Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/wEnm8C8tkWzSNKX5O-7tGclJmv8.roa
File: wEnm8C8tkWzSNKX5O-7tGclJmv8.roa (raw, json)
Hash identifier: 0kKhl72wEnLGGh5yoZFHQU3pE4ItlGp6bJYmpW5hKo4=
Subject key identifier: C0:49:E6:F0:2F:2D:91:6C:D2:34:A5:F9:3B:EE:ED:19:C9:49:9A:FF
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D1F
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/wEnm8C8tkWzSNKX5O-7tGclJmv8.roa
Signing time: Mon 10 Feb 2025 14:04:35 +0000
ROA not before: Mon 10 Feb 2025 14:04:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 103.234.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3359 (0xd1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C049E6F02F2D916CD234A5F93BEEED19C9499AFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5d:9d:07:27:88:0b:59:3b:19:66:3f:4d:18:
06:09:bc:2f:0f:d3:cd:ee:07:b5:3f:41:aa:91:10:
19:05:20:7c:09:f3:aa:c9:c3:bc:30:59:40:73:ab:
12:da:18:18:87:62:4f:7c:12:1a:37:92:29:48:0b:
72:da:9f:7c:3f:4d:52:3b:93:9f:e4:13:3a:ea:6c:
55:8c:9b:cd:38:c8:31:cd:d5:b6:58:0a:ed:3e:20:
eb:04:81:b1:3c:96:78:ba:28:a1:b6:0e:51:65:93:
a4:de:ed:4a:75:02:d5:1b:21:c4:95:77:ee:35:40:
cd:a1:e4:93:05:f8:67:72:f9:2c:28:96:38:96:98:
a9:78:5d:4e:1d:d8:4b:d5:a0:66:df:fe:53:16:25:
74:26:7a:06:bf:67:50:5b:25:db:98:80:3c:0e:1b:
5d:75:bf:b1:de:82:ee:66:10:23:b8:a9:ea:93:cd:
61:f3:eb:5d:4c:f0:cf:8f:5d:0e:6c:1f:0c:02:bc:
51:86:0c:34:7e:9f:ce:93:c8:b6:02:c1:ae:9f:62:
77:d4:e4:fb:eb:4f:29:ae:ad:22:97:2e:cd:dd:ac:
d0:d6:c1:a7:17:64:8f:23:2b:f4:51:2a:80:9a:b1:
f6:0b:f9:0b:cf:e6:ac:a1:a8:75:5a:1a:0a:e1:76:
bb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:49:E6:F0:2F:2D:91:6C:D2:34:A5:F9:3B:EE:ED:19:C9:49:9A:FF
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/wEnm8C8tkWzSNKX5O-7tGclJmv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.76.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:46:4b:4f:0b:d8:68:51:2a:d3:50:11:14:31:ad:3b:ad:11:
11:f9:c7:ad:9b:97:7b:52:3f:33:a9:56:27:82:94:d3:09:00:
5b:95:59:c5:32:bd:97:38:b6:91:44:f9:31:c3:72:d3:d4:35:
f4:4b:8a:3d:bd:94:e5:d5:14:58:d9:fe:c4:77:55:c0:a6:d7:
fa:d1:47:b1:69:42:77:a8:31:f7:2f:8f:01:b4:f4:05:ab:16:
04:2b:82:5f:65:55:08:90:c5:9a:33:08:b6:7c:56:bb:02:ad:
f3:99:0a:7a:7b:b2:f1:ea:6a:fa:d4:0e:f7:41:27:ee:73:6f:
25:84:87:b4:48:0f:b4:32:af:43:23:8f:f0:32:50:23:b3:6d:
21:c9:cc:05:46:06:ec:e1:cb:8f:11:fa:9c:2f:a5:b2:6a:ba:
1c:8c:f1:3a:28:e4:c7:29:4a:a1:20:ab:71:7e:8d:6c:77:45:
6c:b5:b6:b2:79:58:32:57:a2:f8:e0:92:1e:de:c1:00:76:de:
8c:f0:fd:ce:1f:0f:72:fa:3e:06:cd:0f:c3:f6:63:54:94:4d:
76:18:d2:e7:03:b8:91:79:60:2f:c7:7a:44:5a:2d:6c:c8:fc:
35:a3:84:26:40:0b:7e:81:94:b9:1a:de:ef:f0:44:17:65:57:
ce:d6:f2:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 01:28:43 2025 by rpki-client