Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/viYPBmh2aLpn6Qyils3E3p8lGkE.roa
File: viYPBmh2aLpn6Qyils3E3p8lGkE.roa (raw, json)
Hash identifier: hw+punW86zeIdBJjKEcv1rM8jzUbBxDq3ACJVcJMDzM=
Subject key identifier: BE:26:0F:06:68:76:68:BA:67:E9:0C:A2:96:CD:C4:DE:9F:25:1A:41
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0C83
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/viYPBmh2aLpn6Qyils3E3p8lGkE.roa
Signing time: Wed 04 Dec 2024 07:26:07 +0000
ROA not before: Wed 04 Dec 2024 07:26:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3203 (0xc83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 07:26:07 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BE260F06687668BA67E90CA296CDC4DE9F251A41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1e:e4:69:a7:97:cc:c2:04:49:c7:0e:92:aa:
be:b8:31:f5:d7:9b:56:9e:74:f0:e6:3a:c3:c2:fb:
71:2d:23:5f:6f:d8:7d:d9:ce:14:07:42:fc:61:55:
10:7d:e3:fd:f2:42:56:f3:dc:fb:a7:0b:79:ee:f9:
c8:2c:0e:1d:47:3b:dc:38:f7:fb:5b:72:6e:d3:d3:
48:7e:f6:7d:ae:32:ac:76:69:21:a0:35:d0:6d:3a:
f0:59:30:46:2a:e3:78:77:71:34:ea:b9:ea:af:77:
f9:91:5f:26:45:5e:53:75:e9:34:16:ff:86:5b:54:
70:58:63:51:74:d2:1a:2d:1e:8b:a0:67:16:b5:d6:
5f:7a:de:11:c4:b9:31:7c:fa:64:c0:ce:f2:8a:59:
f1:5d:87:3c:17:d2:e3:83:d2:74:fc:3a:68:96:83:
eb:de:00:0e:fa:cd:91:2e:a1:02:31:5f:d9:44:45:
94:ed:f8:b8:2a:dc:e1:90:df:7a:ab:47:50:e4:2d:
08:35:83:9d:74:80:f1:f8:8a:04:16:15:16:a3:fe:
4c:90:95:eb:87:85:a5:16:5f:21:9c:79:ba:92:6a:
4b:2c:69:5a:0a:09:25:3a:56:89:f1:4c:3d:e4:f3:
b3:a0:a4:ab:b1:ff:52:0f:c8:36:90:cd:f9:a8:b5:
d0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:26:0F:06:68:76:68:BA:67:E9:0C:A2:96:CD:C4:DE:9F:25:1A:41
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/viYPBmh2aLpn6Qyils3E3p8lGkE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
77:3a:92:cf:ac:84:22:f4:83:41:3f:91:51:31:d6:55:24:85:
75:b5:43:35:91:5f:17:9b:cd:a7:f0:b4:e2:1e:82:33:02:e5:
62:0f:03:6f:07:84:c6:9e:29:8b:82:ad:65:6e:4f:3f:9b:c5:
28:d8:f8:00:a4:de:db:bb:7d:5f:74:6d:97:36:51:a4:2c:a1:
d0:8d:b5:b2:39:23:1f:c3:f4:fd:3f:c8:64:82:ad:ce:1d:40:
c0:8c:d4:d0:2b:b7:79:17:39:a0:e6:b6:4a:d2:7f:3d:24:82:
be:32:59:30:e2:50:96:c5:ba:72:99:d2:2c:5e:00:34:6e:bf:
e9:01:78:25:10:52:43:6d:a6:8c:19:97:25:67:13:12:da:cc:
ea:d0:2a:0c:37:ef:9d:f8:40:eb:1d:bd:18:95:2d:d8:48:17:
ad:8c:33:3e:f0:13:6e:52:41:3f:f3:b3:19:e0:c0:39:66:42:
e7:42:74:c8:c7:e8:78:c8:41:ff:47:e4:02:14:11:51:4f:fc:
1b:1c:d4:fd:b0:ae:ce:65:5d:ec:a4:8d:ad:30:c1:4e:79:67:
12:57:5f:51:e7:20:0b:00:96:d2:83:d4:be:a9:0d:17:6a:0c:
12:07:b1:91:39:92:6c:2f:4b:aa:3c:52:f2:0c:b2:85:2e:12:
30:12:20:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:05:31 2025 by rpki-client