Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/hNognpYR0AiGKFwyIm6d3XT1cfs.roa
File: hNognpYR0AiGKFwyIm6d3XT1cfs.roa (raw, json)
Hash identifier: MdfHrCTuN/RwYxSwN8aQNzi8FylB7h6PLjAhmEUCo8g=
Subject key identifier: 84:DA:20:9E:96:11:D0:08:86:28:5C:32:22:6E:9D:DD:74:F5:71:FB
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 12E1
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/hNognpYR0AiGKFwyIm6d3XT1cfs.roa
Signing time: Tue 30 Apr 2024 12:48:28 +0000
ROA not before: Tue 30 Apr 2024 12:48:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 215913
IP address blocks: 103.123.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4833 (0x12e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Apr 30 12:48:28 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=84DA209E9611D00886285C32226E9DDD74F571FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:90:9f:4a:96:ac:2f:4f:4b:67:0c:b4:4f:51:
67:3d:0a:27:c4:17:73:6b:d9:7e:36:eb:21:b0:36:
5b:59:55:52:88:98:92:4f:f1:c0:f1:d6:d3:94:1e:
28:09:75:e8:47:15:1c:4d:e2:24:6b:38:be:f6:12:
8a:10:94:1e:1b:8d:6d:35:75:b4:c8:9a:76:36:aa:
8a:7c:1d:4a:6e:77:8e:08:ca:f6:c8:91:22:ca:6a:
a6:c0:fb:aa:6e:10:f6:62:84:35:15:23:ef:61:a6:
b8:7b:29:c8:99:3a:0f:ae:96:24:90:e8:c2:38:3b:
6b:1d:cf:bc:60:0c:8e:cc:e4:1c:67:4f:d5:4b:82:
c7:c0:26:b7:cf:af:81:8e:df:a6:be:f8:fd:37:a0:
5e:dc:43:4f:0b:43:d6:e6:cf:2d:7f:1a:73:56:af:
c1:33:03:ff:26:b4:cf:12:67:ce:a4:34:9f:94:f2:
20:aa:9e:9a:24:c2:74:0e:86:68:15:bf:98:fb:d9:
15:31:bf:dc:fb:5c:e6:bd:77:df:ea:a7:c4:50:31:
e4:68:1c:e4:8b:23:20:85:d3:62:68:7c:25:ed:f2:
f3:69:49:a6:7e:c0:23:61:7b:ab:d2:c8:eb:f2:ae:
23:1a:3c:87:55:b2:7d:1f:ce:5d:58:f0:0a:f6:2b:
1c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DA:20:9E:96:11:D0:08:86:28:5C:32:22:6E:9D:DD:74:F5:71:FB
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/hNognpYR0AiGKFwyIm6d3XT1cfs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.218.0/24
Signature Algorithm: sha256WithRSAEncryption
52:08:a0:1f:29:e9:ac:7f:63:78:37:da:4d:51:43:05:df:7b:
85:63:22:76:97:8d:9a:7d:12:70:d7:7c:d6:ed:e8:20:48:a1:
1a:12:e0:1a:6a:be:88:be:b6:9a:b8:b8:9d:9f:d5:c5:4a:b9:
a2:db:da:af:93:0a:aa:0f:52:96:3f:20:b4:90:33:d4:6a:74:
6c:1e:3b:7b:5a:4e:ad:cc:70:5e:a3:3c:b1:42:1e:2f:4d:56:
c4:a3:5e:46:84:85:15:51:cb:7b:13:fe:d9:48:69:6d:3a:4a:
0c:9b:eb:7b:9d:0c:13:33:67:a8:51:03:ed:f4:13:2f:3d:40:
c9:08:ee:e0:f2:24:33:76:13:9d:6d:a0:f4:e6:af:8c:d8:6f:
1a:57:36:85:50:8c:7f:26:4a:59:11:62:55:27:71:1f:2f:b0:
79:76:79:7e:d8:83:ca:aa:47:1a:86:62:98:2a:15:57:bb:db:
0e:d2:13:fc:ac:b1:68:8b:14:ee:f6:dd:71:eb:17:1f:f5:0e:
7c:01:53:95:26:65:c2:a6:fa:72:fc:67:a1:a9:81:69:a4:56:
32:57:9b:a9:49:4a:fd:1b:77:2c:3a:f2:fd:73:3b:a4:a9:cb:
fa:88:e3:0d:76:03:69:5e:5d:f5:b8:8a:3b:fe:eb:9c:23:44:
da:bd:2a:54
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEuEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5
QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA0MzAx
MjQ4MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg0REEyMDlFOTYxMUQw
MDg4NjI4NUMzMjIyNkU5RERENzRGNTcxRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDakJ9KlqwvT0tnDLRPUWc9CifEF3Nr2X426yGwNltZVVKImJJP
8cDx1tOUHigJdehHFRxN4iRrOL72EooQlB4bjW01dbTImnY2qop8HUpud44IyvbI
kSLKaqbA+6puEPZihDUVI+9hprh7KciZOg+uliSQ6MI4O2sdz7xgDI7M5BxnT9VL
gsfAJrfPr4GO36a++P03oF7cQ08LQ9bmzy1/GnNWr8EzA/8mtM8SZ86kNJ+U8iCq
npokwnQOhmgVv5j72RUxv9z7XOa9d9/qp8RQMeRoHOSLIyCF02JofCXt8vNpSaZ+
wCNhe6vSyOvyriMaPIdVsn0fzl1Y8Ar2Kxy1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUhNognpYR0AiGKFwyIm6d3XT1cfswHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf
9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv
Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9oTm9nbnBZUjBBaUdLRnd5SW02
ZDNYVDFjZnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3va
MA0GCSqGSIb3DQEBCwUAA4IBAQBSCKAfKemsf2N4N9pNUUMF33uFYyJ2l42afRJw
13zW7eggSKEaEuAaar6IvraauLidn9XFSrmi29qvkwqqD1KWPyC0kDPUanRsHjt7
Wk6tzHBeozyxQh4vTVbEo15GhIUVUct7E/7ZSGltOkoMm+t7nQwTM2eoUQPt9BMv
PUDJCO7g8iQzdhOdbaD05q+M2G8aVzaFUIx/JkpZEWJVJ3EfL7B5dnl+2IPKqkca
hmKYKhVXu9sO0hP8rLFoixTu9t1x6xcf9Q58AVOVJmXCpvpy/GehqYFppFYyV5up
SUr9G3csOvL9czukqcv6iOMNdgNpXl31uIo7/uucI0TavSpU
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:16 2024 by rpki-client on console-ams.rpki-client.org