Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/AeQLbHSevRsqiFfnl5jUa6PrjEQ.roa
File: AeQLbHSevRsqiFfnl5jUa6PrjEQ.roa (raw, json)
Hash identifier: DQz/vE03ybpeU9dt3kZLYm66opg4dwRwknVzmbdARPI=
Subject key identifier: 01:E4:0B:6C:74:9E:BD:1B:2A:88:57:E7:97:98:D4:6B:A3:EB:8C:44
Certificate issuer: /CN=B56C9B2E3A040879CFD00FE74D697FB0465CF27A
Certificate serial: 0EAD
Authority key identifier: B5:6C:9B:2E:3A:04:08:79:CF:D0:0F:E7:4D:69:7F:B0:46:5C:F2:7A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tWybLjoECHnP0A_nTWl_sEZc8no.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/AeQLbHSevRsqiFfnl5jUa6PrjEQ.roa
Signing time: Fri 01 Sep 2023 10:24:21 +0000
ROA not before: Fri 01 Sep 2023 10:24:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 138145
IP address blocks: 103.135.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3757 (0xead)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B56C9B2E3A040879CFD00FE74D697FB0465CF27A
Validity
Not Before: Sep 1 10:24:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=01E40B6C749EBD1B2A8857E79798D46BA3EB8C44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:05:4c:fa:4d:19:bf:9d:da:0e:78:8e:49:2c:
0d:a2:73:46:66:ac:4c:94:9e:3c:99:df:af:d2:0a:
34:4b:73:f7:fd:4d:69:b7:be:42:21:aa:a3:62:f1:
24:ab:d5:83:5e:1f:02:76:7c:5c:47:79:69:8b:7a:
28:ad:62:6f:6e:99:d7:53:8e:b1:0b:85:19:b3:7e:
b8:4e:e0:3d:40:6e:af:17:53:ad:ff:e9:ae:26:90:
f6:9b:db:70:f8:f5:65:0f:0e:1f:6e:22:98:7c:54:
ce:0a:e9:94:82:50:69:88:b6:97:9f:18:73:d8:f8:
b7:fc:6e:0d:fa:ec:8f:a6:59:47:c2:e4:a8:dd:07:
89:bd:8e:a1:de:5d:3f:a2:46:12:3c:c3:f0:bd:a9:
29:97:1c:96:bd:9f:45:94:1d:0c:19:11:9b:e2:07:
a8:67:a4:2d:f3:b2:51:96:13:cc:83:28:f2:56:e4:
98:9d:2b:3d:6d:a2:79:b1:28:38:a4:d6:9e:e5:d9:
b5:8c:97:e7:e6:45:1f:53:03:32:6e:50:0f:09:2e:
20:0c:58:54:bc:95:f3:a6:cc:8e:75:6c:6c:d7:6c:
55:c8:df:6c:30:7d:7d:cb:80:38:cb:a9:47:04:36:
b5:47:33:05:20:c9:1b:43:eb:b2:35:79:07:82:99:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E4:0B:6C:74:9E:BD:1B:2A:88:57:E7:97:98:D4:6B:A3:EB:8C:44
X509v3 Authority Key Identifier:
keyid:B5:6C:9B:2E:3A:04:08:79:CF:D0:0F:E7:4D:69:7F:B0:46:5C:F2:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/tWybLjoECHnP0A_nTWl_sEZc8no.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tWybLjoECHnP0A_nTWl_sEZc8no.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZHIYIN/AeQLbHSevRsqiFfnl5jUa6PrjEQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.16.0/24
Signature Algorithm: sha256WithRSAEncryption
26:2a:39:8b:c3:3d:be:37:ce:33:1b:04:c1:79:f1:5b:a3:23:
5b:bb:d8:83:46:50:4e:c7:06:bc:7f:0f:57:e1:b3:c2:74:8e:
46:02:33:98:1a:7f:62:12:cb:1e:e1:0c:bd:f2:80:37:1d:ed:
e1:94:99:50:06:5e:4d:a5:55:49:12:f7:1e:95:08:4e:cb:02:
36:64:6a:62:7f:1e:62:11:87:cc:49:7e:e5:72:8a:2b:71:0d:
4e:d1:f7:6e:c9:00:0a:f4:9e:7b:78:9e:a5:b8:e8:37:25:67:
45:af:1f:1b:de:44:fe:ba:38:3e:e3:3a:c6:80:c1:20:9d:60:
7f:54:69:80:17:20:32:11:77:6e:4b:f0:a5:db:7b:ff:28:7b:
71:ae:5c:40:3a:52:85:ba:e8:15:cf:49:59:be:0c:8a:2c:54:
38:42:81:48:fd:b0:0d:85:fa:41:e0:9e:b7:bd:97:0c:93:68:
1b:e5:6c:a9:10:74:22:a5:a9:55:e9:91:4f:8b:c2:1b:21:69:
c6:1c:2d:c7:2b:43:b3:1c:41:6a:c3:82:76:ea:42:5b:f5:df:
b9:5e:aa:1b:96:e2:48:cf:95:ad:76:16:27:32:57:21:fa:5f:
4b:44:c5:16:82:e8:c2:38:dc:ea:54:fb:8c:6e:8c:13:eb:57:
1f:ca:73:1d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDq0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjU2
QzlCMkUzQTA0MDg3OUNGRDAwRkU3NEQ2OTdGQjA0NjVDRjI3QTAeFw0yMzA5MDEx
MDI0MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAxRTQwQjZDNzQ5RUJE
MUIyQTg4NTdFNzk3OThENDZCQTNFQjhDNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUBUz6TRm/ndoOeI5JLA2ic0ZmrEyUnjyZ36/SCjRLc/f9TWm3
vkIhqqNi8SSr1YNeHwJ2fFxHeWmLeiitYm9umddTjrELhRmzfrhO4D1Abq8XU63/
6a4mkPab23D49WUPDh9uIph8VM4K6ZSCUGmItpefGHPY+Lf8bg367I+mWUfC5Kjd
B4m9jqHeXT+iRhI8w/C9qSmXHJa9n0WUHQwZEZviB6hnpC3zslGWE8yDKPJW5Jid
Kz1tonmxKDik1p7l2bWMl+fmRR9TAzJuUA8JLiAMWFS8lfOmzI51bGzXbFXI32ww
fX3LgDjLqUcENrVHMwUgyRtD67I1eQeCmWnRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUAeQLbHSevRsqiFfnl5jUa6PrjEQwHwYDVR0jBBgwFoAUtWybLjoECHnP0A/n
TWl/sEZc8nowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkhJWUlO
L3RXeWJMam9FQ0huUDBBX25UV2xfc0VaYzhuby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvdFd5Ykxqb0VDSG5QMEFfblRXbF9zRVpjOG5vLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkhJWUlOL0FlUUxiSFNldlJzcWlGZm5s
NWpVYTZQcmpFUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
hxAwDQYJKoZIhvcNAQELBQADggEBACYqOYvDPb43zjMbBMF58VujI1u72INGUE7H
Brx/D1fhs8J0jkYCM5gaf2ISyx7hDL3ygDcd7eGUmVAGXk2lVUkS9x6VCE7LAjZk
amJ/HmIRh8xJfuVyiitxDU7R927JAAr0nnt4nqW46DclZ0WvHxveRP66OD7jOsaA
wSCdYH9UaYAXIDIRd25L8KXbe/8oe3GuXEA6UoW66BXPSVm+DIosVDhCgUj9sA2F
+kHgnre9lwyTaBvlbKkQdCKlqVXpkU+LwhshacYcLccrQ7McQWrDgnbqQlv137le
qhuW4kjPla12FicyVyH6X0tExRaC6MI43OpU+4xujBPrVx/Kcx0=
-----END CERTIFICATE-----
Generated at Mon Mar 11 11:56:00 2024 by rpki-client on console-fra.rpki-client.org