Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/7N75XNrkVf-Wh-3tTUe_6hJMz68.roa
File: 7N75XNrkVf-Wh-3tTUe_6hJMz68.roa (raw, json)
Hash identifier: LQclQv1MpTcI0Fdc+4NC3pJRaQ7qYuNIB8nCsKvjFEo=
Subject key identifier: EC:DE:F9:5C:DA:E4:55:FF:96:87:ED:ED:4D:47:BF:EA:12:4C:CF:AF
Certificate issuer: /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial: 0B10
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/7N75XNrkVf-Wh-3tTUe_6hJMz68.roa
Signing time: Tue 03 Oct 2023 06:31:54 +0000
ROA not before: Tue 03 Oct 2023 06:31:54 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2832 (0xb10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Validity
Not Before: Oct 3 06:31:54 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ECDEF95CDAE455FF9687EDED4D47BFEA124CCFAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9b:17:3a:e1:ea:69:58:30:08:22:89:68:ad:
ec:62:dd:e8:85:1d:d6:6b:65:01:7b:eb:12:b4:a1:
c9:37:42:fa:16:5e:b2:8a:70:53:a9:8f:b3:42:08:
1b:c3:00:49:4c:7e:18:ab:29:4f:f8:9d:0c:13:bc:
3e:59:3d:1f:4c:42:8f:87:ec:b7:3a:2a:57:c3:4f:
b1:eb:8a:86:c7:68:bf:39:71:2f:0b:d2:4a:ac:7e:
ea:9c:5f:8e:0e:e6:d5:52:a9:a2:e8:f3:71:45:3a:
00:da:ba:30:78:8b:42:8b:e6:57:e1:e4:c3:65:e7:
9f:73:6d:0b:2b:25:3f:7c:96:59:95:6c:4b:5f:a7:
f7:21:14:a9:fd:1d:f1:d8:f8:96:61:09:09:21:d7:
ce:14:51:c9:8c:02:05:d6:51:b1:80:4e:c3:7a:67:
1a:cb:ca:3a:b2:b7:96:ab:6f:8f:10:98:a5:36:bf:
6e:e3:4a:a2:a2:86:36:76:0d:06:f1:64:e7:56:cf:
b6:a7:61:9b:7b:60:bd:94:ad:e9:1c:08:fb:f9:4e:
88:46:ff:3d:c5:95:28:19:70:75:71:e5:ab:04:7f:
16:bc:9d:78:66:da:95:98:f9:27:a4:7b:72:77:29:
c1:56:b6:57:c0:d0:74:91:d6:37:32:90:61:09:2c:
d7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DE:F9:5C:DA:E4:55:FF:96:87:ED:ED:4D:47:BF:EA:12:4C:CF:AF
X509v3 Authority Key Identifier:
keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/7N75XNrkVf-Wh-3tTUe_6hJMz68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
38:af:3e:11:78:b8:f7:66:37:9e:c9:0f:a7:60:a9:65:44:1c:
71:a1:db:e1:37:13:7c:f7:eb:9a:d7:ff:e2:4b:8a:5a:fa:02:
eb:4a:f1:c4:3b:5a:95:94:d6:37:6f:d7:a8:b6:51:a6:87:f6:
b0:b5:38:bf:5f:54:66:bc:c5:84:4e:69:25:5a:f3:44:ae:ec:
7f:0e:8c:83:c7:00:68:d3:1b:68:c0:c8:66:ff:25:03:86:f1:
00:a8:3e:a3:5d:f6:18:e4:e5:04:53:03:5e:64:27:46:df:49:
8a:e4:38:b9:51:71:d0:73:8d:70:61:54:dd:99:a5:f1:a8:55:
eb:f8:96:1c:9a:c6:db:32:83:8f:b2:73:c5:3d:7c:d6:4d:f6:
0e:0f:ac:d1:be:0f:ae:82:81:6b:0e:b8:4e:a3:d0:c2:bc:4b:
03:af:14:6f:31:d6:1d:96:56:f6:c0:0f:bf:62:a3:fd:c5:f6:
b3:8f:b1:6a:56:80:da:7b:69:2e:8b:42:f0:8a:fd:92:cf:23:
4b:ce:08:28:c2:e8:a5:36:71:31:93:aa:1d:02:ef:1a:de:ec:
17:76:76:74:3d:e7:13:14:8f:74:62:16:66:0b:29:e0:e1:91:
8a:e1:77:2f:06:ce:80:19:24:f5:57:f5:bb:b5:c6:4b:ff:b8:
8b:d3:8f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 09:00:34 2025 by rpki-client