Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNOC/CRkoyHD-CTFo7hw9xkWInDCw8dE.roa
File: CRkoyHD-CTFo7hw9xkWInDCw8dE.roa (raw, json)
Hash identifier: JBjSdmzkspchddWFtH17Wsk89b+Ex822nvZ3zTNumqM=
Subject key identifier: 09:19:28:C8:70:FE:09:31:68:EE:1C:3D:C6:45:88:9C:30:B0:F1:D1
Certificate issuer: /CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Certificate serial: 100D
Authority key identifier: 23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/CRkoyHD-CTFo7hw9xkWInDCw8dE.roa
Signing time: Fri 01 Apr 2022 06:28:25 +0000
ROA not before: Fri 01 Apr 2022 06:28:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 21859
IP address blocks: 103.123.242.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4109 (0x100d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23D5E0B3520DAC4269AB4A425B23D225CB264A88
Validity
Not Before: Apr 1 06:28:25 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=091928C870FE093168EE1C3DC645889C30B0F1D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:15:c1:23:6a:6d:21:23:d5:e8:58:28:d8:
c6:31:ab:ab:8c:0a:34:5a:9d:aa:52:d8:ef:dc:6d:
e5:75:2d:c0:e9:15:98:1c:4b:5a:d3:2f:4a:cc:6d:
95:12:1b:92:f9:a0:19:ae:bf:d0:04:9a:13:07:04:
87:ff:db:28:0a:91:99:9b:de:66:3f:8c:62:8b:ad:
ff:be:39:60:80:ec:b8:70:e6:9f:06:2c:b0:65:a6:
22:f2:c0:3f:c8:54:53:b6:f0:81:a2:35:24:31:5b:
2a:7c:d4:f9:23:b3:27:a2:c8:57:78:36:2c:ba:64:
8b:55:b5:1d:0e:a1:80:28:88:1b:83:b1:8c:9e:90:
30:71:3a:74:16:34:66:a3:15:e4:71:b3:8a:1f:c8:
5e:61:d2:e5:b7:04:1d:ac:75:ef:85:70:70:ef:fd:
76:01:d1:98:b2:5a:ae:80:78:62:eb:36:81:b2:3a:
6c:85:1d:04:cb:3f:b4:81:b1:cd:8e:e0:50:64:52:
3a:99:50:bb:58:ef:98:a8:27:1b:d9:56:96:c8:79:
83:c7:ae:83:67:59:4d:f6:5b:da:8b:32:24:4d:57:
0b:ab:3d:4a:e3:5d:1c:b5:0a:ae:34:2e:49:29:a8:
58:5e:73:5f:15:b2:27:01:03:4d:32:87:fb:7f:60:
86:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:19:28:C8:70:FE:09:31:68:EE:1C:3D:C6:45:88:9C:30:B0:F1:D1
X509v3 Authority Key Identifier:
keyid:23:D5:E0:B3:52:0D:AC:42:69:AB:4A:42:5B:23:D2:25:CB:26:4A:88
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/I9Xgs1INrEJpq0pCWyPSJcsmSog.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/I9Xgs1INrEJpq0pCWyPSJcsmSog.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNOC/CRkoyHD-CTFo7hw9xkWInDCw8dE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.242.0/23
Signature Algorithm: sha256WithRSAEncryption
49:64:3d:dc:dc:56:f0:b8:8e:39:5d:c2:63:42:a8:8e:ab:1e:
b0:5a:ad:15:73:c4:02:31:95:d2:e8:07:0e:ea:4e:e1:86:22:
90:49:1a:a2:21:29:ab:1f:50:91:72:69:72:40:16:68:4d:9a:
83:6c:29:7c:e4:36:bf:14:80:06:40:91:2e:55:8a:fe:a7:41:
af:41:c0:99:7e:2d:73:20:3f:74:10:77:bc:c8:da:b7:d8:01:
de:58:e6:cf:9d:6a:4b:de:30:d1:3d:bc:51:ba:7b:4a:05:a4:
32:49:5e:e5:94:69:18:4e:41:61:b1:e2:2a:76:80:b7:26:be:
d4:6a:61:f5:f1:ac:c4:73:a8:88:5d:c0:78:ca:57:4f:2a:90:
49:8f:37:6e:84:8d:e8:a9:83:ba:59:e4:25:ab:b5:7b:59:2e:
8a:9c:1a:f9:aa:27:2f:31:6b:61:6d:4a:97:24:95:3b:86:07:
59:4d:80:c1:d1:17:dd:b0:6c:86:72:7a:8b:87:e2:58:e7:b6:
eb:f7:f9:3f:a6:f9:be:84:8c:ce:6a:04:43:f3:5a:3d:79:ec:
b6:dd:0b:c4:1b:d6:eb:8d:7b:72:79:b7:fb:fa:24:e5:27:6b:
50:7f:a9:c6:ac:15:8c:e9:d7:25:b3:77:8b:04:28:9c:de:38:
13:70:9a:89
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEA0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjNE
NUUwQjM1MjBEQUM0MjY5QUI0QTQyNUIyM0QyMjVDQjI2NEE4ODAeFw0yMjA0MDEw
NjI4MjVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDA5MTkyOEM4NzBGRTA5
MzE2OEVFMUMzREM2NDU4ODlDMzBCMEYxRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC75RXBI2ptISPV6Fgo2MYxq6uMCjRanapS2O/cbeV1LcDpFZgc
S1rTL0rMbZUSG5L5oBmuv9AEmhMHBIf/2ygKkZmb3mY/jGKLrf++OWCA7Lhw5p8G
LLBlpiLywD/IVFO28IGiNSQxWyp81PkjsyeiyFd4Niy6ZItVtR0OoYAoiBuDsYye
kDBxOnQWNGajFeRxs4ofyF5h0uW3BB2sde+FcHDv/XYB0ZiyWq6AeGLrNoGyOmyF
HQTLP7SBsc2O4FBkUjqZULtY75ioJxvZVpbIeYPHroNnWU32W9qLMiRNVwurPUrj
XRy1Cq40LkkpqFhec18VsicBA00yh/t/YIaDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUCRkoyHD+CTFo7hw9xkWInDCw8dEwHwYDVR0jBBgwFoAUI9Xgs1INrEJpq0pC
WyPSJcsmSogwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOT0Mv
STlYZ3MxSU5yRUpwcTBwQ1d5UFNKY3NtU29nLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9JOVhnczFJTnJFSnBxMHBDV3lQU0pjc21Tb2cuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05PQy9DUmtveUhELUNURm83aHc5eGtX
SW5EQ3c4ZEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3vy
MA0GCSqGSIb3DQEBCwUAA4IBAQBJZD3c3FbwuI45XcJjQqiOqx6wWq0Vc8QCMZXS
6AcO6k7hhiKQSRqiISmrH1CRcmlyQBZoTZqDbCl85Da/FIAGQJEuVYr+p0GvQcCZ
fi1zID90EHe8yNq32AHeWObPnWpL3jDRPbxRuntKBaQySV7llGkYTkFhseIqdoC3
Jr7UamH18azEc6iIXcB4yldPKpBJjzduhI3oqYO6WeQlq7V7WS6KnBr5qicvMWth
bUqXJJU7hgdZTYDB0RfdsGyGcnqLh+JY57br9/k/pvm+hIzOagRD81o9eey23QvE
G9brjXtyebf7+iTlJ2tQf6nGrBWM6dcls3eLBCic3jgTcJqJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org