Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/ZrTvl08LYLj-qhciIqTCtvv9B90.roa
File: ZrTvl08LYLj-qhciIqTCtvv9B90.roa (raw, json)
Hash identifier: D5NHGY7YWfwtwtkWCEiq/OWYR3yjHHWAVvyMc9gtc9w=
Subject key identifier: 66:B4:EF:97:4F:0B:60:B8:FE:AA:17:22:22:A4:C2:B6:FB:FD:07:DD
Certificate issuer: /CN=6D1243152906B6566A2B3E19CC468E46DE709D04
Certificate serial: 0168
Authority key identifier: 6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/ZrTvl08LYLj-qhciIqTCtvv9B90.roa
Signing time: Mon 10 Feb 2025 13:43:49 +0000
ROA not before: Mon 10 Feb 2025 13:43:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.127.216.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360 (0x168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D1243152906B6566A2B3E19CC468E46DE709D04
Validity
Not Before: Feb 10 13:43:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=66B4EF974F0B60B8FEAA172222A4C2B6FBFD07DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a2:f0:d8:38:02:a9:c4:57:63:1f:80:6c:b7:
4a:ca:a5:7e:62:a0:64:8d:f9:7f:01:39:b4:78:d7:
b9:4b:d9:af:50:1f:66:b9:a6:99:a3:07:9c:70:21:
d9:1e:62:af:38:52:28:d2:94:24:24:5b:88:c2:e4:
f5:2c:4c:e1:e0:a7:7b:2e:69:cf:d5:e2:57:01:98:
94:77:04:fd:83:bf:3b:09:93:b9:a4:5c:e7:94:ff:
d8:54:02:77:1f:87:8e:69:5a:a8:d8:bd:88:18:42:
3b:30:18:09:25:b9:46:26:b2:2a:ef:d4:4d:05:7f:
94:5d:aa:bf:fe:2a:a3:fc:55:ce:df:3e:d5:18:87:
a3:0c:30:1a:e0:33:28:f2:f1:40:49:be:5a:f9:79:
e5:8f:f9:40:aa:ea:80:0b:70:52:6e:2a:a0:9d:14:
96:23:48:2d:3b:16:e1:a0:20:e9:d1:73:d4:b7:51:
82:49:cf:51:57:a3:94:1f:21:b7:9e:6a:21:02:63:
d4:de:eb:50:03:16:78:96:8b:f6:08:34:82:a0:01:
95:db:30:b4:d7:fa:60:6f:86:44:71:70:85:2d:87:
18:18:eb:40:d3:67:1f:ad:60:9c:18:c9:35:b4:5d:
94:80:b4:ed:93:d9:d7:b9:df:a6:cd:5a:28:04:66:
6e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B4:EF:97:4F:0B:60:B8:FE:AA:17:22:22:A4:C2:B6:FB:FD:07:DD
X509v3 Authority Key Identifier:
keyid:6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/ZrTvl08LYLj-qhciIqTCtvv9B90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.216.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:dd:1d:49:57:85:b7:3d:f4:c0:72:f3:9a:c2:16:a3:88:f9:
46:13:86:39:51:26:b9:97:27:92:eb:aa:bd:35:cd:2d:8a:68:
7d:ca:b0:a9:9e:15:96:2d:83:a4:21:49:5d:f8:fb:00:8a:8e:
12:1a:51:b5:a4:5f:3a:d0:28:e1:b8:cb:93:22:8b:b5:5c:d2:
4a:17:c5:e6:22:a2:4b:84:1f:a4:47:ef:30:0b:09:f8:fe:72:
ea:98:af:cb:32:cb:56:ae:f7:31:2d:5f:08:26:cf:ef:8f:a6:
a6:b1:c3:de:88:c1:d2:05:02:f7:10:41:80:c7:4c:78:df:1e:
10:d2:b2:38:1e:26:fd:ed:a5:6d:fb:52:d1:e8:04:3c:04:c0:
84:60:0d:fa:2b:4d:dc:bc:2f:e6:2a:61:20:55:27:30:24:8c:
ab:85:bd:2a:34:25:8d:ed:8d:fd:07:84:80:ec:57:9c:fd:97:
19:e4:d2:30:70:65:bf:fd:df:06:ba:78:cb:7c:72:55:3c:69:
8c:15:5f:27:c4:07:76:1e:94:fa:27:7f:15:98:b5:5a:e5:f4:
84:71:34:fd:fa:28:2d:de:7c:d1:d1:09:e6:84:24:6d:7e:e2:
33:4d:e6:32:73:59:33:54:d8:b4:b1:46:f5:b2:6a:a9:9c:46:
44:42:84:b8
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQx
MjQzMTUyOTA2QjY1NjZBMkIzRTE5Q0M0NjhFNDZERTcwOUQwNDAeFw0yNTAyMTAx
MzQzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2QjRFRjk3NEYwQjYw
QjhGRUFBMTcyMjIyQTRDMkI2RkJGRDA3REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqovDYOAKpxFdjH4Bst0rKpX5ioGSN+X8BObR417lL2a9QH2a5
ppmjB5xwIdkeYq84UijSlCQkW4jC5PUsTOHgp3suac/V4lcBmJR3BP2DvzsJk7mk
XOeU/9hUAncfh45pWqjYvYgYQjswGAkluUYmsirv1E0Ff5Rdqr/+KqP8Vc7fPtUY
h6MMMBrgMyjy8UBJvlr5eeWP+UCq6oALcFJuKqCdFJYjSC07FuGgIOnRc9S3UYJJ
z1FXo5QfIbeeaiECY9Te61ADFniWi/YINIKgAZXbMLTX+mBvhkRxcIUthxgY60DT
Zx+tYJwYyTW0XZSAtO2T2de536bNWigEZm6XAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUZrTvl08LYLj+qhciIqTCtvv9B90wHwYDVR0jBBgwFoAUbRJDFSkGtlZqKz4Z
zEaORt5wnQQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVTSEVO
R1hJTi9iUkpERlNrR3RsWnFLejRaekVhT1J0NXduUVEuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL2JSSkRGU2tHdGxacUt6NFp6RWFPUnQ1d25RUS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVU0hFTkdYSU4vWnJUdmwwOExZ
TGotcWhjaUlxVEN0dnY5QjkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAWd/2DANBgkqhkiG9w0BAQsFAAOCAQEAb90dSVeFtz30wHLzmsIWo4j5
RhOGOVEmuZcnkuuqvTXNLYpofcqwqZ4Vli2DpCFJXfj7AIqOEhpRtaRfOtAo4bjL
kyKLtVzSShfF5iKiS4QfpEfvMAsJ+P5y6pivyzLLVq73MS1fCCbP74+mprHD3ojB
0gUC9xBBgMdMeN8eENKyOB4m/e2lbftS0egEPATAhGAN+itN3Lwv5iphIFUnMCSM
q4W9KjQlje2N/QeEgOxXnP2XGeTSMHBlv/3fBrp4y3xyVTxpjBVfJ8QHdh6U+id/
FZi1WuX0hHE0/fooLd580dEJ5oQkbX7iM03mMnNZM1TYtLFG9bJqqZxGREKEuA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:22:01 2025 by rpki-client