Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/1_VJVQZHH8MB6dDN7FRMYkj2zEk.roa
File: 1_VJVQZHH8MB6dDN7FRMYkj2zEk.roa (raw, json)
Hash identifier: 8psA0NnhzgkArEaUrVEJ/PKE7h3oFz3YvgSj6W7b8fc=
Subject key identifier: D7:F5:49:55:06:47:1F:C3:01:E9:D0:CD:EC:54:4C:62:48:F6:CC:49
Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E
Certificate serial: 0D86
Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/1_VJVQZHH8MB6dDN7FRMYkj2zEk.roa
Signing time: Fri 17 Nov 2023 02:39:43 +0000
ROA not before: Fri 17 Nov 2023 02:39:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131633
IP address blocks: 103.135.20.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3462 (0xd86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E
Validity
Not Before: Nov 17 02:39:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D7F5495506471FC301E9D0CDEC544C6248F6CC49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:de:35:d6:03:6e:38:fb:73:63:90:ce:a4:7a:
55:9a:c1:7e:55:30:04:02:33:99:88:b3:c2:ae:12:
de:75:6b:6d:6a:31:7e:de:d4:08:83:be:54:54:2c:
bc:db:10:0c:ba:ab:cc:6a:50:be:8f:e7:69:07:98:
9a:fa:e9:a6:11:2f:cb:b1:d5:58:b9:a8:de:94:f5:
3a:a7:b0:8a:89:d5:28:43:0d:ff:0d:53:ba:7c:29:
55:e8:aa:49:a7:c0:dc:c4:c7:de:1c:c0:c8:f1:18:
55:63:52:49:5d:2e:f3:47:1b:41:5f:a3:bd:ef:33:
a1:bf:d4:e8:49:ee:ac:9d:db:e3:db:bb:07:2d:1c:
87:52:87:d1:2b:94:e3:6a:93:c2:f1:0a:b2:54:fb:
57:59:ba:44:cb:7b:88:8c:2d:94:fe:52:42:a2:1a:
f3:49:3c:7f:75:7b:dd:67:98:35:4f:6a:02:50:b6:
71:1f:0c:24:ce:24:ec:df:bd:66:93:19:ae:27:7f:
b7:54:de:22:47:71:ed:09:6f:4e:b9:46:50:6b:76:
8c:2f:6f:c8:5a:d3:3a:80:6d:8f:00:0f:8e:74:70:
d2:c7:d4:73:29:8d:2d:e1:87:d3:c4:e1:3f:82:6c:
d0:d1:2e:74:a7:cd:cc:f2:be:1c:75:76:84:9e:49:
3d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F5:49:55:06:47:1F:C3:01:E9:D0:CD:EC:54:4C:62:48:F6:CC:49
X509v3 Authority Key Identifier:
keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/1_VJVQZHH8MB6dDN7FRMYkj2zEk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.20.0/22
Signature Algorithm: sha256WithRSAEncryption
04:37:b7:73:fe:64:d3:d0:36:1c:20:b0:c0:00:3d:ec:ae:ae:
62:fa:cb:85:e1:09:26:a4:94:ee:e8:41:12:a4:7a:6b:4a:1e:
25:1e:6e:e9:66:de:b9:70:db:f5:0a:83:63:88:38:e0:92:fd:
ce:f5:d1:aa:e7:01:a1:5f:f2:db:dc:c8:6a:72:dd:ca:9b:c4:
d7:88:e8:b4:cb:99:da:87:1d:31:d0:ce:86:65:0a:f9:96:9c:
25:13:dc:1c:9c:e2:c7:0e:a3:62:9d:af:85:f8:f5:6a:0c:b1:
3e:2b:10:8d:79:b6:25:af:1a:6e:08:cc:3d:70:b1:d3:a0:2c:
1f:9e:e9:8d:a1:ed:84:6b:00:34:ba:2b:6a:cd:88:a2:e3:15:
09:fb:6c:f1:0c:bb:03:46:d6:8c:7a:de:7d:c2:c9:7b:ac:e4:
08:8c:42:ed:e6:c8:7b:b3:73:a3:df:a0:6a:d8:71:ba:de:77:
56:8f:8c:7e:56:fe:55:8e:2a:3f:b5:b4:fb:a2:ab:a8:9c:ac:
ca:a0:0b:44:bc:78:6a:49:19:21:5f:48:2d:c2:78:8f:66:ee:
17:8b:3c:07:d8:2a:3d:fc:f6:cc:ca:eb:84:b6:41:fb:e3:da:
39:3e:01:41:f4:27:2d:6f:35:78:1d:e3:ef:0f:25:14:5e:b1:
d7:d8:ba:e8
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4
RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yMzExMTcw
MjM5NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ3RjU0OTU1MDY0NzFG
QzMwMUU5RDBDREVDNTQ0QzYyNDhGNkNDNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC53jXWA244+3NjkM6kelWawX5VMAQCM5mIs8KuEt51a21qMX7e
1AiDvlRULLzbEAy6q8xqUL6P52kHmJr66aYRL8ux1Vi5qN6U9TqnsIqJ1ShDDf8N
U7p8KVXoqkmnwNzEx94cwMjxGFVjUkldLvNHG0Ffo73vM6G/1OhJ7qyd2+Pbuwct
HIdSh9ErlONqk8LxCrJU+1dZukTLe4iMLZT+UkKiGvNJPH91e91nmDVPagJQtnEf
DCTOJOzfvWaTGa4nf7dU3iJHce0Jb065RlBrdowvb8ha0zqAbY8AD450cNLH1HMp
jS3hh9PE4T+CbNDRLnSnzczyvhx1doSeST33AgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQU1/VJVQZHH8MB6dDN7FRMYkj2zEkwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/
fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ
TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vMV9WSlZRWkhI
OE1CNmRETjdGUk1Za2oyekVrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAmeHFDANBgkqhkiG9w0BAQsFAAOCAQEABDe3c/5k09A2HCCwwAA97K6u
YvrLheEJJqSU7uhBEqR6a0oeJR5u6WbeuXDb9QqDY4g44JL9zvXRqucBoV/y29zI
anLdypvE14jotMuZ2ocdMdDOhmUK+ZacJRPcHJzixw6jYp2vhfj1agyxPisQjXm2
Ja8abgjMPXCx06AsH57pjaHthGsANLoras2IouMVCfts8Qy7A0bWjHrefcLJe6zk
CIxC7ebIe7Nzo9+gathxut53Vo+Mflb+VY4qP7W0+6KrqJysyqALRLx4akkZIV9I
LcJ4j2buF4s8B9gqPfz2zMrrhLZB++PaOT4BQfQnLW81eB3j7w8lFF6x19i66A==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org