Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/IpQCjmD83-jTCEZImljzf3zLPFs.roa
File: IpQCjmD83-jTCEZImljzf3zLPFs.roa (raw, json)
Hash identifier: ZbZtrfjpr5AKxYEYuxJKJz8p4InclsRS0cvwzKJbuGQ=
Subject key identifier: 22:94:02:8E:60:FC:DF:E8:D3:08:46:48:9A:58:F3:7F:7C:CB:3C:5B
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 02A8
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/IpQCjmD83-jTCEZImljzf3zLPFs.roa
Signing time: Mon 10 Feb 2025 14:05:16 +0000
ROA not before: Mon 10 Feb 2025 14:05:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 56850
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 680 (0x2a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Feb 10 14:05:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2294028E60FCDFE8D30846489A58F37F7CCB3C5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d4:5c:f3:10:30:df:ca:d9:37:3f:c0:f1:ef:
b6:08:4d:41:71:1b:e6:88:09:a2:71:ce:c0:e4:15:
2a:51:c6:76:61:79:0f:54:cd:ae:6a:26:9d:0b:7d:
ef:32:6d:8b:b7:04:e4:92:49:02:56:98:17:be:4c:
9a:10:4b:c1:f8:ea:6d:67:97:0c:9a:aa:10:2c:b7:
83:78:a8:a5:06:2e:af:a8:f8:77:2c:51:06:cf:70:
d1:3a:a3:94:e8:71:fc:11:2b:ac:ed:44:92:a4:75:
f5:aa:2e:3a:c2:c5:1a:9f:84:5d:d4:93:88:69:21:
21:0a:e9:af:fc:1a:f7:bb:d2:09:f6:f1:89:54:fb:
de:79:b4:13:79:d3:09:af:66:88:2a:ba:c6:6d:bd:
79:0e:87:b5:8f:b9:69:d1:67:65:7a:4d:64:bf:c2:
2f:d5:45:1a:34:3d:f1:1b:8c:a8:bc:b2:74:8f:c8:
31:94:5e:45:42:6d:ff:f6:d1:85:8b:f3:8e:6f:1d:
aa:33:ec:b9:1f:17:89:09:34:5c:2a:d3:f4:ef:fe:
f5:50:9f:4e:d3:e0:fb:f6:a7:f3:b4:ee:a4:fc:9c:
60:cc:5d:c7:14:9e:f0:8f:f2:2b:61:f1:9f:f7:27:
14:36:4f:a1:cd:c4:6a:36:31:de:2a:cf:b8:55:24:
8b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:94:02:8E:60:FC:DF:E8:D3:08:46:48:9A:58:F3:7F:7C:CB:3C:5B
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/IpQCjmD83-jTCEZImljzf3zLPFs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:c9:08:f4:64:3a:0c:8d:8e:ff:98:e5:e8:59:55:5b:31:39:
89:ae:5a:60:53:4d:e3:28:cb:3b:8c:f8:16:96:0b:92:dd:ee:
84:4f:89:fd:90:51:63:9a:bc:04:f6:53:78:3f:ce:bd:49:f4:
b0:29:11:0d:7d:68:ea:45:3c:80:f1:b5:c5:3b:d3:32:e4:c2:
8d:c4:32:1e:c0:d9:3a:db:a7:42:f9:6e:a1:af:15:58:52:22:
86:4b:14:0b:d0:5f:05:6d:fd:a3:b8:7f:a7:22:38:f6:9c:8b:
83:2a:2a:8e:78:ac:91:73:e7:e3:99:95:56:83:cf:23:fc:26:
ca:3f:ba:49:66:81:a3:77:5d:3a:91:26:33:7f:c0:85:41:eb:
fe:75:3f:b9:dd:ae:5c:5c:70:a8:3f:bb:c9:53:ab:d5:9d:b3:
70:f0:10:af:a0:ae:5a:5a:6e:f6:9f:8e:68:91:37:95:1f:4d:
a8:82:2c:af:2e:2d:b4:8b:a1:4d:15:5d:99:73:54:6f:28:a8:
76:49:28:65:5d:56:70:07:b5:e7:dd:ab:e9:da:7e:65:2f:00:
43:dd:5c:03:9c:ab:6c:71:be:d1:5d:50:36:ec:24:de:bd:5c:
60:35:13:4f:8f:69:3e:0c:9d:e9:ca:84:f5:20:19:9f:af:1e:
5c:58:8a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:08:54 2025 by rpki-client