Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/HY0TDNVtmOCr1NTIXLxswx-lcjw.roa
File: HY0TDNVtmOCr1NTIXLxswx-lcjw.roa (raw, json)
Hash identifier: d0HB10glckJKPKUMFOXknbsiG+aeCKJ3Djp0MdvEi0w=
Subject key identifier: 1D:8D:13:0C:D5:6D:98:E0:AB:D4:D4:C8:5C:BC:6C:C3:1F:A5:72:3C
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 059D
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/HY0TDNVtmOCr1NTIXLxswx-lcjw.roa
Signing time: Thu 12 Oct 2023 08:20:52 +0000
ROA not before: Thu 12 Oct 2023 08:20:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.122.188.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1437 (0x59d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Oct 12 08:20:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1D8D130CD56D98E0ABD4D4C85CBC6CC31FA5723C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:74:77:44:fc:b5:35:6d:f2:43:db:4c:48:97:
0f:7f:32:c1:85:3e:e5:39:d5:83:56:5d:8b:06:33:
e5:5d:39:a2:d3:09:e0:47:2b:ba:df:17:3a:21:f0:
58:ad:9b:f0:60:15:0a:fd:dd:38:67:4c:ac:6d:71:
0b:43:6a:57:76:bf:95:0e:aa:30:74:93:d3:e4:cd:
ee:b4:ce:41:92:a7:c0:5c:94:2e:0b:ae:f2:f6:6d:
87:15:77:f7:b6:33:ee:40:a5:5a:46:f1:c4:c3:53:
67:ac:c6:8d:b9:40:f1:07:98:19:b6:2a:b6:71:c2:
29:a1:a9:df:8d:c3:c9:c4:2c:df:41:83:86:cd:05:
e2:c4:f7:4d:8e:1c:ef:5e:ff:cc:f6:4e:f2:13:43:
8c:5e:e2:28:79:fc:c9:23:85:6c:b2:61:12:e9:53:
4d:c3:3f:53:85:fd:68:1d:2e:16:92:73:24:46:cd:
d3:15:3c:08:26:4c:59:c4:f2:74:12:04:a4:65:ac:
a5:6c:55:e2:8b:51:82:54:9b:0c:67:db:a5:f6:0c:
21:53:2c:bd:55:be:03:18:d9:1d:fd:05:51:64:5d:
f7:9e:78:b3:90:17:aa:67:78:08:64:65:0e:df:49:
36:70:ba:40:ac:75:cd:55:78:e6:94:a3:89:b6:99:
3e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8D:13:0C:D5:6D:98:E0:AB:D4:D4:C8:5C:BC:6C:C3:1F:A5:72:3C
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/HY0TDNVtmOCr1NTIXLxswx-lcjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/22
Signature Algorithm: sha256WithRSAEncryption
73:f4:7f:ae:1e:5c:94:0d:e2:16:1b:d9:a8:cc:66:e9:f0:86:
9b:db:06:d2:eb:5a:1f:32:f2:3a:44:d6:98:25:01:3e:7c:e2:
8c:82:68:91:6c:29:56:47:4a:ca:90:a5:b0:62:b1:1a:91:8b:
a3:38:a2:21:38:06:87:14:c6:37:f9:a8:83:bb:da:4f:dd:d2:
5a:7b:07:05:47:90:bf:18:c4:9e:c2:e1:a2:cd:83:94:c1:00:
f1:39:73:76:d7:e7:a5:5c:2c:f1:d4:24:38:ac:27:aa:c6:3c:
2c:9a:32:96:e0:31:7d:77:cb:43:f9:93:8c:d5:f5:e3:b2:b4:
2d:ad:94:be:8a:4d:1b:5e:b6:02:26:cc:2d:2c:46:83:5c:55:
4a:31:ea:42:82:a9:b5:31:33:da:1d:2e:8f:00:01:b3:0a:f9:
54:c5:dd:74:33:fd:0b:17:91:96:9b:51:c3:da:ea:d9:b0:64:
73:c6:ce:74:08:31:dd:4b:93:9f:a2:7d:52:bc:af:af:e9:ac:
71:be:dc:bb:de:58:ed:85:9a:bc:53:df:93:f2:6c:aa:e9:5d:
ee:89:65:a4:81:32:38:a2:0d:ac:0b:d6:54:50:b0:7b:fb:fa:
bc:e7:b7:49:b7:bb:b0:dc:16:03:62:17:33:b1:41:92:d4:cb:
c7:b9:53:c0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw
ODIwNTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFEOEQxMzBDRDU2RDk4
RTBBQkQ0RDRDODVDQkM2Q0MzMUZBNTcyM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkdHdE/LU1bfJD20xIlw9/MsGFPuU51YNWXYsGM+VdOaLTCeBH
K7rfFzoh8Fitm/BgFQr93ThnTKxtcQtDald2v5UOqjB0k9Pkze60zkGSp8BclC4L
rvL2bYcVd/e2M+5ApVpG8cTDU2esxo25QPEHmBm2KrZxwimhqd+Nw8nELN9Bg4bN
BeLE902OHO9e/8z2TvITQ4xe4ih5/MkjhWyyYRLpU03DP1OF/WgdLhaScyRGzdMV
PAgmTFnE8nQSBKRlrKVsVeKLUYJUmwxn26X2DCFTLL1VvgMY2R39BVFkXfeeeLOQ
F6pneAhkZQ7fSTZwukCsdc1VeOaUo4m2mT4rAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUHY0TDNVtmOCr1NTIXLxswx+lcjwwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0hZMFRETlZ0bU9DcjFOVElY
THhzd3gtbGNqdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn
erwwDQYJKoZIhvcNAQELBQADggEBAHP0f64eXJQN4hYb2ajMZunwhpvbBtLrWh8y
8jpE1pglAT584oyCaJFsKVZHSsqQpbBisRqRi6M4oiE4BocUxjf5qIO72k/d0lp7
BwVHkL8YxJ7C4aLNg5TBAPE5c3bX56VcLPHUJDisJ6rGPCyaMpbgMX13y0P5k4zV
9eOytC2tlL6KTRtetgImzC0sRoNcVUox6kKCqbUxM9odLo8AAbMK+VTF3XQz/QsX
kZabUcPa6tmwZHPGznQIMd1Lk5+ifVK8r6/prHG+3LveWO2FmrxT35PybKrpXe6J
ZaSBMjiiDawL1lRQsHv7+rznt0m3u7DcFgNiFzOxQZLUy8e5U8A=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org