Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/TphJRlEE6TjcpFl_yDD3AEIkHkU.roa
File: TphJRlEE6TjcpFl_yDD3AEIkHkU.roa (raw, json)
Hash identifier: /Vw9gaCkz8oweHn42rqgUfp8i74f1Z8k32BowIiibTU=
Subject key identifier: 4E:98:49:46:51:04:E9:38:DC:A4:59:7F:C8:30:F7:00:42:24:1E:45
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 02A7
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/TphJRlEE6TjcpFl_yDD3AEIkHkU.roa
Signing time: Mon 10 Feb 2025 14:05:16 +0000
ROA not before: Mon 10 Feb 2025 14:05:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 983
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 679 (0x2a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Feb 10 14:05:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4E9849465104E938DCA4597FC830F70042241E45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:df:0c:47:3d:c2:48:41:be:40:4a:47:62:14:
b8:bd:05:c0:2e:67:f9:03:a0:32:63:ea:10:57:92:
e7:67:60:7c:68:09:f8:af:d0:72:8f:66:11:3a:ed:
d8:66:19:ec:37:ef:20:ee:a7:15:22:84:28:9d:e4:
7f:09:32:ac:2a:e5:23:4a:ba:90:60:99:32:e3:20:
52:3b:ba:9a:d4:d4:f2:41:70:ae:35:b6:cc:c0:e0:
11:9a:f3:ec:0d:13:86:73:09:be:40:5c:a6:a8:2e:
bd:3e:00:19:3d:8f:3c:f9:68:f4:b9:0c:1d:be:26:
39:1f:1f:52:a8:43:0b:c7:8a:b3:6d:b5:5e:8f:92:
68:6f:7b:de:3e:6b:50:54:e5:03:7d:b9:9c:b1:3f:
60:18:3c:7b:33:61:3a:5b:c6:34:9f:35:fd:b4:8e:
39:b1:91:c5:4d:9f:10:02:51:32:a9:29:7b:d0:29:
f9:6b:79:d2:d7:7c:84:3e:a0:e0:d3:61:ed:a2:e2:
7c:cc:00:9d:b7:bb:c0:7b:e2:1f:3b:be:1a:b5:ff:
03:66:de:e9:e7:77:7f:d7:f6:ba:f7:6c:ef:60:97:
ef:db:3a:c7:61:79:7e:0e:fd:c0:bf:8d:2f:7a:76:
23:29:8e:6a:41:38:f9:76:71:bf:e0:b4:49:0d:4d:
45:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:98:49:46:51:04:E9:38:DC:A4:59:7F:C8:30:F7:00:42:24:1E:45
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/TphJRlEE6TjcpFl_yDD3AEIkHkU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:e2:c6:a9:4e:c5:54:67:d3:c7:75:4e:47:32:c0:c0:9c:6e:
0f:43:79:ff:c2:2c:1c:db:35:f4:b9:a1:36:07:6e:74:5e:e3:
5f:ea:5e:8d:15:a1:98:51:6f:b8:39:c0:c8:e8:c3:45:82:a7:
22:c6:47:38:c7:fb:73:5a:49:7a:00:80:5c:53:5c:dd:0f:87:
39:ea:31:76:05:04:d3:ef:e3:06:8d:6d:f1:e6:9d:16:3a:ca:
99:9e:9e:e1:93:ea:8a:01:83:55:05:3b:8b:fe:7c:4a:4d:76:
bf:b8:22:c6:3c:db:c7:76:98:be:2f:5e:01:1a:34:aa:b6:7d:
e2:28:68:c4:58:30:51:fb:c1:7c:5c:09:d3:3a:1e:e3:49:e8:
e8:da:1b:6d:71:b0:f4:e3:ea:40:c7:5c:60:22:cb:4a:cd:bb:
53:09:9a:f5:87:52:b8:ce:2e:ae:96:51:e5:d9:b6:bc:6f:57:
e2:37:b4:12:ae:f6:ec:78:87:02:39:80:18:b8:97:24:d0:e3:
46:65:7f:de:d2:f6:36:4b:04:a7:e7:98:d5:36:e3:cd:16:b3:
cf:b0:24:cc:3c:2a:f2:cd:f2:29:7c:89:bb:8f:3a:a5:78:84:
bf:6d:0f:7b:d0:63:10:cf:f5:b7:dd:2b:ee:01:f8:d2:87:da:
bf:41:76:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:50:56 2025 by rpki-client