Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/Mr2C4yEpOwDPOmb5A8zSCNYoTng.roa
File: Mr2C4yEpOwDPOmb5A8zSCNYoTng.roa (raw, json)
Hash identifier: N8bNc4zYOp2HDREzTj4yRlfzJ1dJrLHpg2tTyOdfzss=
Subject key identifier: 32:BD:82:E3:21:29:3B:00:CF:3A:66:F9:03:CC:D2:08:D6:28:4E:78
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 08E6
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/Mr2C4yEpOwDPOmb5A8zSCNYoTng.roa
Signing time: Mon 10 Feb 2025 14:00:48 +0000
ROA not before: Mon 10 Feb 2025 14:00:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.150.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2278 (0x8e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Feb 10 14:00:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=32BD82E321293B00CF3A66F903CCD208D6284E78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e0:e6:20:0c:ef:5d:ed:40:fd:5e:cf:eb:57:
9c:e0:6a:54:8c:56:42:68:d8:44:06:40:ab:bb:95:
32:55:4e:84:a6:3e:a6:a5:f9:c6:6c:40:92:47:ed:
f1:65:ee:a0:94:11:9d:fe:c4:bf:21:0b:6d:3b:6c:
0f:0a:b6:88:c8:3a:77:90:92:c2:05:9f:26:a5:c1:
24:3b:c4:00:bb:50:c3:e0:ee:c9:27:07:5a:b1:e9:
11:60:f4:cb:d0:14:c8:54:3f:a4:d7:c8:12:2f:82:
49:39:e9:d7:85:a0:99:ca:f2:0e:f1:d1:48:9d:64:
e3:03:d3:b4:da:58:59:05:f4:ae:88:07:76:3d:ea:
85:71:87:c5:9e:4d:c4:33:94:06:02:d9:92:40:be:
95:27:7e:63:83:d2:36:da:0e:37:f4:be:01:2a:f9:
40:fe:be:f3:71:ca:d8:9f:c2:85:3f:c6:d8:15:dc:
2c:98:76:be:9c:20:98:39:e1:db:c5:1b:2c:e9:e7:
40:5f:d3:c5:a0:c8:f0:0e:a9:ac:45:a0:c3:ed:af:
36:1b:d8:88:15:cc:7a:a2:fd:b1:32:35:80:c8:bd:
ba:7f:49:70:41:2e:ad:cb:df:c3:89:e0:01:97:d2:
06:44:28:1f:9b:4b:b5:5b:3e:29:a1:37:f1:b0:63:
d7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BD:82:E3:21:29:3B:00:CF:3A:66:F9:03:CC:D2:08:D6:28:4E:78
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/Mr2C4yEpOwDPOmb5A8zSCNYoTng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.36.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:75:52:94:e4:4e:39:14:3d:8e:ea:f5:cf:9d:1b:e1:b0:10:
77:e5:6f:ad:a4:30:9f:60:06:fb:90:2b:3b:59:11:d3:a0:1a:
05:87:00:8f:3b:d4:47:ac:b0:a5:61:eb:7d:9a:b2:4f:c6:ee:
7a:d6:81:cf:5d:0e:08:a9:da:04:7b:f5:45:1d:fa:0f:90:de:
3a:53:ac:62:02:ac:88:fa:cd:43:c8:06:02:81:d3:66:ce:b8:
92:a7:9d:22:f9:f2:fb:b0:c5:5a:3d:8b:06:19:b3:7e:49:32:
ff:6e:ce:f5:56:de:a8:f3:5f:4c:03:4a:51:14:9f:bc:13:01:
d4:ab:e0:bd:14:84:91:a1:3b:fc:4a:98:2b:d6:63:cd:79:b0:
17:74:77:c2:b4:f7:ad:a8:34:b4:67:6a:b4:41:8f:58:de:75:
cc:ca:00:68:e3:48:4b:4a:19:e5:1c:f7:01:dc:fe:46:a2:8a:
a9:4c:98:14:39:bb:db:ca:e6:cc:58:42:29:40:05:d0:43:93:
87:94:6c:11:e5:db:4a:df:55:42:e1:4a:dc:7d:45:2d:b6:3b:
6a:a6:7e:89:6c:3d:9f:10:07:f7:f6:f9:74:1b:be:bc:a6:8c:
89:1a:e1:2b:3b:98:6f:23:77:9a:2e:bb:bf:dd:29:e2:8f:bb:
df:1f:de:81
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:28:29 2025 by rpki-client