Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/14HqjdHXd5qKNS_E9qs_Syh3qPA.roa
File: 14HqjdHXd5qKNS_E9qs_Syh3qPA.roa (raw, json)
Hash identifier: oufCUWRVXs43yrZfpSnau2MgimbKWPXmnKJkxXSQN2w=
Subject key identifier: D7:81:EA:8D:D1:D7:77:9A:8A:35:2F:C4:F6:AB:3F:4B:28:77:A8:F0
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06D1
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/14HqjdHXd5qKNS_E9qs_Syh3qPA.roa
Signing time: Mon 26 Aug 2024 05:18:30 +0000
ROA not before: Mon 26 Aug 2024 05:18:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.122.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1745 (0x6d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D781EA8DD1D7779A8A352FC4F6AB3F4B2877A8F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:18:90:3c:29:fa:30:96:c7:3c:83:4f:1b:d3:
07:c6:78:b2:5d:96:0c:56:9d:27:cb:0f:7d:50:53:
ab:c4:a9:78:f0:13:0d:a9:1f:e4:6e:b6:75:42:c4:
a8:1e:60:1c:08:be:6b:23:d1:36:da:72:07:2d:a2:
75:36:c9:6b:56:8e:72:ea:13:7d:54:a0:c8:49:50:
db:41:76:31:be:6f:b2:19:02:49:cc:66:11:24:e7:
3a:30:a3:a5:aa:10:ba:ba:4e:50:73:87:1f:3f:2b:
c8:9d:0c:fa:0e:c5:ae:53:12:f3:55:02:45:50:d6:
b5:94:3a:38:58:ce:c9:d8:17:a2:49:dd:3e:c7:4b:
8f:1e:40:52:0f:49:ea:28:d8:4d:c7:9c:a3:04:51:
fe:ae:73:b3:e1:9b:65:2e:19:7e:fe:a5:eb:81:27:
50:e6:77:e9:d8:b0:72:4c:f9:2a:f2:0b:11:a9:23:
3c:9a:cc:ef:2b:0f:8d:f9:20:a3:2d:f8:85:3f:ed:
2f:38:91:6b:c0:53:8c:2a:97:f6:23:bb:0e:82:0c:
64:2d:3e:50:99:e2:a1:30:21:19:d0:2e:31:78:f9:
ac:01:51:fc:e9:a9:13:3b:33:2d:b1:f3:8f:40:25:
e1:19:23:16:ee:7c:1f:a6:a0:57:12:1c:2a:e0:7a:
87:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:81:EA:8D:D1:D7:77:9A:8A:35:2F:C4:F6:AB:3F:4B:28:77:A8:F0
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/14HqjdHXd5qKNS_E9qs_Syh3qPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.191.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b2:6d:38:fb:7b:7f:d0:73:ee:fb:ba:0d:4d:e3:23:c9:4d:
b8:26:30:f3:56:c9:43:fb:fe:a2:39:76:d8:47:ac:21:45:c9:
30:f0:c9:c7:47:7c:90:b1:d2:e3:11:5b:65:ca:ea:8b:8f:7c:
8b:59:90:1a:c0:df:e4:04:29:68:0d:e9:14:f9:91:2b:17:21:
d9:27:3b:46:76:30:52:6b:a2:b3:f5:12:9b:89:1d:7a:c3:68:
ee:60:8f:25:16:6b:cf:db:a4:a6:fe:41:ee:81:2c:84:10:66:
36:4e:f2:65:23:5f:fa:52:de:73:77:e8:2d:06:54:e2:71:da:
cd:e7:cf:65:74:ed:07:9a:ad:86:7a:cd:21:07:13:8c:78:d9:
5f:d9:98:79:64:5e:81:19:37:56:c1:08:65:4a:2a:bd:48:a6:
c5:1c:5b:87:1c:e4:be:90:b3:fc:33:a1:6f:a0:38:22:d8:64:
5f:09:2d:e5:ec:26:23:7c:88:e6:03:c0:78:65:5b:26:64:cd:
6a:7d:64:dc:26:6c:ea:38:0f:a6:29:c7:7f:74:ab:78:b0:45:
2e:16:7d:88:93:f1:e2:a3:af:75:1d:a4:71:6d:cb:b8:f5:6b:
fa:a5:11:1b:78:63:3b:c3:57:35:13:ec:61:d2:10:9a:e7:aa:
6c:57:04:e3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw
NTE4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3ODFFQThERDFENzc3
OUE4QTM1MkZDNEY2QUIzRjRCMjg3N0E4RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDGJA8Kfowlsc8g08b0wfGeLJdlgxWnSfLD31QU6vEqXjwEw2p
H+RutnVCxKgeYBwIvmsj0TbacgctonU2yWtWjnLqE31UoMhJUNtBdjG+b7IZAknM
ZhEk5zowo6WqELq6TlBzhx8/K8idDPoOxa5TEvNVAkVQ1rWUOjhYzsnYF6JJ3T7H
S48eQFIPSeoo2E3HnKMEUf6uc7Phm2UuGX7+peuBJ1Dmd+nYsHJM+SryCxGpIzya
zO8rD435IKMt+IU/7S84kWvAU4wql/Yjuw6CDGQtPlCZ4qEwIRnQLjF4+awBUfzp
qRM7My2x849AJeEZIxbufB+moFcSHCrgeoeVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU14HqjdHXd5qKNS/E9qs/Syh3qPAwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzE0SHFqZEhYZDVxS05TX0U5
cXNfU3loM3FQQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
er8wDQYJKoZIhvcNAQELBQADggEBAEeybTj7e3/Qc+77ug1N4yPJTbgmMPNWyUP7
/qI5dthHrCFFyTDwycdHfJCx0uMRW2XK6ouPfItZkBrA3+QEKWgN6RT5kSsXIdkn
O0Z2MFJrorP1EpuJHXrDaO5gjyUWa8/bpKb+Qe6BLIQQZjZO8mUjX/pS3nN36C0G
VOJx2s3nz2V07QearYZ6zSEHE4x42V/ZmHlkXoEZN1bBCGVKKr1IpsUcW4cc5L6Q
s/wzoW+gOCLYZF8JLeXsJiN8iOYDwHhlWyZkzWp9ZNwmbOo4D6Ypx390q3iwRS4W
fYiT8eKjr3UdpHFty7j1a/qlERt4YzvDVzUT7GHSEJrnqmxXBOM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:36 2025 by rpki-client