Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/tm0xXgszCqI_rHyeMi_I30hc2iI.roa
File: tm0xXgszCqI_rHyeMi_I30hc2iI.roa (raw, json)
Hash identifier: bnGXcRYWxYHswkFr7aK/+VBlemEgtXwE/aWnuO0DB6E=
Subject key identifier: B6:6D:31:5E:0B:33:0A:A2:3F:AC:7C:9E:32:2F:C8:DF:48:5C:DA:22
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0C93
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/tm0xXgszCqI_rHyeMi_I30hc2iI.roa
Signing time: Wed 04 Dec 2024 11:26:11 +0000
ROA not before: Wed 04 Dec 2024 11:26:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3219 (0xc93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 11:26:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B66D315E0B330AA23FAC7C9E322FC8DF485CDA22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d0:f3:fd:16:78:10:c5:6b:a2:c0:72:a9:1d:
cf:6d:ea:47:00:b6:7d:8e:5a:63:62:14:8c:b6:5e:
21:29:fb:1b:bc:e1:25:00:81:20:e8:7a:d8:6f:06:
15:25:b3:5c:3c:69:2e:a7:63:58:28:3f:23:36:1c:
07:3c:ac:0f:9b:e0:5b:12:6c:3d:6b:ec:1c:86:e3:
ca:c6:52:99:1d:51:ce:92:33:dd:79:d9:ac:34:ae:
83:50:58:3d:b8:2f:a2:9f:e8:bf:71:fd:65:0b:49:
3d:24:65:a3:f9:63:8e:7c:43:4a:38:ff:de:87:fa:
7c:86:fb:52:d9:fd:4d:7a:d3:a5:f3:7d:a7:ec:f4:
d8:f6:e5:da:e7:61:c1:59:52:82:f0:1d:87:cc:46:
ae:2d:c6:56:70:fe:22:65:e4:e9:be:2c:85:90:96:
bc:df:44:f3:23:8a:17:a8:95:a6:b7:b6:ec:6e:a7:
48:fe:3a:a8:e8:a0:e1:93:8f:ea:be:4a:ab:47:67:
5a:56:0e:2b:87:ac:d1:01:c4:46:ee:a9:92:c9:0b:
68:32:1d:a0:f1:8c:a9:6c:05:98:fa:32:b6:1a:42:
91:85:6a:cf:a7:82:54:54:f5:3e:af:fc:8d:c8:0a:
db:67:cc:0e:d1:e3:f8:33:27:01:3e:12:1a:19:ff:
4c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6D:31:5E:0B:33:0A:A2:3F:AC:7C:9E:32:2F:C8:DF:48:5C:DA:22
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/tm0xXgszCqI_rHyeMi_I30hc2iI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
af:71:84:62:bf:8e:9a:41:18:07:82:aa:bf:aa:a5:a6:bb:b6:
3c:49:ac:f5:b4:e2:6a:d7:06:70:6f:61:cd:5d:69:0e:f4:09:
63:a7:d6:bf:fd:ff:3f:ba:8b:81:ef:2e:8e:07:2f:a5:92:64:
35:69:f3:02:12:6b:87:dc:b7:4a:69:19:ea:f9:0c:6a:fb:7f:
96:60:e6:52:13:db:2b:5c:7e:97:05:eb:72:7e:8b:54:5f:52:
54:63:9c:e5:6a:2f:01:de:fe:26:dd:2b:76:c4:02:21:74:27:
23:e9:34:20:12:c8:f1:e2:ae:e6:08:04:a3:bb:b0:34:10:0c:
1b:52:17:74:0a:61:2a:76:35:21:fe:3d:d7:ca:f4:d2:e6:11:
e1:21:45:3d:d7:c3:98:1f:8d:2f:19:f6:a3:81:4c:5e:8a:9e:
48:52:46:5f:83:0a:99:77:19:ad:16:93:e7:cf:1b:64:d9:17:
c7:1c:ec:0d:8f:01:d6:b5:c9:51:d9:3b:ff:9f:c0:f6:83:53:
a0:a1:79:d0:54:83:a1:b2:6b:8a:41:b9:5d:e8:bb:61:03:e5:
08:64:dc:7f:01:c8:21:bf:ff:65:43:31:b0:e0:e4:33:69:6b:
b7:6f:5a:13:31:8b:03:e7:6e:2f:0b:4b:a7:6b:de:e0:9d:cf:
a0:4b:39:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:02:59 2025 by rpki-client