Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/e4cS11r7A1qi-Z4OOuV3yI_-sr0.roa
File: e4cS11r7A1qi-Z4OOuV3yI_-sr0.roa (raw, json)
Hash identifier: 1Qr/ghALqo14D2iZjk3DSlkitRmzR0PkMg/dgqDMHhM=
Subject key identifier: 7B:87:12:D7:5A:FB:03:5A:A2:F9:9E:0E:3A:E5:77:C8:8F:FE:B2:BD
Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Certificate serial: 022B
Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/e4cS11r7A1qi-Z4OOuV3yI_-sr0.roa
Signing time: Mon 10 Feb 2025 14:28:49 +0000
ROA not before: Mon 10 Feb 2025 14:28:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.51.90.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 555 (0x22b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Validity
Not Before: Feb 10 14:28:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7B8712D75AFB035AA2F99E0E3AE577C88FFEB2BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:59:ea:e9:38:3b:03:97:34:52:97:a4:df:a8:
0e:09:54:b1:b3:a0:c7:dc:a2:55:a6:a4:41:36:7f:
2a:e1:40:4c:34:69:1f:e6:9d:34:28:44:58:9a:e5:
7e:8a:4c:88:b2:47:09:2e:84:fa:4e:ef:79:66:d6:
27:9c:92:0c:09:07:3b:fa:45:65:f1:38:b3:66:37:
93:bd:14:2a:2e:03:43:55:e1:8a:5e:d3:47:41:cc:
f1:eb:bb:ce:79:5c:6e:9a:a1:95:24:cd:a8:24:3e:
c3:8e:f6:a1:7a:c0:ee:8b:11:e3:d2:08:fa:ed:26:
38:52:b9:e1:7c:70:7a:f2:46:5b:ff:ef:f0:a3:e2:
09:97:d3:4b:bf:09:31:b2:22:ca:c8:15:60:67:77:
ce:cf:90:0e:f0:48:0a:b7:49:3c:ab:52:2e:67:c1:
e0:11:63:4d:3f:8f:aa:18:64:60:76:8a:69:49:1b:
2d:42:c7:6d:77:f3:27:46:ba:f6:f2:ba:43:f5:f3:
60:39:98:f3:11:af:7d:65:ee:e7:c6:ce:46:f8:3d:
75:6b:f2:f9:67:df:5f:5f:41:45:de:8e:30:d9:34:
96:a3:b9:f4:fc:e2:77:85:17:31:b1:33:09:93:e8:
5a:98:b9:40:cf:d6:09:05:fa:7d:8e:65:66:19:7e:
06:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:87:12:D7:5A:FB:03:5A:A2:F9:9E:0E:3A:E5:77:C8:8F:FE:B2:BD
X509v3 Authority Key Identifier:
keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/e4cS11r7A1qi-Z4OOuV3yI_-sr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.51.90.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:0b:7e:00:f5:1e:f1:bb:d1:e3:03:b0:4f:a7:5c:a0:72:b4:
6b:8f:fb:ca:42:35:6e:e7:1a:30:68:71:14:0a:47:75:10:1e:
ed:6f:f0:e4:a3:ff:1c:d1:f4:d8:b1:91:d4:82:f0:bd:4c:26:
4c:b4:08:02:c9:c8:c3:5f:ee:eb:99:00:e9:07:41:94:02:8d:
79:13:cf:ec:8c:fb:00:a8:30:db:bb:ef:65:fb:1f:26:d3:7d:
5f:b5:bf:a4:35:4f:96:de:26:80:be:dd:bd:eb:39:1f:2d:4e:
a1:b1:ad:41:c0:55:ee:47:45:44:df:ae:c2:7c:c0:e5:66:30:
32:29:3d:ba:cd:1e:c4:73:2d:ef:00:50:f6:05:e1:e0:4f:59:
09:d7:07:66:94:c9:eb:77:b6:c3:5c:f0:21:ad:a5:08:37:c4:
f0:f1:a6:e1:69:14:dd:c6:f7:03:ce:3a:f1:a2:8a:01:93:dd:
5d:bd:c7:66:4e:9c:5b:1d:ed:56:46:18:ac:47:05:2e:cb:24:
ea:48:5f:58:bc:78:6c:7f:a3:78:b4:b8:97:91:0b:8a:10:65:
29:03:33:8a:26:5f:16:61:ad:0c:b0:f2:a6:ca:ce:9d:0b:16:
a2:1e:07:05:86:87:f6:84:0b:b4:d4:b7:4e:bd:30:1b:f8:29:
17:c0:7f:13
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB
NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNTAyMTAx
NDI4NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdCODcxMkQ3NUFGQjAz
NUFBMkY5OUUwRTNBRTU3N0M4OEZGRUIyQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8WerpODsDlzRSl6TfqA4JVLGzoMfcolWmpEE2fyrhQEw0aR/m
nTQoRFia5X6KTIiyRwkuhPpO73lm1ieckgwJBzv6RWXxOLNmN5O9FCouA0NV4Ype
00dBzPHru855XG6aoZUkzagkPsOO9qF6wO6LEePSCPrtJjhSueF8cHryRlv/7/Cj
4gmX00u/CTGyIsrIFWBnd87PkA7wSAq3STyrUi5nweARY00/j6oYZGB2imlJGy1C
x2138ydGuvbyukP182A5mPMRr31l7ufGzkb4PXVr8vln319fQUXejjDZNJajufT8
4neFFzGxMwmT6FqYuUDP1gkF+n2OZWYZfgbjAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUe4cS11r7A1qi+Z4OOuV3yI/+sr0wHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP
BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT
SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL2U0Y1MxMXI3QTFx
aS1aNE9PdVYzeUlfLXNyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFnM1owDQYJKoZIhvcNAQELBQADggEBAEsLfgD1HvG70eMDsE+nXKBytGuP
+8pCNW7nGjBocRQKR3UQHu1v8OSj/xzR9NixkdSC8L1MJky0CALJyMNf7uuZAOkH
QZQCjXkTz+yM+wCoMNu772X7HybTfV+1v6Q1T5beJoC+3b3rOR8tTqGxrUHAVe5H
RUTfrsJ8wOVmMDIpPbrNHsRzLe8AUPYF4eBPWQnXB2aUyet3tsNc8CGtpQg3xPDx
puFpFN3G9wPOOvGiigGT3V29x2ZOnFsd7VZGGKxHBS7LJOpIX1i8eGx/o3i0uJeR
C4oQZSkDM4omXxZhrQyw8qbKzp0LFqIeBwWGh/aEC7TUt069MBv4KRfAfxM=
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:33:32 2025 by rpki-client