Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTT/2jwyFuitOBL9htJ_jfUDjXcGgkM.roa
File: 2jwyFuitOBL9htJ_jfUDjXcGgkM.roa (raw, json)
Hash identifier: 3yKNIbJFnB4guXv6WHaAKmMyXIoKsCNuV1qDF3cB2VE=
Subject key identifier: DA:3C:32:16:E8:AD:38:12:FD:86:D2:7F:8D:F5:03:8D:77:06:82:43
Certificate issuer: /CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Certificate serial: 0C8D
Authority key identifier: B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/2jwyFuitOBL9htJ_jfUDjXcGgkM.roa
Signing time: Mon 10 Feb 2025 14:19:23 +0000
ROA not before: Mon 10 Feb 2025 14:19:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 203.118.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3213 (0xc8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4EC61ED7E8C64F210317DCC7E808A9C192D884A
Validity
Not Before: Feb 10 14:19:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DA3C3216E8AD3812FD86D27F8DF5038D77068243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:84:29:f1:e7:b4:ef:6f:8b:9b:f1:94:fe:f0:
f4:92:3f:83:a4:c0:b0:02:ff:e7:10:f3:48:d5:68:
8d:a2:1b:43:85:b4:a9:16:95:eb:ab:51:b4:51:56:
7d:5b:9e:fa:a1:c9:4b:47:5b:6d:e1:5d:b2:0a:56:
08:32:45:4a:e7:d5:a7:4c:2e:33:06:a2:17:87:fa:
ea:a5:48:a1:17:f1:0a:96:43:9e:f3:01:39:43:1c:
be:67:b4:b9:d2:14:49:01:53:05:b5:4e:d0:fd:7b:
8b:ce:97:b8:9f:2a:71:ee:e6:53:f7:13:6a:73:2a:
fb:6b:dd:d2:e9:e5:a3:20:cf:8d:9c:59:c3:3b:e9:
85:3a:b2:f2:b7:67:da:07:25:08:8c:cc:ff:e9:e4:
20:f4:9a:c1:30:5f:01:9c:e5:c6:ab:c5:4e:85:89:
ce:80:e4:89:e3:3e:fe:c8:8b:95:06:a8:66:bb:ec:
d9:14:c4:3f:d3:60:e8:de:d5:30:97:ff:dc:0f:34:
7d:59:9b:62:47:b2:d3:09:89:7c:37:f1:65:60:0d:
fb:d9:69:2f:f9:ea:f5:a4:3c:e8:9b:cc:be:2a:4f:
46:5e:f6:53:44:a8:63:67:5c:1d:24:cd:79:6f:dd:
f1:bf:c5:55:59:03:bd:b6:27:fe:a6:80:fc:cc:55:
86:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:3C:32:16:E8:AD:38:12:FD:86:D2:7F:8D:F5:03:8D:77:06:82:43
X509v3 Authority Key Identifier:
keyid:B4:EC:61:ED:7E:8C:64:F2:10:31:7D:CC:7E:80:8A:9C:19:2D:88:4A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/tOxh7X6MZPIQMX3MfoCKnBktiEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tOxh7X6MZPIQMX3MfoCKnBktiEo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTT/2jwyFuitOBL9htJ_jfUDjXcGgkM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.118.224.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:b7:9e:29:56:11:8c:47:67:2a:09:ff:bc:f1:3a:d3:73:98:
b4:41:79:9b:31:77:59:af:a6:65:c1:a2:4e:77:49:58:d3:d4:
6c:73:eb:c0:33:51:ef:03:74:37:a4:1c:77:9b:c7:20:b1:03:
3b:72:46:e0:18:4b:77:98:4c:c9:d0:4e:f6:eb:0a:7b:05:e2:
a1:05:87:de:91:3b:3d:56:a1:8c:44:9d:ea:96:7d:b8:6f:3f:
1b:ba:60:b8:9b:98:07:9f:61:f3:9a:6b:16:af:e5:24:98:65:
b0:c5:ee:9a:d9:cc:ec:fa:a9:5b:68:09:cd:df:97:d5:bc:9d:
60:b5:ee:07:4d:7c:54:95:50:5f:1a:a5:c4:44:65:94:6b:1b:
88:47:7e:93:05:63:78:f5:7d:3a:6a:cb:0d:58:01:fb:98:a1:
a4:bc:82:ef:39:6b:3f:e8:e0:a4:f9:89:87:e2:e9:cb:0b:3a:
69:f8:3a:a2:2a:5b:7e:78:42:e8:05:62:17:8f:53:78:d2:3b:
ad:d3:eb:38:ae:d8:52:d7:a5:7c:6e:b3:ef:4b:10:c4:48:20:
8d:62:07:26:9b:4c:55:b5:a7:45:41:6c:6b:16:2f:82:e7:c7:
a5:4b:35:52:ca:4e:f4:d6:c4:6d:72:29:0d:df:be:f4:bb:d0:
f9:38:6f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:56:39 2025 by rpki-client