Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dtozVWTr4k6wqE2pmiWIXc-jtvQ.roa
File: dtozVWTr4k6wqE2pmiWIXc-jtvQ.roa (raw, json)
Hash identifier: 4tTx/wvOcFfn4EJ5rSIHG1LpnvDzWkXttKMlZaOJMEI=
Subject key identifier: 76:DA:33:55:64:EB:E2:4E:B0:A8:4D:A9:9A:25:88:5D:CF:A3:B6:F4
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 07A3
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dtozVWTr4k6wqE2pmiWIXc-jtvQ.roa
Signing time: Mon 10 Feb 2025 13:44:37 +0000
ROA not before: Mon 10 Feb 2025 13:44:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.122.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1955 (0x7a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 10 13:44:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=76DA335564EBE24EB0A84DA99A25885DCFA3B6F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:33:7a:ca:ff:86:3c:e5:39:0e:f4:40:07:1a:
1b:1d:5a:89:c6:36:70:55:2a:0f:25:62:61:77:37:
4d:c4:ee:07:13:d3:d6:7d:11:40:a0:8c:a9:a3:bb:
bb:05:26:ea:59:04:73:8e:4a:4c:96:ec:ce:f0:c1:
1f:06:f0:7d:0b:49:ef:23:81:f5:29:07:d0:8e:38:
0c:89:e2:ae:d7:ab:ef:03:21:0f:2e:6e:d2:5d:b8:
bc:f8:8f:db:7e:a6:5d:56:4e:3b:34:3f:79:a0:b4:
40:14:69:fd:b9:67:d9:db:7c:0d:08:38:82:f0:0b:
b9:26:ae:f0:b4:cb:45:42:1b:51:6d:a8:eb:50:91:
71:5e:4c:0e:d6:4f:af:dd:aa:f3:8d:4c:8c:14:4e:
2f:ab:1b:e2:37:ad:fa:02:30:e9:1c:40:23:d4:3b:
0d:05:09:9e:7c:9d:fc:07:d9:31:92:31:bd:e9:b8:
2f:59:08:59:ec:5e:65:f2:de:9e:10:af:c3:62:45:
e9:4c:35:9e:b8:19:8f:e1:e1:95:19:d8:aa:9a:ab:
84:97:f8:c7:21:f5:cb:38:ce:81:4a:43:24:13:ae:
c8:cf:55:ff:82:f2:0c:9d:f8:30:4e:06:bc:6e:df:
26:d8:ae:01:fb:09:9f:7f:84:c0:40:a6:81:44:c6:
13:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DA:33:55:64:EB:E2:4E:B0:A8:4D:A9:9A:25:88:5D:CF:A3:B6:F4
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dtozVWTr4k6wqE2pmiWIXc-jtvQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.191.0/24
Signature Algorithm: sha256WithRSAEncryption
66:1e:35:2b:ed:2d:b4:83:36:84:d8:9f:d2:82:03:9e:4f:f0:
44:9e:c4:aa:a2:2e:41:fa:9d:a0:d7:1b:1c:85:a8:6a:3b:a5:
9d:d2:91:53:ff:d8:46:d0:6f:4b:35:88:4a:76:23:ca:b3:64:
03:43:b1:c3:71:5c:df:4e:54:c9:b5:bf:0e:28:7c:db:9c:e6:
73:e5:a3:69:25:ab:de:03:ab:fb:5f:c5:c7:5f:2b:b5:a6:45:
97:a0:a6:59:7d:b8:26:3d:2d:2a:fa:f7:90:17:10:bf:48:21:
bc:b2:78:21:e3:41:4f:47:75:53:89:6b:a1:c6:1f:aa:25:2e:
72:1f:14:ce:08:4b:04:19:15:21:66:09:60:9f:af:1b:66:37:
1c:c8:fd:75:d7:44:45:60:bc:92:cb:1d:66:b0:e2:8b:e2:73:
62:74:09:0e:3b:86:4f:6b:35:60:9e:97:0b:b2:78:f0:1e:ba:
0b:80:8d:f3:c5:cb:ef:0f:c8:fa:c7:38:4a:6a:e6:b9:00:58:
1f:98:29:ad:2a:ea:27:06:6a:9b:0d:01:30:69:35:dc:16:bd:
0a:9a:5b:4f:6f:27:a4:87:f9:4f:32:b1:87:b2:f9:36:62:17:
57:37:f8:9d:bd:15:75:25:9a:79:77:5d:e5:a8:bd:15:54:b0:
d4:84:d8:c0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx
MzQ0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2REEzMzU1NjRFQkUy
NEVCMEE4NERBOTlBMjU4ODVEQ0ZBM0I2RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBM3rK/4Y85TkO9EAHGhsdWonGNnBVKg8lYmF3N03E7gcT09Z9
EUCgjKmju7sFJupZBHOOSkyW7M7wwR8G8H0LSe8jgfUpB9COOAyJ4q7Xq+8DIQ8u
btJduLz4j9t+pl1WTjs0P3mgtEAUaf25Z9nbfA0IOILwC7kmrvC0y0VCG1FtqOtQ
kXFeTA7WT6/dqvONTIwUTi+rG+I3rfoCMOkcQCPUOw0FCZ58nfwH2TGSMb3puC9Z
CFnsXmXy3p4Qr8NiRelMNZ64GY/h4ZUZ2Kqaq4SX+Mch9cs4zoFKQyQTrsjPVf+C
8gyd+DBOBrxu3ybYrgH7CZ9/hMBApoFExhMDAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUdtozVWTr4k6wqE2pmiWIXc+jtvQwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2R0b3pWV1RyNGs2d3FFMnBt
aVdJWGMtanR2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
er8wDQYJKoZIhvcNAQELBQADggEBAGYeNSvtLbSDNoTYn9KCA55P8ESexKqiLkH6
naDXGxyFqGo7pZ3SkVP/2EbQb0s1iEp2I8qzZANDscNxXN9OVMm1vw4ofNuc5nPl
o2klq94Dq/tfxcdfK7WmRZegpll9uCY9LSr695AXEL9IIbyyeCHjQU9HdVOJa6HG
H6olLnIfFM4ISwQZFSFmCWCfrxtmNxzI/XXXREVgvJLLHWaw4ovic2J0CQ47hk9r
NWCelwuyePAeuguAjfPFy+8PyPrHOEpq5rkAWB+YKa0q6icGapsNATBpNdwWvQqa
W09vJ6SH+U8ysYey+TZiF1c3+J29FXUlmnl3XeWovRVUsNSE2MA=
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:34:52 2025 by rpki-client