Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/qdMYPUcGxov00Hem55KediwQI8Q.roa
File: qdMYPUcGxov00Hem55KediwQI8Q.roa (raw, json)
Hash identifier: CR8UlzECJHAgaSP7vvMqqc9lJg5Y9hGiFnrHCG74WLA=
Subject key identifier: A9:D3:18:3D:47:06:C6:8B:F4:D0:77:A6:E7:92:9E:76:2C:10:23:C4
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 048F
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/qdMYPUcGxov00Hem55KediwQI8Q.roa
Signing time: Mon 26 Aug 2024 05:34:33 +0000
ROA not before: Mon 26 Aug 2024 05:34:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38042
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1167 (0x48f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Aug 26 05:34:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A9D3183D4706C68BF4D077A6E7929E762C1023C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e1:6a:96:19:a3:54:ac:43:9e:f0:70:75:24:
65:63:0a:eb:74:b7:b5:3b:56:35:78:36:02:f2:bd:
fa:7c:69:5b:70:4d:37:5f:63:22:a1:16:38:86:ec:
98:58:4b:2c:93:8c:7b:28:b0:e1:7d:04:e5:3a:0b:
66:9a:de:1d:6a:c7:ef:09:82:48:9d:6c:8e:40:37:
a6:ad:03:68:45:26:6d:e7:e5:a2:86:2f:c5:9d:8d:
db:d3:c1:55:24:f7:b4:ef:1a:f0:06:f3:91:a0:14:
37:af:a9:76:83:48:1e:ce:19:ea:f6:71:0f:9c:cf:
0d:bd:98:f8:33:7c:7c:03:7a:07:cc:ab:cb:a2:a3:
ea:a1:e6:99:25:e8:1f:4f:78:75:8e:c8:7d:b5:fc:
32:77:8c:49:aa:d5:69:f1:6f:16:bb:0b:ff:8b:50:
d0:d2:5f:0f:30:5d:be:ea:5a:f2:f5:44:bc:a8:db:
af:e3:86:50:3e:00:8b:ce:6a:ee:01:2c:8b:21:45:
ea:36:65:cf:32:57:ad:97:de:c1:73:89:55:84:a2:
76:78:c1:00:ff:22:a3:0d:88:fa:0b:8f:11:06:c6:
95:74:c2:a8:11:f5:34:2c:a3:75:c8:a9:21:d5:a3:
dc:df:fd:46:80:ed:79:50:11:c8:9e:3d:f3:4a:d2:
df:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D3:18:3D:47:06:C6:8B:F4:D0:77:A6:E7:92:9E:76:2C:10:23:C4
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/qdMYPUcGxov00Hem55KediwQI8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:fa:b3:68:57:23:37:11:fb:5e:68:68:6e:35:13:16:10:1d:
95:6b:b4:08:37:15:60:14:64:66:f1:af:d4:b1:73:b1:0a:18:
93:d9:6e:9c:d5:aa:a9:49:ab:c5:41:6c:c3:9c:f3:34:86:41:
3e:92:c3:6f:68:46:63:ef:d9:55:57:a2:e5:eb:5c:a2:e4:a0:
b8:a9:2d:90:df:bb:a1:a7:24:37:ad:4f:ae:ee:1a:1e:01:d7:
45:0d:fa:5d:a7:e0:0e:e4:c7:4b:08:b3:fd:f7:52:7c:7e:cd:
20:ae:fc:96:4a:ad:a2:72:d0:c3:be:22:d4:80:d2:07:9c:f7:
ae:a0:67:39:c6:b8:63:53:c2:68:ed:c1:bd:2c:30:df:bf:5b:
6b:d1:61:b2:50:1a:53:7e:85:f3:a3:e2:54:b6:b1:28:3b:9f:
dd:7a:96:ae:f3:b8:07:a0:11:93:1b:84:27:0d:cb:34:18:e8:
b2:7e:b5:e8:31:9c:56:a5:e9:96:bb:b0:ff:98:12:2d:02:17:
f0:3c:ad:50:64:dc:4a:73:a9:83:f8:30:b4:dc:a0:3f:7b:70:
e8:c5:ec:63:61:9c:da:4a:d7:fa:99:d5:7d:08:d2:98:89:2b:
54:a5:90:85:52:9d:17:e4:04:2d:bb:3a:1b:0a:b4:a4:99:a7:
57:dc:7d:a1
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkZC
QjdGN0I1QzU4MzIzNDkwODc1ODQ5QjhFRERBNDk1RUYxN0IxQjAeFw0yNDA4MjYw
NTM0MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5RDMxODNENDcwNkM2
OEJGNEQwNzdBNkU3OTI5RTc2MkMxMDIzQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs4WqWGaNUrEOe8HB1JGVjCut0t7U7VjV4NgLyvfp8aVtwTTdf
YyKhFjiG7JhYSyyTjHsosOF9BOU6C2aa3h1qx+8JgkidbI5AN6atA2hFJm3n5aKG
L8WdjdvTwVUk97TvGvAG85GgFDevqXaDSB7OGer2cQ+czw29mPgzfHwDegfMq8ui
o+qh5pkl6B9PeHWOyH21/DJ3jEmq1Wnxbxa7C/+LUNDSXw8wXb7qWvL1RLyo26/j
hlA+AIvOau4BLIshReo2Zc8yV62X3sFziVWEonZ4wQD/IqMNiPoLjxEGxpV0wqgR
9TQso3XIqSHVo9zf/UaA7XlQEciePfNK0t/9AgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUqdMYPUcGxov00Hem55KediwQI8QwHwYDVR0jBBgwFoAUv7t/e1xYMjSQh1hJ
uO3aSV7xexswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3Y3
dF9lMXhZTWpTUWgxaEp1TzNhU1Y3eGV4cy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
djd0X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3FkTVlQVWNHeG92MDBIZW01NUtlZGl3
UUk4US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnSowDQYJ
KoZIhvcNAQELBQADggEBAF36s2hXIzcR+15oaG41ExYQHZVrtAg3FWAUZGbxr9Sx
c7EKGJPZbpzVqqlJq8VBbMOc8zSGQT6Sw29oRmPv2VVXouXrXKLkoLipLZDfu6Gn
JDetT67uGh4B10UN+l2n4A7kx0sIs/33Unx+zSCu/JZKraJy0MO+ItSA0gec966g
ZznGuGNTwmjtwb0sMN+/W2vRYbJQGlN+hfOj4lS2sSg7n916lq7zuAegEZMbhCcN
yzQY6LJ+tegxnFal6Za7sP+YEi0CF/A8rVBk3EpzqYP4MLTcoD97cOjF7GNhnNpK
1/qZ1X0I0piJK1SlkIVSnRfkBC27OhsKtKSZp1fcfaE=
-----END CERTIFICATE-----
Generated at Sun Sep 22 22:34:31 2024 by rpki-client on console-fra.rpki-client.org