Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/wyKCEjMH88yZ0NIX94QZQeqVttY.roa
File: wyKCEjMH88yZ0NIX94QZQeqVttY.roa (raw, json)
Hash identifier: khtaUgTIR9KHuEk5gCTnzG9z18WRj67MXWTRq24GsLc=
Subject key identifier: C3:22:82:12:33:07:F3:CC:99:D0:D2:17:F7:84:19:41:EA:95:B6:D6
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 1308
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/wyKCEjMH88yZ0NIX94QZQeqVttY.roa
Signing time: Mon 10 Feb 2025 14:08:37 +0000
ROA not before: Mon 10 Feb 2025 14:08:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131606
IP address blocks: 103.124.40.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4872 (0x1308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Feb 10 14:08:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C32282123307F3CC99D0D217F7841941EA95B6D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f2:7e:2b:01:4b:18:e9:f1:00:5a:81:c7:b5:
45:05:16:43:75:3f:46:d2:27:c2:c0:7e:38:bc:f2:
6a:cc:36:d9:c1:7a:9e:5f:67:7d:88:66:94:a8:91:
57:8b:b8:b4:28:c5:c4:ac:33:68:69:22:ab:20:9e:
4d:67:6a:b7:38:20:c1:fd:34:a0:a3:5e:ca:70:8e:
67:05:2b:8e:f3:6c:0b:68:92:00:45:a1:5d:05:1e:
6a:fe:d5:17:29:a3:ac:07:ff:d8:fe:06:78:3c:2d:
cc:8a:21:df:03:38:95:ab:f9:8b:c6:7f:96:18:f7:
91:ad:48:53:5b:b5:2a:96:e3:4a:a1:e8:d1:7a:4d:
eb:b4:13:2b:f9:9f:01:97:db:ab:36:76:4d:1a:a8:
c7:c8:61:bb:8c:4a:0f:1c:f7:18:2b:82:26:0f:6b:
34:f8:6e:c2:34:49:ea:b4:35:9d:85:f9:dc:b8:97:
b9:58:73:e2:5d:13:a2:1c:ec:88:12:f6:3c:cf:13:
d5:ec:e6:75:6c:59:a3:66:99:aa:54:3a:a7:eb:1e:
c6:63:f1:bd:c1:c9:40:56:cb:87:e1:ed:2e:f6:19:
f4:32:a5:9b:bb:c3:84:81:8b:c2:1b:4d:94:b8:2a:
af:bc:93:a3:7f:dd:62:75:86:ce:fc:82:f5:98:9c:
67:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:22:82:12:33:07:F3:CC:99:D0:D2:17:F7:84:19:41:EA:95:B6:D6
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/wyKCEjMH88yZ0NIX94QZQeqVttY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.40.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:4a:93:ac:6d:3f:74:3a:8a:7e:d6:ca:0a:fa:c2:d5:8f:73:
eb:d9:c8:05:5e:bd:a3:e4:ab:62:fa:a9:db:22:0b:18:03:21:
da:09:f8:ff:65:09:a9:75:8f:d9:2d:21:34:d1:4c:ec:d2:07:
6e:c7:f8:82:c9:5e:a4:ad:c5:9a:f0:80:27:d9:6f:c3:93:e3:
8c:89:e7:08:a9:ca:2f:27:f9:54:5a:e9:b8:6b:5d:20:d1:f9:
11:aa:ed:08:be:d2:59:76:95:92:bf:05:bb:72:6b:f4:20:2b:
9c:2c:e3:14:7b:21:cd:b3:4c:d4:4e:5e:1f:5d:52:33:50:95:
9b:f7:55:7e:0b:87:cf:c3:50:4c:c6:f4:85:f1:79:1c:1d:de:
52:df:25:fe:4d:27:51:8b:9b:5b:29:24:fe:f3:08:4d:54:7c:
0d:78:50:f8:63:8a:98:92:8a:2d:c3:3e:e0:b6:e0:2d:3e:a7:
73:83:77:48:54:30:a4:d1:ea:33:6b:c9:d1:b5:f3:a8:9e:a2:
80:13:31:63:58:90:b1:aa:20:06:36:8a:6d:63:62:ca:67:15:
59:0a:aa:ee:33:19:5a:69:e1:e8:1e:cf:10:db:d7:25:71:ae:
f7:98:09:39:2a:98:06:d3:e3:05:9d:64:1b:7b:6a:10:01:9e:
01:3f:eb:e1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:08:52 2025 by rpki-client