Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa
File: R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa (raw, json)
Hash identifier: ikYRCnrOnYtshgEOd/bwDGFTELhKL/5rZ1YahLKuaKY=
Subject key identifier: 47:E9:D7:DA:7E:4E:C4:C8:F9:D4:69:FA:9D:70:52:25:E0:19:0C:98
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 1032
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa
Signing time: Fri 01 Sep 2023 09:19:46 +0000
ROA not before: Fri 01 Sep 2023 09:19:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 48024
IP address blocks: 103.127.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4146 (0x1032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Sep 1 09:19:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=47E9D7DA7E4EC4C8F9D469FA9D705225E0190C98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d6:d9:0b:4d:75:97:82:b6:68:03:26:4b:7f:
24:4a:f6:eb:ce:ad:0d:46:0c:97:c7:5d:2f:7a:fe:
63:95:8b:86:30:11:e3:36:18:7d:6e:8a:5e:a7:6a:
e1:e7:64:0b:9d:60:f2:cf:db:64:ec:a2:ad:f7:77:
ea:30:ad:8d:6d:82:e4:63:61:43:02:ad:8e:ff:20:
f4:2a:40:0d:e5:58:5b:df:c9:3b:0a:b9:e6:2a:4f:
71:2f:ba:48:5e:ac:98:bf:5b:f1:0f:5e:76:06:68:
9e:55:0a:8c:4d:f8:9c:71:a7:80:31:06:0f:6e:21:
6b:e1:85:17:7d:68:20:35:e2:aa:b2:0e:a5:e4:5d:
6d:d2:22:7a:50:02:8f:20:c8:f8:2f:90:ec:f9:43:
ee:d6:71:f8:46:1d:1d:a5:4c:31:f8:c3:28:df:06:
06:51:29:ba:9c:25:e2:ab:da:66:3a:ba:5c:0b:fa:
1e:90:cf:c1:84:5f:77:4d:01:63:b3:4f:bf:7a:98:
59:b1:d6:d3:a9:9b:38:b7:5d:13:e3:71:04:65:f7:
cb:65:96:ee:15:52:5d:91:97:f9:d3:38:51:64:1c:
28:b4:ae:ae:65:79:c2:2d:31:6c:0c:f2:88:96:63:
e3:7d:de:a1:f2:ec:8a:1c:25:14:f8:1c:e9:c8:96:
f4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E9:D7:DA:7E:4E:C4:C8:F9:D4:69:FA:9D:70:52:25:E0:19:0C:98
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.240.0/22
Signature Algorithm: sha256WithRSAEncryption
61:1e:a9:b1:aa:c2:ef:5f:ad:9a:cb:58:74:9a:9d:ed:c7:28:
04:90:0d:b6:7b:eb:01:63:ff:46:b9:a6:f1:96:a6:1a:6c:09:
90:18:66:c0:33:e3:8a:8f:ee:29:81:85:39:f5:f8:2b:9b:22:
2f:8d:77:2c:24:ab:75:89:78:2f:c9:be:35:cc:41:23:8a:5c:
30:06:97:89:8a:d2:42:d9:b6:64:6d:1b:4d:59:a7:dd:cf:23:
c4:28:a0:88:1c:43:5c:2f:75:83:60:d1:ba:69:9f:05:84:cb:
54:3f:53:9d:5a:5f:65:ae:ce:14:18:00:09:1a:69:a4:d7:75:
67:9a:7e:c8:c9:2e:7e:99:fc:f1:ba:88:92:26:c6:76:38:47:
52:dc:71:d4:0b:ce:26:e4:ac:95:01:28:0d:e8:87:3f:94:c0:
ac:cd:00:c9:ed:70:23:89:3f:7a:28:db:8d:19:2f:70:97:98:
b8:76:ba:8c:a5:52:be:21:62:84:bd:29:4c:bb:22:b0:5f:7e:
1d:28:06:88:63:5e:a6:b2:5b:52:22:74:d2:73:15:b8:33:02:
4f:18:41:41:9a:60:ad:88:10:a7:ea:7f:29:bf:4a:5b:6e:ab:
92:91:4f:b2:61:44:f9:8f:71:dd:1e:eb:10:ed:b4:06:32:a9:
c3:b7:5c:37
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICEDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3
MjFDNUREMzQ1OURGRjg1MzQ4RjFCMzlEREE5REQ1MDU4NjIzNDAeFw0yMzA5MDEw
OTE5NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ3RTlEN0RBN0U0RUM0
QzhGOUQ0NjlGQTlENzA1MjI1RTAxOTBDOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCx1tkLTXWXgrZoAyZLfyRK9uvOrQ1GDJfHXS96/mOVi4YwEeM2
GH1uil6nauHnZAudYPLP22Tsoq33d+owrY1tguRjYUMCrY7/IPQqQA3lWFvfyTsK
ueYqT3EvukherJi/W/EPXnYGaJ5VCoxN+Jxxp4AxBg9uIWvhhRd9aCA14qqyDqXk
XW3SInpQAo8gyPgvkOz5Q+7WcfhGHR2lTDH4wyjfBgZRKbqcJeKr2mY6ulwL+h6Q
z8GEX3dNAWOzT796mFmx1tOpmzi3XRPjcQRl98tllu4VUl2Rl/nTOFFkHCi0rq5l
ecItMWwM8oiWY+N93qHy7IocJRT4HOnIlvSzAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUR+nX2n5OxMj51Gn6nXBSJeAZDJgwHwYDVR0jBBgwFoAUTnIcXdNFnf+FNI8b
Od2p3VBYYjQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ
TkcvVG5JY1hkTkZuZi1GTkk4Yk9kMnAzVkJZWWpRLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9UbkljWGRORm5mLUZOSThiT2QycDNWQllZalEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HSklORy9SLW5YMm41T3hNajUx
R242blhCU0plQVpESmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ3/wMA0GCSqGSIb3DQEBCwUAA4IBAQBhHqmxqsLvX62ay1h0mp3txygEkA22
e+sBY/9GuabxlqYabAmQGGbAM+OKj+4pgYU59fgrmyIvjXcsJKt1iXgvyb41zEEj
ilwwBpeJitJC2bZkbRtNWafdzyPEKKCIHENcL3WDYNG6aZ8FhMtUP1OdWl9lrs4U
GAAJGmmk13Vnmn7IyS5+mfzxuoiSJsZ2OEdS3HHUC84m5KyVASgN6Ic/lMCszQDJ
7XAjiT96KNuNGS9wl5i4drqMpVK+IWKEvSlMuyKwX34dKAaIY16msltSInTScxW4
MwJPGEFBmmCtiBCn6n8pv0pbbquSkU+yYUT5j3HdHusQ7bQGMqnDt1w3
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org