Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y5Nakt4ZPW461byay9KzZJhYygQ.roa
File: Y5Nakt4ZPW461byay9KzZJhYygQ.roa (raw, json)
Hash identifier: XGe1ehJvd8woWqqfpnKr9H13KIt5vmuDBUOPjQ2c/Ko=
Subject key identifier: 63:93:5A:92:DE:19:3D:6E:3A:D5:BC:9A:CB:D2:B3:64:98:58:CA:04
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1271
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y5Nakt4ZPW461byay9KzZJhYygQ.roa
Signing time: Tue 19 Dec 2023 16:40:48 +0000
ROA not before: Tue 19 Dec 2023 16:40:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 14618
IP address blocks: 103.123.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4721 (0x1271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Dec 19 16:40:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=63935A92DE193D6E3AD5BC9ACBD2B3649858CA04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:92:21:75:eb:43:5c:6e:a6:d9:98:96:1c:38:
8c:7d:a3:88:e2:e6:f6:aa:06:db:9f:27:c7:a3:36:
d3:aa:d4:c1:3e:9b:c7:e0:72:9c:41:c3:19:35:bb:
0f:b3:e6:e0:bf:8a:50:aa:38:17:2f:5c:cf:41:78:
3b:18:07:0c:f3:d8:53:a4:a6:bd:61:36:62:f3:fe:
17:d3:c3:64:7f:f4:17:c5:6b:0f:d4:a8:ab:d8:ac:
89:7a:8e:dc:eb:a6:cd:a4:2a:5c:67:55:14:d3:46:
1e:14:b4:41:3e:d5:7e:70:38:9c:f4:52:d4:c2:85:
58:8b:c4:6b:44:92:2e:45:68:bd:d2:5c:1d:59:07:
04:02:ed:2e:62:52:9d:26:3f:98:af:2b:fb:69:c7:
1f:9a:6f:38:fa:09:f4:5e:fb:2f:de:0f:08:25:07:
4a:e9:ae:b9:23:1b:c4:d5:55:2a:b2:b6:dc:e2:ec:
05:e1:45:2d:c6:b7:0b:ca:af:79:29:3c:df:40:36:
f6:c6:58:28:98:31:f6:89:1d:6b:6d:76:b3:0a:bd:
02:16:1c:f9:63:51:dc:2d:44:88:b8:91:a2:61:0b:
7c:6e:42:f9:64:27:6c:cc:bb:c1:d2:91:c7:c2:56:
84:b5:9a:09:e6:b9:31:32:ad:76:a9:0f:ab:a5:bb:
d7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:93:5A:92:DE:19:3D:6E:3A:D5:BC:9A:CB:D2:B3:64:98:58:CA:04
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y5Nakt4ZPW461byay9KzZJhYygQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.216.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a1:ab:19:c1:0a:59:3c:8e:6a:fd:fb:d7:50:04:17:e9:87:
30:73:e1:4a:13:97:3e:1a:36:52:82:64:73:2c:ed:44:1c:9f:
43:bb:66:d8:0e:43:01:35:86:71:66:08:04:d9:00:ff:50:1d:
11:bd:b0:b4:9f:45:2c:d5:95:60:82:35:44:8b:e3:3c:38:74:
50:b1:a7:ec:0a:3c:dc:b9:39:0b:e9:1d:26:aa:08:02:4e:1b:
67:be:c0:5e:af:13:cf:af:b2:09:8a:e4:f0:44:3e:8f:76:3d:
d0:16:61:b6:1d:82:2a:9e:4a:1e:c2:c7:78:c9:ec:77:b5:69:
32:94:8c:0e:3f:97:b1:91:11:07:16:66:33:50:67:e9:58:a1:
7a:d8:66:80:9c:65:65:95:b4:5a:22:a0:89:1e:ae:88:e2:78:
9a:17:6c:83:16:4d:6b:b5:97:f6:29:8f:51:63:f5:3f:f7:7c:
78:8a:4b:64:28:02:6d:19:d1:30:a0:67:69:17:42:b7:52:46:
10:dc:40:6f:0d:e2:96:aa:18:a4:b7:1a:97:19:fb:23:aa:1a:
aa:15:e4:3d:a1:ca:c9:95:99:c0:19:6d:73:89:ec:79:62:a6:
6c:97:ff:d7:17:bc:84:d6:ef:a1:44:d8:7f:de:37:f6:43:34:
cd:50:6f:0e
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5
QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzEyMTkx
NjQwNDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYzOTM1QTkyREUxOTNE
NkUzQUQ1QkM5QUNCRDJCMzY0OTg1OENBMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD2kiF160NcbqbZmJYcOIx9o4ji5vaqBtufJ8ejNtOq1ME+m8fg
cpxBwxk1uw+z5uC/ilCqOBcvXM9BeDsYBwzz2FOkpr1hNmLz/hfTw2R/9BfFaw/U
qKvYrIl6jtzrps2kKlxnVRTTRh4UtEE+1X5wOJz0UtTChViLxGtEki5FaL3SXB1Z
BwQC7S5iUp0mP5ivK/tpxx+abzj6CfRe+y/eDwglB0rprrkjG8TVVSqyttzi7AXh
RS3GtwvKr3kpPN9ANvbGWCiYMfaJHWttdrMKvQIWHPljUdwtRIi4kaJhC3xuQvlk
J2zMu8HSkcfCVoS1mgnmuTEyrXapD6ulu9e9AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUY5Nakt4ZPW461byay9KzZJhYygQwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf
9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv
Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9ZNU5ha3Q0WlBXNDYxYnlheTlL
elpKaFl5Z1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vY
MA0GCSqGSIb3DQEBCwUAA4IBAQCboasZwQpZPI5q/fvXUAQX6Ycwc+FKE5c+GjZS
gmRzLO1EHJ9Du2bYDkMBNYZxZggE2QD/UB0RvbC0n0Us1ZVggjVEi+M8OHRQsafs
CjzcuTkL6R0mqggCThtnvsBerxPPr7IJiuTwRD6Pdj3QFmG2HYIqnkoewsd4yex3
tWkylIwOP5exkREHFmYzUGfpWKF62GaAnGVllbRaIqCJHq6I4niaF2yDFk1rtZf2
KY9RY/U/93x4iktkKAJtGdEwoGdpF0K3UkYQ3EBvDeKWqhiktxqXGfsjqhqqFeQ9
ocrJlZnAGW1ziex5YqZsl//XF7yE1u+hRNh/3jf2QzTNUG8O
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:23 2024 by rpki-client on console-fra.rpki-client.org