Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/FhinhuqiAkO5hLp-j6X7ydkW6UA.roa
File: FhinhuqiAkO5hLp-j6X7ydkW6UA.roa (raw, json)
Hash identifier: iYegZqhBkdbfUKryMxzH0afkgGd7QBpxDiBPa9bmnPc=
Subject key identifier: 16:18:A7:86:EA:A2:02:43:B9:84:BA:7E:8F:A5:FB:C9:D9:16:E9:40
Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5
Certificate serial: 03CF
Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/FhinhuqiAkO5hLp-j6X7ydkW6UA.roa
Signing time: Mon 10 Feb 2025 14:14:11 +0000
ROA not before: Mon 10 Feb 2025 14:14:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131646
IP address blocks: 103.161.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 975 (0x3cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5
Validity
Not Before: Feb 10 14:14:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1618A786EAA20243B984BA7E8FA5FBC9D916E940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:11:d3:9f:fe:98:b3:1b:e8:b9:37:99:c0:0e:
7c:29:95:23:85:e7:99:31:be:dc:6a:6f:97:44:3e:
6f:46:ef:fb:5c:a2:0b:ed:9b:a2:28:39:c9:76:84:
75:a0:51:55:4f:72:89:74:b9:21:c6:6a:f4:a9:58:
91:d6:d1:dd:22:8e:c3:40:79:25:4c:ac:2e:ea:bc:
13:60:36:15:62:98:f2:e0:3e:3d:a0:93:f2:c2:59:
f7:73:15:44:bd:d7:7b:f7:1d:bf:88:62:7d:4c:fd:
84:ff:64:9e:aa:b7:37:6f:c3:d5:89:96:53:05:05:
7b:7c:2d:94:4e:91:96:e0:34:16:5a:98:ea:95:f8:
a8:7b:8c:12:87:98:ab:a2:8b:eb:57:73:8f:ae:24:
54:ef:37:c4:12:69:2f:2f:92:9f:a3:59:be:8c:6e:
f1:2e:f0:e0:6b:40:41:57:20:6f:8f:9e:b8:f6:f7:
7a:31:da:44:4e:fe:96:35:f9:7e:b6:03:f6:99:79:
63:1b:11:da:e7:1c:36:e7:af:d8:1b:dc:de:d9:e1:
31:ac:6b:e4:e4:1e:72:b1:a9:fa:ff:4a:3a:bc:03:
75:97:c4:37:d4:44:69:3d:1b:f1:56:44:01:98:cb:
df:b3:b2:f5:16:52:ff:21:14:cf:81:4f:8b:ce:6f:
2f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:18:A7:86:EA:A2:02:43:B9:84:BA:7E:8F:A5:FB:C9:D9:16:E9:40
X509v3 Authority Key Identifier:
keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/FhinhuqiAkO5hLp-j6X7ydkW6UA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.78.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:5f:b3:76:eb:88:97:fc:85:62:f3:0e:bc:a9:18:17:17:24:
92:2d:cf:5f:85:b6:14:1f:9e:f7:29:75:7e:bd:58:a8:56:e3:
ce:8f:b3:26:61:f7:d2:a4:5d:18:71:71:fe:9f:9b:e4:ba:a6:
d3:23:a0:a0:6b:37:48:62:a8:e1:a5:d1:2e:ce:68:e2:00:a4:
43:04:15:86:84:12:00:6f:37:bf:f5:42:f5:33:9d:7d:e8:ba:
f5:fb:5d:ce:76:86:65:cd:1a:91:7b:94:48:2b:6b:5c:fc:8c:
49:b3:ff:f8:df:7f:cb:2f:a5:aa:ab:5d:81:98:09:ca:44:0b:
46:02:ee:15:65:16:45:29:9f:a3:42:cf:be:9c:b4:bc:8a:39:
f8:43:9d:67:a9:ce:84:b3:bd:fb:ed:4c:db:46:fa:5d:f0:a1:
15:e1:8d:c6:9d:4b:79:74:62:99:dd:92:2c:53:1c:05:eb:4a:
cd:73:af:45:93:ee:4b:3c:eb:36:55:a2:cd:cf:23:8b:74:26:
ed:89:97:6e:64:20:93:a3:7f:c8:56:4a:1a:da:8e:08:74:e2:
d1:e8:ee:fa:ea:a6:f4:38:b1:89:00:12:7e:28:2c:54:68:cb:
d7:d8:f6:57:33:65:7d:6b:cd:fe:ce:ee:eb:7d:7c:9b:74:ad:
0e:7d:72:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:31 2025 by rpki-client