Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/5MGoh8LFmowj7f6XsxbGqMA5qa8.roa
File: 5MGoh8LFmowj7f6XsxbGqMA5qa8.roa (raw, json)
Hash identifier: b1Y2Qe4vGv7/aH4IOP7Pgr6y/39BU/92Ek18qFhnr/0=
Subject key identifier: E4:C1:A8:87:C2:C5:9A:8C:23:ED:FE:97:B3:16:C6:A8:C0:39:A9:AF
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 1098
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/5MGoh8LFmowj7f6XsxbGqMA5qa8.roa
Signing time: Mon 17 Oct 2022 09:12:08 +0000
ROA not before: Mon 17 Oct 2022 09:12:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 103.123.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4248 (0x1098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Oct 17 09:12:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E4C1A887C2C59A8C23EDFE97B316C6A8C039A9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:f0:e6:15:c5:07:28:47:1d:b3:49:b1:66:
91:f7:21:b1:53:f5:53:c8:77:25:2a:07:f0:18:f7:
6d:d6:cc:ec:ce:0c:b8:c7:fa:6f:71:b7:dc:21:81:
f7:3c:29:9c:7d:b2:ac:a9:e6:34:4b:08:d2:e3:31:
f2:93:eb:d6:f1:23:f0:96:e7:8c:14:d9:5c:4c:d3:
46:ad:fb:79:16:80:e4:fe:98:92:58:00:7a:d5:7e:
7a:43:85:36:58:78:22:f4:da:e8:8c:cd:40:52:d2:
7d:66:38:62:6c:3e:25:f6:eb:ee:a3:4d:e7:cf:c9:
3b:bc:36:f2:23:02:fe:83:64:90:94:73:59:c6:b7:
12:e2:b7:92:d3:cd:0b:20:b0:75:ad:e1:36:5b:9f:
c3:7f:72:69:15:f1:f3:d3:71:b6:36:77:8e:7d:47:
c6:52:61:3a:bc:e9:b8:76:ae:56:63:9c:28:77:3a:
8e:02:77:78:8e:46:d2:20:28:3c:7b:cc:1d:0a:e4:
99:3d:4d:3e:16:49:da:47:d2:4b:e7:f8:8d:5b:0a:
33:aa:c9:61:d9:c0:83:14:4b:46:9b:62:64:3c:26:
46:d0:9b:32:12:0c:6f:32:6e:ce:a9:2f:f5:0b:c4:
3c:26:ab:46:2d:40:78:d7:cb:6e:d9:04:cb:e5:81:
43:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C1:A8:87:C2:C5:9A:8C:23:ED:FE:97:B3:16:C6:A8:C0:39:A9:AF
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/5MGoh8LFmowj7f6XsxbGqMA5qa8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.240.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:ea:4e:32:91:da:d8:38:2c:3c:69:83:2a:b2:77:60:45:94:
78:db:f9:5b:da:7f:67:4e:70:07:ee:d6:6d:e2:02:a5:52:ad:
1f:98:f8:fe:80:18:29:4e:3a:33:c6:62:1a:5b:ea:81:66:82:
0e:ba:df:2c:c4:a5:61:1e:4a:2a:eb:34:de:59:63:39:f1:08:
3f:fb:bd:f6:69:0d:bd:ff:83:c4:bf:a9:9d:73:aa:4a:66:d6:
47:f0:51:f5:51:0b:48:7d:84:5e:c0:d1:5d:7e:e8:7a:f1:33:
22:b4:e9:d8:62:1b:88:b4:da:1e:47:38:7b:96:27:c1:b3:cd:
1c:7b:63:dc:d2:49:bc:78:fc:38:79:1a:51:60:7f:38:cf:f5:
63:6b:89:8e:fe:ab:2b:62:90:ce:59:c9:f8:6b:a9:42:bb:05:
84:bb:5f:fa:7d:dd:d2:b3:d8:18:dd:61:18:eb:65:57:6e:09:
a2:92:6f:46:c4:cc:de:14:9a:41:58:c0:50:17:3a:66:7f:66:
91:27:50:c3:3b:38:45:f7:f0:b1:6c:4f:d5:a0:f2:c7:7c:fa:
97:3f:60:1f:12:69:73:32:a3:31:f6:c1:d1:60:1d:af:c8:3a:
39:ae:6d:f8:47:1f:2b:ee:c1:73:3b:e7:07:84:2c:44:45:78:
1a:4d:be:ae
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjNE
NUUwQjM1MjBEQUM0MjY5QUI0QTQyNUIyM0QyMjVDQjI2NEE4ODAeFw0yMjEwMTcw
OTEyMDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU0QzFBODg3QzJDNTlB
OEMyM0VERkU5N0IzMTZDNkE4QzAzOUE5QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDivDmFcUHKEcds0mxZpH3IbFT9VPIdyUqB/AY923WzOzODLjH
+m9xt9whgfc8KZx9sqyp5jRLCNLjMfKT69bxI/CW54wU2VxM00at+3kWgOT+mJJY
AHrVfnpDhTZYeCL02uiMzUBS0n1mOGJsPiX26+6jTefPyTu8NvIjAv6DZJCUc1nG
txLit5LTzQsgsHWt4TZbn8N/cmkV8fPTcbY2d459R8ZSYTq86bh2rlZjnCh3Oo4C
d3iORtIgKDx7zB0K5Jk9TT4WSdpH0kvn+I1bCjOqyWHZwIMUS0abYmQ8JkbQmzIS
DG8ybs6pL/ULxDwmq0YtQHjXy27ZBMvlgUN5AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU5MGoh8LFmowj7f6XsxbGqMA5qa8wHwYDVR0jBBgwFoAUI9Xgs1INrEJpq0pC
WyPSJcsmSogwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOT0Mv
STlYZ3MxSU5yRUpwcTBwQ1d5UFNKY3NtU29nLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9JOVhnczFJTnJFSnBxMHBDV3lQU0pjc21Tb2cuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05PQy81TUdvaDhMRm1vd2o3ZjZYc3hi
R3FNQTVxYTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3vw
MA0GCSqGSIb3DQEBCwUAA4IBAQCL6k4ykdrYOCw8aYMqsndgRZR42/lb2n9nTnAH
7tZt4gKlUq0fmPj+gBgpTjozxmIaW+qBZoIOut8sxKVhHkoq6zTeWWM58Qg/+732
aQ29/4PEv6mdc6pKZtZH8FH1UQtIfYRewNFdfuh68TMitOnYYhuItNoeRzh7lifB
s80ce2Pc0km8ePw4eRpRYH84z/Vja4mO/qsrYpDOWcn4a6lCuwWEu1/6fd3Ss9gY
3WEY62VXbgmikm9GxMzeFJpBWMBQFzpmf2aRJ1DDOzhF9/CxbE/VoPLHfPqXP2Af
EmlzMqMx9sHRYB2vyDo5rm34Rx8r7sFzO+cHhCxERXgaTb6u
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org