Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/VjL8bR3or6yOq8eyC3M0NizHrV8.roa
File: VjL8bR3or6yOq8eyC3M0NizHrV8.roa (raw, json)
Hash identifier: mY77q6SeKSkQO29Vw3skxvEi9aN9qr6BoNjMQl/L0YE=
Subject key identifier: 56:32:FC:6D:1D:E8:AF:AC:8E:AB:C7:B2:0B:73:34:36:2C:C7:AD:5F
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 13EB
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/VjL8bR3or6yOq8eyC3M0NizHrV8.roa
Signing time: Fri 10 Jan 2025 08:03:04 +0000
ROA not before: Fri 10 Jan 2025 08:03:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 202525
IP address blocks: 103.123.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5099 (0x13eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Jan 10 08:03:04 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5632FC6D1DE8AFAC8EABC7B20B7334362CC7AD5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:6f:2a:4c:55:dd:c9:99:c9:f8:20:b9:1a:
8c:64:83:f1:a8:d8:f9:d2:e7:04:72:25:ba:e3:4a:
63:11:0c:d3:09:8a:2c:84:22:e9:e6:c6:7e:78:60:
da:27:a1:0a:6d:d8:ce:19:5a:e9:08:fe:cc:59:7d:
62:5c:c7:dd:1a:26:54:d4:f9:b1:8c:8a:18:4e:10:
3f:33:b9:77:6e:09:b0:3b:b2:38:97:b8:12:86:26:
e5:e4:90:a2:d1:5b:81:ba:2b:ef:07:43:bf:e2:53:
76:81:7d:96:05:62:65:d9:7c:71:7f:b3:e4:98:c6:
43:de:37:37:63:63:f5:96:b0:8c:c7:d8:97:5b:07:
62:8e:e2:0a:b6:bc:81:5d:81:af:a1:7b:5f:ce:a4:
ef:f2:4f:a7:8c:f0:c0:cd:1f:b7:66:7a:fd:b8:0b:
da:56:37:6a:8e:08:db:14:41:74:22:4b:e3:3a:b8:
83:af:ed:f2:42:13:bc:16:8b:f2:29:61:f2:6c:4e:
c3:c5:4c:c5:10:f7:b6:17:89:f1:15:45:ee:b5:d2:
c1:3e:a9:0a:9c:de:46:2c:5e:8d:c9:b8:bd:10:3a:
39:8d:95:69:29:6b:32:a4:43:f7:76:b7:a6:5f:6a:
31:f8:bd:de:db:00:1f:9c:d6:ba:8c:fa:81:e8:c9:
8b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:32:FC:6D:1D:E8:AF:AC:8E:AB:C7:B2:0B:73:34:36:2C:C7:AD:5F
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/VjL8bR3or6yOq8eyC3M0NizHrV8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.216.0/24
Signature Algorithm: sha256WithRSAEncryption
df:ac:75:78:76:a8:cd:68:91:7a:99:17:43:82:69:9a:79:ea:
2e:61:50:91:fa:dc:a6:5e:9a:47:c8:0f:91:e0:ce:5e:7d:49:
d8:16:cb:f4:b6:21:af:1d:60:f9:c2:9e:74:95:5f:fc:f1:fd:
49:4f:4a:57:a4:9d:89:f2:57:05:bf:a4:e1:cb:61:40:65:ef:
bd:2d:6d:c9:89:28:05:0b:c1:15:b8:b5:fb:5e:d2:3f:32:fd:
ee:14:da:5a:ab:81:ea:c7:93:88:d9:46:31:5d:b0:ff:29:e5:
b3:70:6d:e5:92:8f:63:63:81:f9:93:0c:85:cb:16:ec:53:30:
e7:22:c1:d2:0d:8e:5a:6e:11:d2:21:eb:92:b8:34:bf:82:ff:
13:0a:4d:77:15:c1:5b:8c:42:67:c0:e4:d0:db:bf:6c:c4:d2:
8f:85:7c:2f:1e:a8:d2:18:ce:04:97:80:71:c0:32:a6:be:77:
4a:a8:d4:22:37:dc:78:fe:7f:bc:8e:58:af:2d:e3:93:43:08:
9e:9b:f9:63:f6:2e:4d:76:58:f6:a3:f3:a7:d2:c4:2f:ca:1b:
c1:6b:57:1b:cf:d7:d2:91:e1:61:63:3b:87:2b:4c:e3:90:40:
47:c6:db:c3:dc:d3:2c:33:65:b0:82:3f:98:69:7f:74:59:0d:
b3:1b:84:c0
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICE+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5
QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNTAxMTAw
ODAzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2MzJGQzZEMURFOEFG
QUM4RUFCQzdCMjBCNzMzNDM2MkNDN0FENUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC18m8qTFXdyZnJ+CC5Goxkg/Go2PnS5wRyJbrjSmMRDNMJiiyE
Iunmxn54YNonoQpt2M4ZWukI/sxZfWJcx90aJlTU+bGMihhOED8zuXduCbA7sjiX
uBKGJuXkkKLRW4G6K+8HQ7/iU3aBfZYFYmXZfHF/s+SYxkPeNzdjY/WWsIzH2Jdb
B2KO4gq2vIFdga+he1/OpO/yT6eM8MDNH7dmev24C9pWN2qOCNsUQXQiS+M6uIOv
7fJCE7wWi/IpYfJsTsPFTMUQ97YXifEVRe610sE+qQqc3kYsXo3JuL0QOjmNlWkp
azKkQ/d2t6ZfajH4vd7bAB+c1rqM+oHoyYuhAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUVjL8bR3or6yOq8eyC3M0NizHrV8wHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf
9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv
Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9Wakw4YlIzb3I2eU9xOGV5QzNN
ME5pekhyVjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vY
MA0GCSqGSIb3DQEBCwUAA4IBAQDfrHV4dqjNaJF6mRdDgmmaeeouYVCR+tymXppH
yA+R4M5efUnYFsv0tiGvHWD5wp50lV/88f1JT0pXpJ2J8lcFv6Thy2FAZe+9LW3J
iSgFC8EVuLX7XtI/Mv3uFNpaq4Hqx5OI2UYxXbD/KeWzcG3lko9jY4H5kwyFyxbs
UzDnIsHSDY5abhHSIeuSuDS/gv8TCk13FcFbjEJnwOTQ279sxNKPhXwvHqjSGM4E
l4BxwDKmvndKqNQiN9x4/n+8jlivLeOTQwiem/lj9i5Ndlj2o/On0sQvyhvBa1cb
z9fSkeFhYzuHK0zjkEBHxtvD3NMsM2Wwgj+YaX90WQ2zG4TA
-----END CERTIFICATE-----
Generated at Mon May 19 04:09:29 2025 by rpki-client