7c:ab:c0:a7:39:1f:28:88:eb:8a:
ec:38:c1:f8:c9:a2:25:52:85:a1:44:e4:d3:04:e7:
f6:10:db:f7:ab:90:a9:4e:6f:e6:91:9a:80:32:88:
6a:40:cd:db:53:9b:8f:39:fd:68:98:01:02:7d:98:
c2:08:db:af:76:07:f8:46:2c:c6:5d:40:51:47:58:
36:c8:bf:82:b9:aa:f7:be:67:94:a7:bd:80:57:67:
0a:85:90:4e:53:6e:e1:ef:9f:0a:e4:45:34:d3:da:
d0:0e:00:b1:59:25:3f:00:f1:a7:95:85:b8:71:9c:
89:d4:7d:75:3a:b8:e0:24:06:a6:65:e0:e6:98:ab:
f5:54:66:55:39:32:67:52:19:a9:00:4f:6e:c5:24:
a6:6a:85:26:3d:f7:46:c6:31:4f:e2:a1:ba:70:8d:
8c:65:d0:ad:c8:23:4d:98:0e:be:8e:d4:41:f7:e3:
66:16:16:76:43:82:c3:87:30:1e:d4:74:0f:54:a8:
3a:ce:96:d6:53:ac:4f:71:f3:36:f3:f2:2d:7c:78:
34:ad:e9:3a:9b:c2:92:b4:6f:5e:76:95:c8:83:dd:
2e:70:80:1c:63:25:5f:49:b3:c5:38:2c:d4:98:e0:
fb:5c:a1:7f:b9:cc:36:ef:91:25:7f:bc:4d:bf:63:
61:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:71:F8:DC:74:E4:86:3E:BF:17:93:30:A7:26:9D:E8:D9:8F:1E:13
X509v3 Authority Key Identifier:
keyid:36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/Nkd2xo-bbNyggOJrAfMYfgcvXJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/MHH43HTkhj6_F5Mwpyad6NmPHhM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.111.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:43:bf:41:9a:9d:4d:b5:93:79:37:76:2b:53:a4:a2:8e:ea:
8d:63:57:7a:22:e4:6e:d9:42:d1:2d:00:4c:cf:ad:0b:12:93:
03:92:af:1a:01:26:0d:9f:a8:79:7c:43:db:53:9a:37:13:f5:
e1:a2:24:e2:94:56:7e:21:5d:ac:6a:12:67:ad:b7:a4:95:55:
67:fc:0c:4c:6b:26:24:c0:e0:9b:47:b1:f0:05:17:13:8d:ae:
2b:af:6c:8d:fe:35:31:71:a6:d0:4d:1b:a8:32:89:ec:b6:23:
d9:9f:ba:23:28:86:59:c2:8d:13:3e:02:f8:c0:05:ad:67:1b:
4c:0e:97:34:34:b6:95:60:22:68:2e:b8:75:40:ff:7b:fd:77:
76:f5:c6:04:08:4b:a4:d3:1a:2b:f2:91:4f:e6:e1:03:4a:14:
c6:e9:5d:cc:6f:7c:8b:62:6e:3b:64:06:65:91:0d:a6:6e:06:
30:ee:10:5d:84:3a:27:66:d7:49:75:8e:89:e6:fd:b4:6d:80:
03:74:c7:38:1f:ea:95:d6:8c:ad:0f:15:7c:f9:d5:cc:ee:1f:
da:55:96:51:73:cf:cc:f8:df:3a:37:89:b7:92:06:54:0a:6e:
a6:03:be:2e:3d:19:f1:d9:85:eb:fe:61:ad:3e:5f:56:a5:b2:
56:14:7e:03
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzY0
Nzc2QzY4RjlCNkNEQ0EwODBFMjZCMDFGMzE4N0UwNzJGNUM5OTAeFw0yMTAyMDcx
MTU0MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMwNzFGOERDNzRFNDg2
M0VCRjE3OTMzMEE3MjY5REU4RDk4RjFFMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDeKagNfKvApzkfKIjriuw4wfjJoiVShaFE5NME5/YQ2/erkKlO
b+aRmoAyiGpAzdtTm485/WiYAQJ9mMII2692B/hGLMZdQFFHWDbIv4K5qve+Z5Sn
vYBXZwqFkE5TbuHvnwrkRTTT2tAOALFZJT8A8aeVhbhxnInUfXU6uOAkBqZl4OaY
q/VUZlU5MmdSGakAT27FJKZqhSY990bGMU/iobpwjYxl0K3II02YDr6O1EH342YW
FnZDgsOHMB7UdA9UqDrOltZTrE9x8zbz8i18eDSt6TqbwpK0b152lciD3S5wgBxj
JV9Js8U4LNSY4PtcoX+5zDbvkSV/vE2/Y2ExAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUMHH43HTkhj6/F5Mwpyad6NmPHhMwHwYDVR0jBBgwFoAUNkd2xo+bbNyggOJr
AfMYfgcvXJkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9QUExF
Ui9Oa2QyeG8tYmJOeWdnT0pyQWZNWWZnY3ZYSmsuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL05rZDJ4by1iYk55Z2dPSnJBZk1ZZmdjdlhKay5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RPUFBMRVIvTUhINDNIVGtoajZfRjVN
d3B5YWQ2Tm1QSGhNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGeMbzANBgkqhkiG9w0BAQsFAAOCAQEAT0O/QZqdTbWTeTd2K1Okoo7qjWNXeiLk
btlC0S0ATM+tCxKTA5KvGgEmDZ+oeXxD21OaNxP14aIk4pRWfiFdrGoSZ623pJVV
Z/wMTGsmJMDgm0ex8AUXE42uK69sjf41MXGm0E0bqDKJ7LYj2Z+6IyiGWcKNEz4C
+MAFrWcbTA6XNDS2lWAiaC64dUD/e/13dvXGBAhLpNMaK/KRT+bhA0oUxuldzG98
i2JuO2QGZZENpm4GMO4QXYQ6J2bXSXWOieb9tG2AA3THOB/qldaMrQ8VfPnVzO4f
2lWWUXPPzPjfOjeJt5IGVApupgO+Lj0Z8dmF6/5hrT5fVqWyVhR+Aw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org