Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/Eo67fnPool11Rfw_IKCl1dgf9Gs.roa
File: Eo67fnPool11Rfw_IKCl1dgf9Gs.roa (raw, json)
Hash identifier: aU3BuZjTOGcbNeMxow8Sa4oaK7XKiY9f8/MjJzQvshI=
Subject key identifier: 12:8E:BB:7E:73:E8:A2:5D:75:45:FC:3F:20:A0:A5:D5:D8:1F:F4:6B
Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Certificate serial: 0B25
Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Eo67fnPool11Rfw_IKCl1dgf9Gs.roa
Signing time: Fri 01 Sep 2023 09:01:26 +0000
ROA not before: Fri 01 Sep 2023 09:01:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10085
IP address blocks: 103.252.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2853 (0xb25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Validity
Not Before: Sep 1 09:01:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=128EBB7E73E8A25D7545FC3F20A0A5D5D81FF46B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d6:bd:89:69:42:34:2f:6c:f4:2a:25:be:0c:
13:65:d2:b4:83:90:9a:fb:27:e4:69:2f:8a:35:d4:
a7:d0:2c:90:89:23:2d:46:24:c3:6f:2f:c9:83:dc:
13:66:b4:d4:69:2f:67:9c:69:ea:94:b5:6f:72:7e:
5b:3b:2c:c6:47:6f:fe:d8:0a:7f:8e:15:b1:9c:96:
7a:af:e5:90:ae:a1:3a:4c:62:5c:8b:21:51:34:6a:
43:77:1c:1a:f1:8a:e5:16:9f:5c:7d:dc:56:42:40:
3b:6a:4d:e5:2e:10:f0:e4:a1:9b:ac:75:f9:94:50:
18:90:7c:d3:ae:5d:57:4b:7e:81:17:a6:9d:3d:bf:
90:a3:17:9a:cc:0a:2b:17:b6:86:80:28:8b:31:6e:
3b:d0:51:88:94:a4:64:e4:10:2d:50:8a:20:c7:14:
0e:29:3f:7f:7e:ce:8d:c1:c2:11:69:9c:fd:c3:ec:
de:74:93:76:7e:5e:4b:86:55:30:2d:81:d8:d2:c3:
72:dc:bd:8d:fe:27:6f:23:0c:e9:01:13:31:c8:60:
6a:19:0c:27:46:95:ec:11:fb:35:e3:d7:d2:0b:95:
db:8d:83:35:f6:00:35:d8:75:37:50:13:55:d3:ab:
b9:8b:70:0c:81:a7:60:d6:c1:44:c4:8f:38:ed:a5:
70:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8E:BB:7E:73:E8:A2:5D:75:45:FC:3F:20:A0:A5:D5:D8:1F:F4:6B
X509v3 Authority Key Identifier:
keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Eo67fnPool11Rfw_IKCl1dgf9Gs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.252.128.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:e0:d0:10:ee:d9:98:76:3f:be:86:ff:27:f6:67:3b:61:8c:
63:6a:4b:d6:9d:2b:ed:ca:06:41:d1:83:e3:b1:cc:fa:6c:78:
86:c5:df:cc:d6:bc:b0:f7:09:5e:98:13:c2:b1:8a:b5:d4:ff:
85:db:5c:2f:31:d0:c3:5c:dc:17:30:e4:0b:a1:4d:8c:ce:87:
db:c3:37:42:c1:08:7e:87:0d:d4:e8:75:69:57:05:a9:48:0f:
b3:d9:86:10:a0:a2:d4:9a:63:e4:6a:5f:8a:30:cb:f4:a0:63:
c3:ff:1a:24:17:31:32:b3:db:c6:31:63:87:12:45:b0:e6:e5:
a3:3d:c3:84:76:a8:4e:5a:5a:44:a4:4a:7f:1a:dc:b5:a8:af:
b3:0b:35:29:69:90:d4:d1:df:c8:3f:5b:a9:ac:c4:79:02:61:
c1:91:b7:6d:5b:3a:f1:59:08:51:11:e3:cb:dd:fe:c9:ee:a2:
37:23:ac:be:d5:f9:2d:37:78:5e:27:b5:f2:cc:e0:96:69:dd:
f7:3f:56:8a:db:f1:ed:16:4c:14:90:a0:f1:0d:b6:3f:b7:87:
f1:7b:51:00:9f:01:fb:b2:b2:c5:f2:89:70:f3:6a:20:66:80:
c1:76:e6:8b:a6:39:72:bf:22:0f:94:70:5c:56:3c:e6:ec:fc:
01:1a:2f:ee
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEVB
RTJEMzMxRjJDNDI4MEMxNkFBOEJBRkUxNkZERENDRTM3MTVCNDAeFw0yMzA5MDEw
OTAxMjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDEyOEVCQjdFNzNFOEEy
NUQ3NTQ1RkMzRjIwQTBBNUQ1RDgxRkY0NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDA1r2JaUI0L2z0KiW+DBNl0rSDkJr7J+RpL4o11KfQLJCJIy1G
JMNvL8mD3BNmtNRpL2ecaeqUtW9yfls7LMZHb/7YCn+OFbGclnqv5ZCuoTpMYlyL
IVE0akN3HBrxiuUWn1x93FZCQDtqTeUuEPDkoZusdfmUUBiQfNOuXVdLfoEXpp09
v5CjF5rMCisXtoaAKIsxbjvQUYiUpGTkEC1QiiDHFA4pP39+zo3BwhFpnP3D7N50
k3Z+XkuGVTAtgdjSw3LcvY3+J28jDOkBEzHIYGoZDCdGlewR+zXj19ILlduNgzX2
ADXYdTdQE1XTq7mLcAyBp2DWwUTEjzjtpXBfAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUEo67fnPool11Rfw/IKCl1dgf9GswHwYDVR0jBBgwFoAUDq4tMx8sQoDBaqi6
/hb93M43FbQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0Rx
NHRNeDhzUW9EQmFxaTZfaGI5M000M0ZiUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
RHE0dE14OHNRb0RCYXFpNl9oYjkzTTQzRmJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0VvNjdmblBvb2wxMVJmd19JS0NsMWRn
ZjlHcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/IAwDQYJ
KoZIhvcNAQELBQADggEBAB7g0BDu2Zh2P76G/yf2ZzthjGNqS9adK+3KBkHRg+Ox
zPpseIbF38zWvLD3CV6YE8KxirXU/4XbXC8x0MNc3Bcw5AuhTYzOh9vDN0LBCH6H
DdTodWlXBalID7PZhhCgotSaY+RqX4owy/SgY8P/GiQXMTKz28YxY4cSRbDm5aM9
w4R2qE5aWkSkSn8a3LWor7MLNSlpkNTR38g/W6msxHkCYcGRt21bOvFZCFER48vd
/snuojcjrL7V+S03eF4ntfLM4JZp3fc/Vorb8e0WTBSQoPENtj+3h/F7UQCfAfuy
ssXyiXDzaiBmgMF25oumOXK/Ig+UcFxWPObs/AEaL+4=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org