Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/MxiNdT7aEQeB8wztqXY_vSUN-dk.roa
File: MxiNdT7aEQeB8wztqXY_vSUN-dk.roa (raw, json)
Hash identifier: Etv9TcX0xFLkz64oHHgkUNb644eF5J5iy8ADXhtqNnc=
Subject key identifier: 33:18:8D:75:3E:DA:11:07:81:F3:0C:ED:A9:76:3F:BD:25:0D:F9:D9
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 0C71
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/MxiNdT7aEQeB8wztqXY_vSUN-dk.roa
Signing time: Mon 10 Feb 2025 14:13:39 +0000
ROA not before: Mon 10 Feb 2025 14:13:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 103.119.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3185 (0xc71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Feb 10 14:13:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=33188D753EDA110781F30CEDA9763FBD250DF9D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:66:a9:65:d0:cb:12:ca:5a:3d:88:e7:b2:
2c:9b:00:0f:43:cf:b3:01:13:3f:e5:a7:99:69:e0:
07:47:da:06:9b:f1:81:3a:55:50:97:66:6d:79:7a:
20:06:c7:bc:89:f2:cc:68:f4:96:29:b5:6b:9d:ef:
2e:a5:58:77:ff:18:d7:a7:b4:29:d7:44:82:17:25:
81:a7:c1:18:16:4c:a1:19:24:55:3e:e2:98:3c:7c:
70:6d:84:44:2e:33:c0:08:d8:c7:c2:e8:ec:cc:4e:
8b:ef:59:bd:fb:0b:34:72:df:76:f2:e9:35:db:a5:
7e:8b:1d:11:cd:0a:7a:32:cc:56:0d:39:c0:95:96:
d0:e6:d0:f1:3b:77:8b:9e:35:ff:e0:35:74:a4:33:
bf:a4:52:4d:bc:99:0e:9c:f1:23:8e:6b:12:eb:e0:
4d:2c:08:b5:ce:7e:89:90:e6:1f:e2:44:37:9f:80:
c9:aa:fa:be:a6:23:05:51:4e:5f:ca:28:c1:da:b1:
13:21:22:8f:c8:bd:93:9f:f7:0d:36:c5:6b:d2:ce:
3e:9e:07:e5:ce:47:9d:72:5d:86:4f:7b:52:9b:ea:
b8:03:96:21:a9:77:c4:86:bb:4a:c5:cb:45:2b:74:
b7:a2:56:84:8b:17:98:88:41:59:de:b4:ca:b5:ca:
43:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:18:8D:75:3E:DA:11:07:81:F3:0C:ED:A9:76:3F:BD:25:0D:F9:D9
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/MxiNdT7aEQeB8wztqXY_vSUN-dk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.213.0/24
Signature Algorithm: sha256WithRSAEncryption
80:47:46:1c:30:7e:f5:eb:ed:f6:d9:b2:9c:f6:c9:da:28:41:
2b:32:c7:0d:1d:60:c7:6f:ad:d8:e9:63:34:fd:c3:7c:e1:5c:
34:52:c0:5a:40:04:bc:79:ae:18:97:75:b7:21:4e:3d:96:68:
db:d6:8d:27:8e:ee:4f:1f:bb:8f:fc:0a:48:da:db:af:46:ef:
e5:46:5d:56:1a:ab:be:d8:5f:a5:9d:47:73:cb:65:6c:10:ab:
7e:e3:ab:14:cd:0b:e8:19:0b:6d:29:25:0c:b9:ac:7a:8d:9e:
d4:18:5e:38:f9:2e:d4:99:ed:60:85:7e:ed:d9:8a:aa:de:1e:
8b:a2:f8:f9:72:b8:d2:2b:b2:16:2a:94:3b:4a:7b:bc:c3:e3:
73:b3:9c:3f:91:47:fc:99:f3:1d:12:df:03:98:e3:3e:06:47:
a8:e1:cc:4c:b9:68:a9:64:11:da:ed:2f:8a:56:81:81:90:9e:
c1:b0:df:12:00:73:88:4b:d0:5a:97:8a:e7:9c:36:f3:62:6a:
6c:aa:92:ee:d5:dc:cd:ef:ae:6f:3d:a0:f6:01:13:b2:fe:e0:
fb:15:48:4f:d6:55:28:79:4c:cc:d3:a9:1a:6b:57:e2:7e:ef:
4b:a5:7c:7d:8a:af:59:79:19:b8:77:b9:fb:a6:90:b8:ec:cd:
01:de:21:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:03 2025 by rpki-client