Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/JWYf1a8gL3oLKKMCJhEJzL2balc.roa
File: JWYf1a8gL3oLKKMCJhEJzL2balc.roa (raw, json)
Hash identifier: QaYvadLgw9Tgmuva0lSi1V/RYk4DjusLeE/t6ZTQW5A=
Subject key identifier: 25:66:1F:D5:AF:20:2F:7A:0B:28:A3:02:26:11:09:CC:BD:9B:6A:57
Certificate issuer: /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Certificate serial: 0200
Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/JWYf1a8gL3oLKKMCJhEJzL2balc.roa
Signing time: Wed 27 Nov 2024 10:36:56 +0000
ROA not before: Wed 27 Nov 2024 10:36:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7537
IP address blocks: 103.37.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 512 (0x200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Validity
Not Before: Nov 27 10:36:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=25661FD5AF202F7A0B28A302261109CCBD9B6A57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:56:02:24:5a:2a:a4:a7:71:7a:7e:ca:0e:a2:
3d:11:b4:d2:fc:f5:98:dc:91:a3:9f:38:4a:ec:e4:
62:7e:55:80:6d:e7:2a:03:df:ea:42:1a:85:3b:5f:
ff:b5:fa:e8:77:3f:e7:62:9e:cf:ab:b2:0c:f8:43:
5b:e9:53:c2:31:48:a2:2c:e8:61:3c:cb:99:b9:ce:
aa:d4:01:ee:56:a1:33:43:7c:a4:51:bb:b1:98:fb:
3e:73:2b:4b:d9:49:1f:16:d7:1a:a9:5d:8c:76:1f:
b9:8e:cd:50:73:5f:9f:93:c5:59:0f:1f:13:62:a6:
7a:38:47:f0:42:16:82:fb:14:0d:ee:8e:f4:7b:77:
eb:e3:7a:e7:b8:ec:6c:f7:dc:c3:60:01:5a:ac:61:
72:4f:5b:e2:c3:cf:35:9e:0b:f3:43:cb:71:a4:b5:
99:f5:b4:a7:76:23:d4:fe:02:e3:a7:5c:4c:5e:de:
23:9b:74:3e:bb:e1:bb:b7:2d:94:b8:b6:a5:8e:ed:
3c:c9:eb:59:d8:51:3a:ea:2b:a2:38:4e:6c:84:8b:
c4:cf:10:ad:09:ef:0f:7a:a2:1a:c3:d5:ce:da:cf:
1e:69:9e:da:1f:f8:6c:c7:ef:19:6a:d3:67:1a:bc:
26:56:63:70:26:64:db:5f:fd:75:71:13:d2:36:c1:
63:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:66:1F:D5:AF:20:2F:7A:0B:28:A3:02:26:11:09:CC:BD:9B:6A:57
X509v3 Authority Key Identifier:
keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/JWYf1a8gL3oLKKMCJhEJzL2balc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.5.0/24
Signature Algorithm: sha256WithRSAEncryption
82:77:f0:e5:02:aa:7a:ea:8f:ee:40:21:8d:d5:ca:a8:a3:cf:
9f:d8:82:cd:48:68:ec:35:d8:b2:81:38:7b:fe:7c:01:a0:f4:
ff:2d:d1:7a:8b:11:2b:e8:c9:7f:9f:40:7d:3d:3d:4b:bc:a6:
d2:ee:c0:3b:f2:6a:1c:28:4b:09:9f:8b:7c:db:63:3b:9f:a8:
f9:32:0f:03:09:78:ac:cb:27:af:a9:4d:9b:f6:0b:3c:d2:43:
8c:4b:eb:7f:c0:60:62:23:e0:b8:19:81:78:39:12:5e:03:8e:
2b:be:ed:0f:51:b4:4f:e5:8e:54:55:62:fc:df:87:97:9d:26:
76:7a:12:7a:e5:dc:26:79:96:7e:b3:95:9c:53:07:3d:dd:cd:
8f:6b:a0:0f:d0:15:4f:d8:f7:6b:24:9e:72:1d:4a:a7:07:52:
54:1c:62:2e:ac:d1:5a:4b:60:5c:a7:5c:08:5d:40:c6:02:a6:
f7:46:34:7e:1e:9a:0b:b5:7e:4d:f7:be:45:01:3b:32:23:71:
60:94:d7:a7:4b:e0:16:7b:5e:11:c4:4e:40:5e:1c:89:28:52:
be:e5:b0:96:41:a2:2b:a8:29:26:65:d0:a7:18:8c:be:b1:ed:
21:1f:d2:f0:b8:4e:8f:57:b3:05:cf:ea:5a:10:79:42:22:26:
d8:2c:bd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:35:29 2025 by rpki-client