Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/xJ-eq5qTPqoUsQXQ3RnV3McWsj8.roa
File: xJ-eq5qTPqoUsQXQ3RnV3McWsj8.roa (raw, json)
Hash identifier: S6yRmbmTNPitMVh0CQASf8i0YjErI2Kzrs5ZiRM2u0o=
Subject key identifier: C4:9F:9E:AB:9A:93:3E:AA:14:B1:05:D0:DD:19:D5:DC:C7:16:B2:3F
Certificate issuer: /CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Certificate serial: 0B84
Authority key identifier: 36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/xJ-eq5qTPqoUsQXQ3RnV3McWsj8.roa
Signing time: Wed 29 Sep 2021 02:53:52 +0000
ROA not before: Wed 29 Sep 2021 02:53:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131670
IP address blocks: 103.140.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2948 (0xb84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=364776C68F9B6CDCA080E26B01F3187E072F5C99
Validity
Not Before: Sep 29 02:53:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C49F9EAB9A933EAA14B105D0DD19D5DCC716B23F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:81:bb:8d:9e:e3:c3:ee:8c:b0:ae:22:94:22:
b4:6b:0a:36:59:a3:d9:23:81:ed:6a:09:cd:22:b8:
ab:12:85:e7:09:81:d5:fd:1c:0a:48:01:8c:7e:2f:
31:f5:cf:e0:c1:71:b6:ef:d4:0b:10:86:88:9a:2e:
17:16:08:07:dc:d6:d3:22:e3:b7:e3:14:d0:ab:d6:
57:91:42:85:3e:60:38:f2:1e:95:54:cd:25:2f:a0:
e4:27:c7:6e:6c:8c:3d:b0:7a:d2:e5:5f:07:7a:18:
25:16:e5:d9:5e:78:03:3b:1d:0c:5f:76:43:44:61:
9b:88:ec:fc:e4:84:93:00:85:46:eb:14:76:cc:23:
11:9d:80:f6:f5:77:4d:fb:0d:af:9c:ab:d4:d6:71:
2c:d8:bd:a0:36:13:26:20:2a:cf:7b:c1:c8:fc:85:
e3:5e:7a:7a:27:de:bb:3d:15:a6:91:71:81:b5:b6:
43:c9:c8:06:59:ce:32:58:88:d9:d3:47:4a:3c:39:
17:98:33:a7:32:60:e1:8c:81:44:e1:02:8e:5d:6c:
0a:38:a2:eb:ef:c2:43:92:bc:04:10:a0:9d:c0:90:
3f:93:0b:46:f3:dc:0e:71:8e:3a:c7:87:3d:87:d5:
ee:04:c1:95:7f:07:b3:49:70:4a:fb:f8:05:71:7d:
00:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9F:9E:AB:9A:93:3E:AA:14:B1:05:D0:DD:19:D5:DC:C7:16:B2:3F
X509v3 Authority Key Identifier:
keyid:36:47:76:C6:8F:9B:6C:DC:A0:80:E2:6B:01:F3:18:7E:07:2F:5C:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/Nkd2xo-bbNyggOJrAfMYfgcvXJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nkd2xo-bbNyggOJrAfMYfgcvXJk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOPPLER/xJ-eq5qTPqoUsQXQ3RnV3McWsj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.111.0/24
Signature Algorithm: sha256WithRSAEncryption
93:60:4f:5b:7e:77:17:37:e4:53:45:04:71:5d:2d:e6:93:ef:
f9:d2:35:e3:31:7a:76:06:1d:86:27:1a:a6:dc:0e:f3:9b:7d:
a8:e6:0f:f5:a4:6e:9c:ef:bc:fd:22:51:c1:0a:64:7b:ad:3e:
5b:3f:cd:bf:87:5e:d8:20:f5:e0:b4:d3:1e:cd:0c:9e:38:6f:
9d:bf:3a:3d:20:0e:72:d6:9e:6a:55:1a:a2:dc:23:61:c2:b4:
64:cc:8c:95:f5:ac:33:9b:97:4d:48:f1:6d:74:b5:fe:96:16:
69:25:b3:40:25:6c:9f:00:ec:bd:c0:7e:04:9d:1a:0d:39:cc:
a2:61:e6:3b:c3:77:3b:bf:9d:75:96:60:a6:97:d1:6f:56:c7:
15:7a:0d:e7:17:2f:85:ad:93:b1:bf:0e:78:a7:0f:be:a6:37:
64:dd:90:23:83:f2:92:07:3b:26:a7:40:3e:fa:1f:ae:17:e5:
70:50:39:a2:fc:0b:9a:3b:7b:56:48:a8:03:a1:4d:17:b5:d8:
5c:e4:2e:43:02:01:d2:6e:b5:1f:e7:0a:45:c1:fb:e3:21:34:
7c:a3:72:f8:16:4f:9d:28:a5:0e:a1:9d:65:e4:94:8b:4b:e9:
1c:ba:4e:e3:aa:b8:84:7c:9b:2c:d0:b8:a3:12:c8:a3:ec:17:
4b:80:4b:26
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzY0
Nzc2QzY4RjlCNkNEQ0EwODBFMjZCMDFGMzE4N0UwNzJGNUM5OTAeFw0yMTA5Mjkw
MjUzNTJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEM0OUY5RUFCOUE5MzNF
QUExNEIxMDVEMEREMTlENURDQzcxNkIyM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTgbuNnuPD7oywriKUIrRrCjZZo9kjge1qCc0iuKsShecJgdX9
HApIAYx+LzH1z+DBcbbv1AsQhoiaLhcWCAfc1tMi47fjFNCr1leRQoU+YDjyHpVU
zSUvoOQnx25sjD2wetLlXwd6GCUW5dleeAM7HQxfdkNEYZuI7PzkhJMAhUbrFHbM
IxGdgPb1d037Da+cq9TWcSzYvaA2EyYgKs97wcj8heNeenon3rs9FaaRcYG1tkPJ
yAZZzjJYiNnTR0o8OReYM6cyYOGMgUThAo5dbAo4ouvvwkOSvAQQoJ3AkD+TC0bz
3A5xjjrHhz2H1e4EwZV/B7NJcEr7+AVxfQBjAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUxJ+eq5qTPqoUsQXQ3RnV3McWsj8wHwYDVR0jBBgwFoAUNkd2xo+bbNyggOJr
AfMYfgcvXJkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9QUExF
Ui9Oa2QyeG8tYmJOeWdnT0pyQWZNWWZnY3ZYSmsuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL05rZDJ4by1iYk55Z2dPSnJBZk1ZZmdjdlhKay5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RPUFBMRVIveEotZXE1cVRQcW9Vc1FY
UTNSblYzTWNXc2o4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGeMbzANBgkqhkiG9w0BAQsFAAOCAQEAk2BPW353FzfkU0UEcV0t5pPv+dI14zF6
dgYdhicaptwO85t9qOYP9aRunO+8/SJRwQpke60+Wz/Nv4de2CD14LTTHs0Mnjhv
nb86PSAOctaealUaotwjYcK0ZMyMlfWsM5uXTUjxbXS1/pYWaSWzQCVsnwDsvcB+
BJ0aDTnMomHmO8N3O7+ddZZgppfRb1bHFXoN5xcvha2Tsb8OeKcPvqY3ZN2QI4Py
kgc7JqdAPvofrhflcFA5ovwLmjt7VkioA6FNF7XYXOQuQwIB0m61H+cKRcH74yE0
fKNy+BZPnSilDqGdZeSUi0vpHLpO46q4hHybLNC4oxLIo+wXS4BLJg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org