Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/ovQ6uuxIzFLnLBWMEaRCF-JvU90.roa
File: ovQ6uuxIzFLnLBWMEaRCF-JvU90.roa (raw, json)
Hash identifier: sIq/JywgChyZEaOQ4ePG2pf0Di+Xx5VDhUNg0GrgT/U=
Subject key identifier: A2:F4:3A:BA:EC:48:CC:52:E7:2C:15:8C:11:A4:42:17:E2:6F:53:DD
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0CBB
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/ovQ6uuxIzFLnLBWMEaRCF-JvU90.roa
Signing time: Wed 04 Dec 2024 21:26:15 +0000
ROA not before: Wed 04 Dec 2024 21:26:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3259 (0xcbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 21:26:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A2F43ABAEC48CC52E72C158C11A44217E26F53DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:91:90:0d:c7:01:83:09:33:cb:2c:01:2f:11:
24:0c:39:5d:e5:ca:d9:11:27:b4:cf:d5:b0:80:a7:
ce:41:1d:4f:ea:ff:0c:aa:84:3b:82:bb:79:27:ae:
6c:ac:07:5e:fb:19:91:3a:c2:8a:bc:2c:4c:57:6f:
7e:3c:e8:eb:03:48:79:f0:b5:9f:26:15:66:f0:1f:
21:22:09:5d:96:45:27:09:e1:20:5a:d3:84:d1:21:
16:18:43:27:3f:f1:41:22:07:71:89:9c:d8:e8:fa:
e1:07:a1:41:f4:36:ad:22:49:f0:da:29:78:08:e9:
2a:56:64:e8:4d:ef:58:d1:39:dc:47:57:ac:37:ae:
36:81:24:2c:87:a7:24:ee:2b:11:36:ad:30:0b:fe:
08:7f:1e:49:f7:4b:77:fc:17:f5:54:ac:95:7c:37:
30:33:95:98:68:e1:1d:46:f5:37:6a:55:44:c4:93:
91:d7:47:21:be:78:34:38:67:9b:6d:95:e7:85:73:
6a:60:9d:c5:a2:8d:96:90:4f:6e:4f:51:ed:f8:f9:
84:16:c1:d4:69:50:11:80:cf:f8:d3:0a:3f:59:0c:
96:29:85:54:39:d4:c2:fe:e2:39:45:fc:37:67:56:
9b:33:7b:d5:20:45:64:21:0f:7c:69:1b:15:97:a8:
ce:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:F4:3A:BA:EC:48:CC:52:E7:2C:15:8C:11:A4:42:17:E2:6F:53:DD
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/ovQ6uuxIzFLnLBWMEaRCF-JvU90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:fc:88:9b:19:ab:aa:40:a3:28:5d:68:a1:79:53:5f:a1:36:
b5:92:11:81:d2:ad:72:03:7c:a7:11:fa:a0:42:33:0f:00:18:
40:7a:e4:24:2a:19:53:69:36:76:0b:a9:8b:ab:9a:48:b3:a5:
8d:2c:85:bf:07:70:64:71:89:2c:c1:9b:66:3b:90:da:de:e9:
17:92:6b:cb:88:8d:ba:fb:a5:df:67:c3:e8:db:97:3a:c6:cb:
55:60:6d:75:20:6c:50:53:3d:c0:8b:88:a8:19:86:66:c8:7d:
95:97:84:1d:66:ad:ab:e8:a0:68:8b:c2:8a:6d:66:8e:23:98:
62:3c:eb:c3:b9:6f:8b:16:0f:51:14:35:15:cc:32:25:62:ae:
93:2f:e3:80:6b:5e:08:fd:3d:37:69:38:42:c0:7d:db:d5:37:
6b:1c:4d:09:9b:3c:57:d4:a1:34:02:b8:51:92:e7:98:9b:e7:
41:7e:43:d6:70:ff:00:ec:28:18:4d:6c:fe:03:fc:d5:96:2e:
15:fe:af:fa:56:b7:e2:be:92:9e:67:e2:27:ab:9d:a7:bf:6d:
a7:15:7e:cd:da:9e:24:64:5e:18:fe:94:64:25:fd:32:16:6f:
85:4c:67:bd:ec:8c:ba:c6:d7:41:84:f4:48:75:d5:4d:e5:3b:
84:1f:b5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 21:06:01 2025 by rpki-client