Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/c_eEAoCYtqT0DCUX01MZBP0bTxA.roa
File: c_eEAoCYtqT0DCUX01MZBP0bTxA.roa (raw, json)
Hash identifier: K77LUNd8xR04d66gFmAtMl4mybGv3lNFyZSBVz3h4rc=
Subject key identifier: 73:F7:84:02:80:98:B6:A4:F4:0C:25:17:D3:53:19:04:FD:1B:4F:10
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0704
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/c_eEAoCYtqT0DCUX01MZBP0bTxA.roa
Signing time: Mon 10 Feb 2025 14:22:51 +0000
ROA not before: Mon 10 Feb 2025 14:22:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.98.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1796 (0x704)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 10 14:22:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=73F784028098B6A4F40C2517D3531904FD1B4F10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:e1:34:be:d4:7b:79:57:fd:fc:de:3d:1f:
99:e2:c0:52:2b:11:d2:b7:db:45:39:5a:fb:c3:fc:
6c:73:45:f8:7a:ac:24:73:0a:fa:04:41:2c:d9:06:
ba:84:f9:6b:36:bd:37:c4:06:99:23:da:59:0a:ef:
3e:ef:3f:82:86:fb:65:43:d8:3c:67:bb:37:4f:c7:
4c:5b:fc:13:35:cb:91:df:7f:6a:41:30:32:35:6b:
05:75:33:7f:ec:09:7d:a9:d4:6a:a8:1d:30:d2:be:
fe:4a:74:d3:da:ac:f1:e1:7b:25:f2:e9:76:68:bf:
ac:fd:e3:66:d2:c3:a1:cf:95:5f:0e:68:0d:76:b7:
b6:74:43:6e:01:61:11:58:db:bb:74:02:ca:a3:03:
58:81:e5:b2:df:18:72:de:87:0c:9a:b1:bc:8b:51:
76:d7:79:b5:1f:51:c0:be:7c:96:4d:7f:af:8a:bd:
3f:25:0c:ee:1c:db:b0:4c:00:46:b8:a8:6b:9b:a8:
10:b6:fa:05:80:a4:a8:3b:c4:9c:22:45:da:58:c1:
f2:6b:31:d0:ae:b7:1c:30:34:1b:45:17:a9:26:69:
f6:f4:b4:71:0b:42:6f:53:2a:9d:2a:76:bc:37:a3:
ed:09:75:28:d8:9f:07:29:a2:4d:25:ae:ae:20:4c:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F7:84:02:80:98:B6:A4:F4:0C:25:17:D3:53:19:04:FD:1B:4F:10
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/c_eEAoCYtqT0DCUX01MZBP0bTxA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.72.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e3:a2:29:5c:bd:ad:48:57:15:15:20:ef:ff:f5:90:c2:88:
09:4f:ff:7f:5a:9e:ea:75:f7:03:2d:ce:c1:8f:80:c9:1e:39:
44:96:bb:a2:a1:a3:94:21:2e:fd:10:9e:7b:89:e3:02:e2:7a:
0a:cd:8c:f3:df:8a:db:89:bd:92:64:ee:3e:94:1a:40:12:0c:
92:b1:cc:cf:21:0c:63:73:57:c4:2d:f1:7c:7e:96:e2:f5:17:
60:96:e5:b3:af:9c:04:4f:e8:d3:05:a0:aa:75:5f:65:69:2e:
ad:b2:f9:a1:4c:84:f4:3b:60:77:42:56:67:11:44:09:ea:21:
ff:f3:f7:9a:f6:b1:83:98:17:ff:97:69:78:8d:10:e3:4a:fe:
59:ad:f1:3a:bc:0a:9b:7c:d4:35:9e:5c:4f:01:ae:5a:9b:ec:
97:b1:26:67:9e:25:15:ce:5c:75:16:86:92:a2:5a:db:aa:ff:
56:56:63:b1:94:da:4e:38:f8:b2:db:fb:32:52:31:8e:c3:79:
d0:56:32:57:c0:ed:47:84:f8:46:b3:78:fc:4e:62:2e:8b:be:
73:4b:81:cb:1f:ab:93:2b:bf:d2:fc:6f:f4:3e:6f:c6:0a:91:
1c:69:4c:c3:e7:62:b2:0f:fd:e0:01:1e:49:1a:25:38:b1:f7:
18:13:cb:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:29:47 2025 by rpki-client