Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/xedW4iKso6LuvrEHP_2sgw-T3GA.roa
File: xedW4iKso6LuvrEHP_2sgw-T3GA.roa (raw, json)
Hash identifier: /FiKctAooLy1bvV+1xwNpyWlwz+PCJd+kO+siaBD9nw=
Subject key identifier: C5:E7:56:E2:22:AC:A3:A2:EE:BE:B1:07:3F:FD:AC:83:0F:93:DC:60
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 010E
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/xedW4iKso6LuvrEHP_2sgw-T3GA.roa
Signing time: Mon 26 Aug 2024 05:25:37 +0000
ROA not before: Mon 26 Aug 2024 05:25:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.208.196.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270 (0x10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Aug 26 05:25:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C5E756E222ACA3A2EEBEB1073FFDAC830F93DC60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:51:71:5a:70:44:20:aa:84:79:27:9a:fc:c0:
be:25:ef:cd:ce:48:68:48:d5:d8:13:95:9e:d0:79:
1d:ed:74:aa:60:5c:84:e1:e4:5b:e9:d4:07:f2:69:
ef:3b:50:d8:6a:0a:c5:ed:c5:fc:6b:d0:a4:2f:99:
79:02:0b:8d:79:a3:d6:9c:38:11:d3:96:ef:cf:b1:
86:65:5e:5c:32:e4:ae:64:4e:d1:d1:3a:e2:ce:30:
22:7b:99:e0:27:e1:8b:42:66:21:cc:2f:15:1f:e2:
0b:e0:b2:98:a1:91:a8:10:38:c4:d4:cc:ff:e9:6e:
c7:3f:a3:6b:c0:79:1d:cb:31:df:66:46:a9:a1:72:
5e:c8:a5:98:7d:a1:b2:2e:2f:39:6d:9d:b1:de:99:
c0:d3:b9:73:da:5e:4e:8c:f1:26:24:7a:65:b1:a8:
5a:24:a2:83:cf:8d:c8:6d:c5:a3:b6:56:0d:85:4b:
5b:88:6c:2f:24:b9:2c:15:94:74:b2:d1:b7:25:d2:
92:4a:39:cc:9a:44:bf:e9:df:f1:ab:3d:93:96:7e:
fd:bc:43:98:de:fe:5d:bd:46:ac:19:bc:a2:c2:23:
97:4e:34:fd:52:85:42:14:95:51:65:7a:39:1e:e0:
64:1c:11:21:15:e7:7d:87:27:ab:b3:15:8b:77:4a:
cf:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E7:56:E2:22:AC:A3:A2:EE:BE:B1:07:3F:FD:AC:83:0F:93:DC:60
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/xedW4iKso6LuvrEHP_2sgw-T3GA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.208.196.0/23
Signature Algorithm: sha256WithRSAEncryption
02:b6:5e:6b:7e:e1:19:f2:2b:be:2e:a4:e5:ba:ee:24:13:73:
c7:eb:6a:a3:ea:ac:4f:1d:70:50:68:9f:66:7a:fc:9f:3b:7b:
c6:ac:8d:16:41:a5:58:bf:c3:d0:07:78:92:33:09:93:c1:59:
b7:00:d2:da:86:58:c4:d1:17:97:eb:fe:9f:a2:d3:75:c2:e8:
3d:d0:73:c7:0b:3c:c4:af:53:d5:fb:19:14:25:a2:50:b2:47:
ac:d3:79:ca:c6:00:2f:bd:82:6f:06:c1:50:2a:1b:6c:cc:93:
5e:e3:25:3a:86:58:5b:b6:83:c8:b5:bb:5f:00:30:0b:5e:d7:
5c:8a:06:35:e8:98:2b:2f:6f:af:d1:9e:54:1e:89:65:bd:36:
b2:6c:ee:99:11:88:be:fe:f1:0a:72:f7:dd:98:12:57:c0:55:
fc:47:9c:b6:7b:38:28:7b:75:e2:52:20:e1:48:62:c2:3b:35:
9e:ec:76:79:22:79:d8:16:74:b7:f1:ae:99:85:8c:0b:9a:42:
d9:b6:07:64:d0:06:f9:58:cf:19:8a:18:8f:4e:14:2b:55:90:
6a:8a:7b:92:f1:86:b1:19:8e:2f:cc:79:20:b7:2a:45:fe:cb:
a8:04:ed:a3:e1:e1:a5:83:43:78:5c:20:87:d1:3f:8c:9f:3d:
6e:25:89:c7
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2
NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNDA4MjYw
NTI1MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1RTc1NkUyMjJBQ0Ez
QTJFRUJFQjEwNzNGRkRBQzgzMEY5M0RDNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAUXFacEQgqoR5J5r8wL4l783OSGhI1dgTlZ7QeR3tdKpgXITh
5Fvp1Afyae87UNhqCsXtxfxr0KQvmXkCC415o9acOBHTlu/PsYZlXlwy5K5kTtHR
OuLOMCJ7meAn4YtCZiHMLxUf4gvgspihkagQOMTUzP/pbsc/o2vAeR3LMd9mRqmh
cl7IpZh9obIuLzltnbHemcDTuXPaXk6M8SYkemWxqFokooPPjchtxaO2Vg2FS1uI
bC8kuSwVlHSy0bcl0pJKOcyaRL/p3/GrPZOWfv28Q5je/l29RqwZvKLCI5dONP1S
hUIUlVFlejke4GQcESEV532HJ6uzFYt3Ss9xAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUxedW4iKso6LuvrEHP/2sgw+T3GAwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+
SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U
Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcveGVkVzRpS3NvNkx1dnJF
SFBfMnNndy1UM0dBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AWfQxDANBgkqhkiG9w0BAQsFAAOCAQEAArZea37hGfIrvi6k5bruJBNzx+tqo+qs
Tx1wUGifZnr8nzt7xqyNFkGlWL/D0Ad4kjMJk8FZtwDS2oZYxNEXl+v+n6LTdcLo
PdBzxws8xK9T1fsZFCWiULJHrNN5ysYAL72CbwbBUCobbMyTXuMlOoZYW7aDyLW7
XwAwC17XXIoGNeiYKy9vr9GeVB6JZb02smzumRGIvv7xCnL33ZgSV8BV/Eectns4
KHt14lIg4Uhiwjs1nux2eSJ52BZ0t/GumYWMC5pC2bYHZNAG+VjPGYoYj04UK1WQ
aop7kvGGsRmOL8x5ILcqRf7LqATto+HhpYNDeFwgh9E/jJ89biWJxw==
-----END CERTIFICATE-----
Generated at Wed Apr 9 13:48:59 2025 by rpki-client