Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/SRQ0NHoZb1EOtZfCWIs4uMA5Z58.roa
File: SRQ0NHoZb1EOtZfCWIs4uMA5Z58.roa (raw, json)
Hash identifier: BJvXIAa32YJvRJ2/G4DeTB1zMRvwlxLl+x1HuTzYVjA=
Subject key identifier: 49:14:34:34:7A:19:6F:51:0E:B5:97:C2:58:8B:38:B8:C0:39:67:9F
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0C86
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/SRQ0NHoZb1EOtZfCWIs4uMA5Z58.roa
Signing time: Mon 10 Feb 2025 14:06:18 +0000
ROA not before: Mon 10 Feb 2025 14:06:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 48024
IP address blocks: 103.122.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3206 (0xc86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Feb 10 14:06:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=491434347A196F510EB597C2588B38B8C039679F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:2d:79:02:41:b5:1f:c0:5e:df:a6:5e:ef:
66:ab:a9:dd:b9:b0:87:dc:74:dd:89:9e:f3:15:8f:
60:db:04:30:89:ff:76:02:76:6c:d5:82:aa:e0:48:
b7:b2:f9:47:bc:f6:cb:e9:dc:03:6f:2e:c2:93:dc:
2f:3a:b3:b1:48:7a:c9:57:13:f0:c0:00:d3:8a:c3:
2b:f5:f7:f7:79:e5:63:88:51:9d:8a:86:d4:62:d1:
ee:c1:4a:14:e3:f3:8b:d4:d8:15:66:f6:bf:e7:71:
e7:fd:4b:f1:7a:88:9f:dc:38:37:40:c8:cf:c4:99:
4a:47:bf:15:62:6e:58:44:dd:e3:7b:57:6b:ae:9f:
73:b2:db:56:f9:9f:73:89:e8:dd:f2:10:4a:45:b3:
fa:82:74:df:cc:67:79:92:33:ad:58:38:19:ec:64:
04:98:7f:9b:2f:58:f9:41:86:a7:9a:29:4d:d8:3b:
24:02:fc:5c:b4:21:50:b5:ca:e0:89:94:b0:79:89:
dc:cd:51:d9:23:69:77:12:ea:df:be:c6:3e:1e:d5:
91:21:7e:69:10:a2:73:ac:9b:45:a9:6a:ee:45:36:
c8:50:d0:e8:56:70:39:0e:2c:5e:9a:97:6a:c9:79:
51:33:bb:7e:29:44:d0:43:8a:c2:0a:52:fc:5d:7f:
2f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:14:34:34:7A:19:6F:51:0E:B5:97:C2:58:8B:38:B8:C0:39:67:9F
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/SRQ0NHoZb1EOtZfCWIs4uMA5Z58.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.20.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:db:e2:cc:d3:b6:0d:23:aa:d8:09:78:c1:da:46:2c:72:2b:
46:b0:6a:92:95:d5:f6:4b:f0:14:f3:01:be:f0:48:f2:63:b0:
9f:fb:ba:f0:63:0c:01:08:4c:93:08:b8:2f:7c:84:55:4b:98:
44:7a:89:a7:b2:fb:28:99:2f:ac:c6:ab:04:df:f8:d4:ed:27:
cf:23:65:0e:9f:05:58:7b:91:17:08:38:24:b5:8a:a4:96:b4:
63:52:12:3d:f7:29:ce:86:b7:66:c8:a3:cd:64:27:fa:de:bf:
75:e0:ae:33:ba:c5:82:a0:42:0d:ad:08:15:4e:81:cb:05:9f:
1b:4e:5d:4d:3b:38:cb:a2:7f:c0:91:d4:bf:ea:4f:e5:e6:7a:
73:03:91:6a:b2:0e:f2:51:6f:e1:16:5f:f4:f2:e5:02:31:2e:
58:d7:d1:49:c2:0e:22:17:67:81:5c:ff:8a:d7:04:52:e0:be:
76:ff:0c:56:72:ec:a3:a0:04:96:be:b5:2f:56:45:71:15:18:
ac:10:84:99:50:99:e8:e4:8d:0b:a0:ca:fc:78:cb:e6:c0:fc:
14:4f:a6:bf:02:bf:36:11:f8:1e:0e:65:a8:d6:cc:e2:d2:27:
4e:74:02:e8:ce:dc:1a:3d:38:28:66:1a:bb:df:51:e6:f4:16:
25:73:a5:9f
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICDIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz
RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNTAyMTAx
NDA2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5MTQzNDM0N0ExOTZG
NTEwRUI1OTdDMjU4OEIzOEI4QzAzOTY3OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5nS15AkG1H8Be36Ze72arqd25sIfcdN2JnvMVj2DbBDCJ/3YC
dmzVgqrgSLey+Ue89svp3ANvLsKT3C86s7FIeslXE/DAANOKwyv19/d55WOIUZ2K
htRi0e7BShTj84vU2BVm9r/ncef9S/F6iJ/cODdAyM/EmUpHvxViblhE3eN7V2uu
n3Oy21b5n3OJ6N3yEEpFs/qCdN/MZ3mSM61YOBnsZASYf5svWPlBhqeaKU3YOyQC
/Fy0IVC1yuCJlLB5idzNUdkjaXcS6t++xj4e1ZEhfmkQonOsm0Wpau5FNshQ0OhW
cDkOLF6al2rJeVEzu34pRNBDisIKUvxdfy9TAgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUSRQ0NHoZb1EOtZfCWIs4uMA5Z58wHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt
+2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB
SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvU1JRME5Ib1pi
MUVPdFpmQ1dJczR1TUE1WjU4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAmd6FDANBgkqhkiG9w0BAQsFAAOCAQEAjdvizNO2DSOq2Al4wdpGLHIr
RrBqkpXV9kvwFPMBvvBI8mOwn/u68GMMAQhMkwi4L3yEVUuYRHqJp7L7KJkvrMar
BN/41O0nzyNlDp8FWHuRFwg4JLWKpJa0Y1ISPfcpzoa3ZsijzWQn+t6/deCuM7rF
gqBCDa0IFU6BywWfG05dTTs4y6J/wJHUv+pP5eZ6cwORarIO8lFv4RZf9PLlAjEu
WNfRScIOIhdngVz/itcEUuC+dv8MVnLso6AElr61L1ZFcRUYrBCEmVCZ6OSNC6DK
/HjL5sD8FE+mvwK/NhH4Hg5lqNbM4tInTnQC6M7cGj04KGYau99R5vQWJXOlnw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:46 2025 by rpki-client