Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/Hp-d_Pj5QiY96JFEe9Z2yKltrzw.roa
File: Hp-d_Pj5QiY96JFEe9Z2yKltrzw.roa (raw, json)
Hash identifier: 5mIDZ8eZlRXbwmWvhSYQriF01/iZkRigu9IcQWN3K18=
Subject key identifier: 1E:9F:9D:FC:F8:F9:42:26:3D:E8:91:44:7B:D6:76:C8:A9:6D:AF:3C
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 136E
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/Hp-d_Pj5QiY96JFEe9Z2yKltrzw.roa
Signing time: Mon 10 Feb 2025 14:01:12 +0000
ROA not before: Mon 10 Feb 2025 14:01:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 103.130.48.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4974 (0x136e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Feb 10 14:01:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1E9F9DFCF8F942263DE891447BD676C8A96DAF3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f6:68:eb:46:bd:44:db:12:45:bd:57:bd:bc:
d6:2b:98:d6:cb:f7:a5:2b:46:e1:f5:74:e4:76:1a:
e4:37:e4:d4:fb:92:1d:4d:e3:57:86:ea:19:e8:66:
0c:64:59:18:04:4f:59:0b:f1:76:21:d0:71:d6:82:
03:96:dc:59:d1:b8:b5:03:17:fb:13:7f:1d:78:0a:
c5:e2:a4:33:11:22:c1:11:4b:f8:55:e2:02:c7:a4:
ef:65:27:4d:a8:71:6b:48:db:29:f0:cb:1c:76:8a:
55:d6:ac:c4:df:f4:11:ba:80:52:10:65:b3:91:a0:
bf:07:ab:b5:78:d9:22:6c:99:0e:6c:b2:0b:63:d7:
62:42:d1:b4:6b:b6:fa:2f:15:99:7a:ce:5c:0b:a0:
88:4b:20:52:c8:be:58:8b:aa:4e:bf:48:09:f0:6e:
09:62:e8:17:b7:cf:e3:e0:ac:84:8d:e8:e0:f2:89:
e2:2c:2e:b8:75:17:e8:6c:9b:97:df:bc:c1:46:61:
50:2e:0a:8b:27:5a:96:8a:ec:6b:9d:87:f3:49:c9:
92:3f:e2:d6:90:31:2c:e7:d5:10:2a:0f:9c:d3:f8:
3e:7f:e3:82:9f:7d:bb:f9:42:06:cf:1f:8d:95:04:
fe:39:c8:2d:f7:db:c5:81:df:f4:38:1e:bb:a9:4c:
4b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:9F:9D:FC:F8:F9:42:26:3D:E8:91:44:7B:D6:76:C8:A9:6D:AF:3C
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/Hp-d_Pj5QiY96JFEe9Z2yKltrzw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.48.0/22
Signature Algorithm: sha256WithRSAEncryption
61:2c:3b:1e:a3:2e:13:df:45:fb:9c:2c:2b:47:24:2a:c6:28:
d7:0f:07:30:30:d4:34:84:dc:cc:7d:ed:65:f0:11:2e:e2:83:
36:ae:53:5b:c9:62:aa:3c:43:d4:dd:5f:a5:4e:8a:9f:b1:d3:
98:6a:e3:e4:8c:5c:75:35:80:23:74:2a:25:0e:23:38:ca:e7:
2b:bf:29:c6:7d:28:d0:4b:16:4f:14:d6:db:53:fc:1c:f2:aa:
bc:5e:78:e4:cc:45:af:14:99:52:19:97:f1:8b:9a:91:3b:99:
7d:29:90:84:cc:b7:dd:7c:a9:7a:83:03:ac:af:0a:33:55:82:
fe:2f:f5:52:16:c6:92:bb:27:5f:a5:fa:bc:21:19:00:78:9e:
77:15:92:54:e2:fd:d5:4c:0b:26:20:75:dd:38:41:b5:29:ba:
c3:70:65:e4:f2:b8:80:af:b7:3e:e5:9c:28:10:e6:4d:d0:fb:
98:1e:3c:ff:e2:76:6c:55:26:df:b6:e9:2a:a5:34:40:8f:9f:
66:2b:ab:fd:47:31:f2:53:61:38:2b:2c:aa:1a:b8:ac:30:7c:
82:81:80:ed:d8:79:6b:c5:90:84:e6:a8:1b:26:66:96:e1:42:
41:15:4b:4f:7a:1b:d5:d6:7a:49:c6:e9:34:1b:96:ee:20:5b:
4d:7a:e1:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:41:45 2025 by rpki-client