Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/kIgyysL1PC0Gp4-ftag1vc6cCT0.roa
File: kIgyysL1PC0Gp4-ftag1vc6cCT0.roa (raw, json)
Hash identifier: jPzPD9c5x2aHDXbqxdsHV7FQacT1O5VTAGqgUFSStxc=
Subject key identifier: 90:88:32:CA:C2:F5:3C:2D:06:A7:8F:9F:B5:A8:35:BD:CE:9C:09:3D
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 1309
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/kIgyysL1PC0Gp4-ftag1vc6cCT0.roa
Signing time: Mon 10 Feb 2025 14:08:37 +0000
ROA not before: Mon 10 Feb 2025 14:08:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 103.124.42.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4873 (0x1309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Feb 10 14:08:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=908832CAC2F53C2D06A78F9FB5A835BDCE9C093D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3b:42:c6:e6:c7:f1:42:5d:b5:2a:6a:2c:46:
64:12:ba:1d:b5:62:77:b1:b3:07:ca:45:ab:33:47:
d6:f8:83:c9:96:22:76:d5:bd:0a:c2:29:65:b7:87:
7d:31:b9:3f:83:12:87:14:1f:c2:33:9f:10:f5:e7:
87:4a:6d:96:03:85:1a:9d:16:d4:b4:3a:0f:0a:a9:
08:47:2a:7e:1f:f5:e5:ff:b2:03:89:e3:03:47:90:
8b:ae:a5:b6:de:c5:57:25:34:c6:b7:e3:c4:77:87:
c9:11:95:69:e3:be:e6:48:5c:d9:1e:be:4a:f7:62:
73:22:a7:6f:c5:a7:31:03:03:91:ad:5d:f5:1c:cb:
04:32:1a:c7:b2:ca:ec:ae:ec:89:44:56:80:10:c6:
5d:ef:b7:61:09:ea:7e:5e:e8:ea:2d:f6:73:50:44:
1d:20:74:de:fd:d4:ca:b3:da:3c:af:a4:55:f0:88:
e5:12:8f:52:3a:d2:e1:43:9c:1b:11:b5:fb:95:66:
0c:71:01:dc:86:d8:79:38:90:d2:50:2b:68:63:82:
bb:b1:02:cc:8a:96:06:55:aa:55:04:c4:5f:f6:5e:
72:f8:b9:54:95:b3:54:62:02:56:71:84:88:b1:e8:
24:04:51:6f:5d:12:07:c9:1d:61:4b:d5:53:f5:8b:
37:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:88:32:CA:C2:F5:3C:2D:06:A7:8F:9F:B5:A8:35:BD:CE:9C:09:3D
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/kIgyysL1PC0Gp4-ftag1vc6cCT0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.42.0/23
Signature Algorithm: sha256WithRSAEncryption
05:9b:0f:a7:d4:f5:a7:c0:9a:23:bf:1e:32:15:1c:25:ca:aa:
d6:6e:7c:bb:60:84:0a:28:a3:f2:02:6f:3b:7c:1a:ff:a9:62:
ef:63:06:07:cf:a1:c4:1d:41:22:cc:58:39:54:d7:22:59:64:
c0:df:ec:d9:7b:18:a4:de:61:4c:30:e7:36:e0:e6:a3:ed:02:
3c:21:7e:67:ff:9b:6d:f4:59:6d:ae:32:f3:d7:a8:31:80:2c:
4f:49:ca:be:70:41:27:1a:24:c2:bd:e4:1b:e7:3a:3a:cc:05:
b2:88:82:9e:78:57:a0:64:f0:2a:85:7a:54:9a:14:b5:e8:e7:
d2:37:e5:c3:f8:20:1f:15:6d:0c:7a:b6:61:71:ce:b4:8b:5d:
68:02:89:a3:f5:b5:8f:12:f5:e4:61:e2:bf:43:47:04:3c:f1:
ad:ea:7d:91:c4:eb:30:3d:95:bf:a5:e7:dd:54:ef:1e:fc:2a:
90:2e:ca:82:ae:cf:4c:8e:f2:d0:92:58:b7:dd:1f:fe:98:57:
4b:dd:2c:f3:df:64:c4:f5:eb:ab:67:6a:a6:73:90:8a:45:1e:
62:3a:60:f9:92:f2:f8:cf:1e:78:c4:af:03:f1:e0:f5:dd:1d:
79:ad:86:a0:3d:c8:0e:0d:09:d3:04:c8:3b:c0:56:42:23:a0:
ff:73:05:7f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 18 21:28:58 2025 by rpki-client