Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/SVLHAckiLdD6vHh4Ykt5dNX9iWM.roa
File: SVLHAckiLdD6vHh4Ykt5dNX9iWM.roa (raw, json)
Hash identifier: 8YnCLAqao/+MnAB+eUlKd70lHWvj48kpVFK0d7mzNE4=
Subject key identifier: 49:52:C7:01:C9:22:2D:D0:FA:BC:78:78:62:4B:79:74:D5:FD:89:63
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 126E
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SVLHAckiLdD6vHh4Ykt5dNX9iWM.roa
Signing time: Mon 10 Feb 2025 14:28:24 +0000
ROA not before: Mon 10 Feb 2025 14:28:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 103.36.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4718 (0x126e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4952C701C9222DD0FABC7878624B7974D5FD8963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a4:9e:76:e8:90:67:78:38:9d:95:d3:da:08:
cd:45:15:77:06:d9:fb:d1:40:c5:73:5e:c4:91:54:
2e:b3:5c:bc:84:23:18:a8:d2:b0:80:a7:1d:be:ad:
f9:95:5b:b5:3c:9e:f8:63:65:23:92:c8:23:dd:aa:
23:77:cb:49:15:13:8e:e9:85:11:17:27:ef:db:0f:
1e:f8:94:0b:dc:2e:7d:91:fd:43:25:b7:3a:e9:43:
cf:2e:b0:d7:ea:d2:70:63:32:78:6b:64:53:a8:6f:
0c:9a:0f:89:21:87:85:80:43:81:7e:98:93:1e:b2:
04:76:c0:b8:67:87:28:03:9f:73:ce:47:a7:18:86:
58:5d:08:ba:1f:f0:a6:d0:df:57:56:3d:4e:1c:91:
04:87:15:71:55:43:a6:47:ff:fa:5a:25:80:c0:9c:
ff:21:21:f7:c6:f2:1b:fe:4b:01:d2:af:c1:7d:27:
d9:37:54:4f:52:dc:25:b9:44:ee:17:d6:57:51:f6:
01:d3:de:63:de:e2:44:24:73:02:57:6c:57:77:42:
2b:20:64:c1:f9:01:89:24:89:ba:4b:51:02:7e:ce:
a7:76:bc:68:69:65:c9:62:51:45:be:7e:64:31:0b:
80:2e:56:26:37:14:3d:ec:a8:46:da:da:25:74:b8:
53:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:52:C7:01:C9:22:2D:D0:FA:BC:78:78:62:4B:79:74:D5:FD:89:63
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SVLHAckiLdD6vHh4Ykt5dNX9iWM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.36.116.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:c6:a4:cd:6d:6b:55:1b:0e:21:72:b9:52:0b:63:4b:83:87:
4f:aa:61:d9:e6:e9:af:55:23:9f:b1:73:0f:4f:14:a6:67:a2:
dc:71:3c:4a:02:97:9e:c7:2b:55:ab:26:a6:56:16:bc:63:50:
ba:17:38:b1:1a:9e:2d:8e:94:eb:d7:2d:97:f1:8f:df:30:41:
0b:98:c7:b2:c1:fd:c2:32:bd:04:1c:05:59:19:ed:32:1f:77:
90:9d:74:65:9a:6f:7d:f1:00:71:b0:bb:72:9a:d0:b4:31:e0:
c8:26:19:6d:d0:7b:d3:66:94:b5:93:d1:b6:cc:04:ea:d3:68:
fb:4f:d9:08:c4:2c:d6:a1:fc:a7:a0:d7:31:ba:e9:ca:2f:1b:
d7:19:88:9e:b6:78:a3:d2:bb:71:0d:b4:6b:d7:66:e0:77:fb:
30:6d:4c:fd:f0:91:ff:93:29:1d:68:43:fe:45:43:35:61:f7:
26:f8:0b:a1:24:44:f3:0e:29:ae:ab:31:6a:34:a3:48:57:c6:
68:37:5a:04:75:9e:27:97:93:81:9e:e2:40:8f:37:68:e6:3b:
26:e1:c8:c8:2d:ed:0b:1b:06:a5:23:6b:1a:6a:11:cd:5e:c6:
1a:5c:bc:de:2d:c7:1b:ab:ae:d8:86:1e:90:5b:62:32:dd:70:
5c:82:aa:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:44:18 2025 by rpki-client