Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/i3-Djc3s6dbrCf915FVa1w5jrvU.roa
File: i3-Djc3s6dbrCf915FVa1w5jrvU.roa (raw, json)
Hash identifier: Ae6yyQlPPQDhOZfPTLlTfxygVRxLEBe8c8oP0sUEkBU=
Subject key identifier: 8B:7F:83:8D:CD:EC:E9:D6:EB:09:FF:75:E4:55:5A:D7:0E:63:AE:F5
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 0136
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/i3-Djc3s6dbrCf915FVa1w5jrvU.roa
Signing time: Fri 01 Sep 2023 08:49:56 +0000
ROA not before: Fri 01 Sep 2023 08:49:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 56850
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310 (0x136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Sep 1 08:49:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8B7F838DCDECE9D6EB09FF75E4555AD70E63AEF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7a:b0:a0:fd:ac:d3:d1:08:8a:88:f2:1c:3e:
45:20:27:00:82:f0:7d:3a:c2:7a:35:13:9c:54:f8:
22:91:c1:2b:73:60:32:5b:86:81:5e:34:af:ea:8a:
ba:84:55:b6:46:9d:e9:6d:c6:75:05:f2:7c:fb:e7:
99:4f:03:ee:67:84:1f:ed:94:20:ca:93:70:99:9d:
8e:42:0a:2e:58:0f:9b:45:54:a4:9a:10:02:a3:d4:
8e:b3:e9:c9:dd:79:d6:61:8c:d8:2c:07:fd:84:5d:
44:cd:e1:5e:ae:5e:f6:89:c0:31:8f:fa:e9:6c:2a:
ab:d3:9e:62:d9:c5:d0:8b:2d:c7:cc:98:f5:f9:89:
74:55:10:c5:d5:80:c2:3c:95:5c:4c:44:76:0d:99:
90:3b:ff:5e:51:08:88:04:70:2d:3e:83:a9:a5:34:
cc:4f:4a:2e:7e:47:c5:49:5b:a9:fb:23:95:b1:21:
19:b6:f0:d3:66:e2:d2:84:38:14:51:90:06:90:54:
11:c9:73:0b:a7:0c:0b:fb:aa:10:da:24:88:91:40:
2f:1c:a3:2d:17:c8:34:4d:2f:91:b9:d4:96:ee:d9:
e7:50:78:47:2f:b8:2a:c9:9c:b3:2c:8d:ed:b2:b5:
46:51:86:6d:9b:b9:62:28:7f:92:29:f6:fa:d8:73:
c6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7F:83:8D:CD:EC:E9:D6:EB:09:FF:75:E4:55:5A:D7:0E:63:AE:F5
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/i3-Djc3s6dbrCf915FVa1w5jrvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:e1:ef:f6:8a:0b:81:0f:7d:ce:93:c8:ba:84:27:aa:43:05:
9a:9a:c9:33:d4:25:8c:f3:cd:34:de:c3:58:19:6a:4f:69:62:
66:78:f2:16:53:7e:61:fa:ab:99:de:f3:16:06:53:dd:bf:fe:
32:7c:7a:19:41:a7:46:4a:10:80:f6:e8:ed:7d:4d:ab:ab:de:
33:40:4f:ab:f0:ed:0f:46:7e:8c:3c:09:84:d9:34:41:3f:ce:
7f:b0:92:1c:20:95:51:ef:66:94:d5:41:da:cf:21:1d:21:6a:
00:1b:74:67:a3:d3:85:10:08:1d:15:66:fa:e4:31:cb:12:3b:
9f:89:48:76:36:1d:62:ac:02:a9:be:34:99:81:df:f1:73:35:
f6:22:a5:ab:e3:98:82:dd:da:6a:0f:7b:b5:54:ce:b4:b4:72:
61:ef:91:d7:bf:0a:07:23:e1:17:5b:05:87:42:2b:74:67:05:
8f:d7:4d:bd:d8:37:ba:ac:b7:00:16:01:06:c3:3e:2a:cc:8d:
32:39:43:31:1f:2d:20:89:73:37:ae:7a:2d:1c:e9:1b:87:bc:
87:66:47:27:9b:f0:b0:c4:72:b5:61:5c:76:2e:e2:e3:d7:60:
77:36:a4:a0:bb:74:20:87:ca:a1:6f:d1:fc:70:a8:55:b2:43:
9c:df:f8:ee
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICATYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG
NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yMzA5MDEw
ODQ5NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhCN0Y4MzhEQ0RFQ0U5
RDZFQjA5RkY3NUU0NTU1QUQ3MEU2M0FFRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFerCg/azT0QiKiPIcPkUgJwCC8H06wno1E5xU+CKRwStzYDJb
hoFeNK/qirqEVbZGneltxnUF8nz755lPA+5nhB/tlCDKk3CZnY5CCi5YD5tFVKSa
EAKj1I6z6cndedZhjNgsB/2EXUTN4V6uXvaJwDGP+ulsKqvTnmLZxdCLLcfMmPX5
iXRVEMXVgMI8lVxMRHYNmZA7/15RCIgEcC0+g6mlNMxPSi5+R8VJW6n7I5WxIRm2
8NNm4tKEOBRRkAaQVBHJcwunDAv7qhDaJIiRQC8coy0XyDRNL5G51Jbu2edQeEcv
uCrJnLMsje2ytUZRhm2buWIof5Ip9vrYc8a5AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUi3+Djc3s6dbrCf915FVa1w5jrvUwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg
BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO
Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9pMy1EamMzczZkYnJD
ZjkxNUZWYTF3NWpydlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQC84e/2iguBD33Ok8i6hCeqQwWamskz
1CWM88003sNYGWpPaWJmePIWU35h+quZ3vMWBlPdv/4yfHoZQadGShCA9ujtfU2r
q94zQE+r8O0PRn6MPAmE2TRBP85/sJIcIJVR72aU1UHazyEdIWoAG3Rno9OFEAgd
FWb65DHLEjufiUh2Nh1irAKpvjSZgd/xczX2IqWr45iC3dpqD3u1VM60tHJh75HX
vwoHI+EXWwWHQit0ZwWP10292De6rLcAFgEGwz4qzI0yOUMxHy0giXM3rnotHOkb
h7yHZkcnm/CwxHK1YVx2LuLj12B3NqSgu3Qgh8qhb9H8cKhVskOc3/ju
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org