Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/dHFI8ElFcZB0N6pqISDi3DBDthQ.roa
File: dHFI8ElFcZB0N6pqISDi3DBDthQ.roa (raw, json)
Hash identifier: E5sT0Uo4FnWOzjo0WACYu2ls8HDJGuQPU4HgMNDPnjU=
Subject key identifier: 74:71:48:F0:49:45:71:90:74:37:AA:6A:21:20:E2:DC:30:43:B6:14
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0E0A
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/dHFI8ElFcZB0N6pqISDi3DBDthQ.roa
Signing time: Fri 01 Sep 2023 08:36:24 +0000
ROA not before: Fri 01 Sep 2023 08:36:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131641
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3594 (0xe0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 1 08:36:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=747148F0494571907437AA6A2120E2DC3043B614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:06:ee:bd:b4:8f:8e:70:26:80:8f:30:34:d8:
9d:16:be:b3:41:ff:58:f6:ab:5e:28:de:b0:76:86:
06:04:48:3a:72:08:fb:97:bc:b1:a5:bf:15:b8:e4:
e1:76:3b:7a:9e:2f:37:38:0d:73:b1:8f:b0:fb:af:
af:8e:a3:bc:c7:79:b5:e5:33:db:3f:10:82:df:44:
e5:d5:de:fd:93:0d:3a:99:d8:7e:b4:46:a1:7c:96:
e3:4c:4d:03:95:e1:ba:b4:b7:44:76:dc:e1:3c:69:
b8:b3:24:ad:08:b6:b2:36:15:b8:6f:22:99:e2:6b:
f6:a3:dd:db:7d:1a:dc:43:81:b8:09:fb:79:a1:22:
e8:63:70:d6:99:cf:a7:74:fd:6b:5c:ab:f5:da:ff:
ac:ad:2b:fc:97:71:64:41:3a:54:54:b9:89:7c:f2:
62:96:3c:aa:2f:56:fd:fc:5b:a9:71:d7:32:2b:7e:
ea:ea:17:1d:4e:e2:06:c6:48:0d:b1:9f:30:12:38:
4a:18:57:31:3d:f9:e8:e6:b1:30:b5:94:12:a7:2d:
38:2a:47:ca:33:4f:6b:e4:6f:7f:48:80:e3:b6:b0:
a4:26:d1:34:58:a6:e6:e8:5e:92:0d:27:e8:43:f3:
1f:2d:c7:79:17:a5:18:49:13:e8:83:6a:a0:cb:c8:
4a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:71:48:F0:49:45:71:90:74:37:AA:6A:21:20:E2:DC:30:43:B6:14
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/dHFI8ElFcZB0N6pqISDi3DBDthQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:be:6d:6e:c3:c6:74:c5:fd:31:93:cd:10:73:9c:d4:b5:b5:
0e:3d:47:31:a1:b2:06:99:28:89:e8:86:ce:16:bc:3a:1b:90:
85:e8:a2:ff:03:b7:80:d7:ec:52:9d:a9:4b:44:53:5f:d3:e8:
b1:43:f1:dd:4e:5b:2b:38:ba:6c:11:49:08:ad:01:ec:85:f2:
0d:aa:41:b5:db:8e:ef:87:1b:9e:5d:16:40:e4:8d:44:6a:08:
c0:69:fe:2a:c2:e5:29:7a:03:8d:b8:c4:c6:d1:b9:a0:4e:2f:
f7:c1:ad:2d:55:87:1a:4a:3e:7f:db:3c:cb:e6:f2:08:e8:5b:
b1:31:d3:f1:1c:f7:6a:00:35:3a:9a:3f:09:0d:46:59:e9:21:
d5:37:5c:00:44:4f:b5:1d:57:d5:39:65:f2:72:43:30:43:7e:
c4:b9:04:c5:6e:0f:94:fb:2c:94:fa:7e:3a:95:7a:7a:34:18:
4e:aa:bb:2f:9f:f9:49:f8:1b:2c:3a:e1:4b:69:48:82:69:69:
d9:93:dd:67:06:49:da:01:a8:15:31:72:7e:4d:79:2e:2f:f0:
28:d7:a2:b2:29:02:7c:d5:84:0d:ee:8f:4d:65:d3:0e:0a:96:
ab:5e:c0:0d:12:6f:8c:9d:a6:dc:ba:6c:63:62:51:c9:15:02:
89:1b:76:da
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICDgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG
MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw
ODM2MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc0NzE0OEYwNDk0NTcx
OTA3NDM3QUE2QTIxMjBFMkRDMzA0M0I2MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+Bu69tI+OcCaAjzA02J0WvrNB/1j2q14o3rB2hgYESDpyCPuX
vLGlvxW45OF2O3qeLzc4DXOxj7D7r6+Oo7zHebXlM9s/EILfROXV3v2TDTqZ2H60
RqF8luNMTQOV4bq0t0R23OE8abizJK0ItrI2FbhvIpnia/aj3dt9GtxDgbgJ+3mh
IuhjcNaZz6d0/Wtcq/Xa/6ytK/yXcWRBOlRUuYl88mKWPKovVv38W6lx1zIrfurq
Fx1O4gbGSA2xnzASOEoYVzE9+ejmsTC1lBKnLTgqR8ozT2vkb39IgOO2sKQm0TRY
puboXpINJ+hD8x8tx3kXpRhJE+iDaqDLyEr3AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUdHFI8ElFcZB0N6pqISDi3DBDthQwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75
mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ
RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2RIRkk4RWxGY1pCME42cHFJU0RpM0RC
RHRoUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ
KoZIhvcNAQELBQADggEBAFu+bW7DxnTF/TGTzRBznNS1tQ49RzGhsgaZKInohs4W
vDobkIXoov8Dt4DX7FKdqUtEU1/T6LFD8d1OWys4umwRSQitAeyF8g2qQbXbju+H
G55dFkDkjURqCMBp/irC5Sl6A424xMbRuaBOL/fBrS1VhxpKPn/bPMvm8gjoW7Ex
0/Ec92oANTqaPwkNRlnpIdU3XABET7UdV9U5ZfJyQzBDfsS5BMVuD5T7LJT6fjqV
eno0GE6quy+f+Un4Gyw64UtpSIJpadmT3WcGSdoBqBUxcn5NeS4v8CjXorIpAnzV
hA3uj01l0w4KlqtewA0Sb4ydpty6bGNiUckVAokbdto=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org