Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Tj-EeX0PpLzW5GlR1yVr1mLiumE.roa
File: Tj-EeX0PpLzW5GlR1yVr1mLiumE.roa (raw, json)
Hash identifier: 2LvbliOGGhOchLZPPYGDJA7pa/qoe65nr8f93/lcuAY=
Subject key identifier: 4E:3F:84:79:7D:0F:A4:BC:D6:E4:69:51:D7:25:6B:D6:62:E2:BA:61
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0CC9
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Tj-EeX0PpLzW5GlR1yVr1mLiumE.roa
Signing time: Mon 10 Feb 2025 14:15:25 +0000
ROA not before: Mon 10 Feb 2025 14:15:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 103.130.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3273 (0xcc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Feb 10 14:15:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4E3F84797D0FA4BCD6E46951D7256BD662E2BA61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d4:60:82:33:f8:10:e9:89:c1:99:74:30:9b:
eb:d1:ae:31:84:5b:6d:57:24:22:7e:16:46:96:a7:
dc:13:a9:d5:30:d5:b9:ed:fb:02:68:12:59:a4:dd:
ca:77:c0:83:48:e5:ad:05:14:5a:a1:92:20:18:2e:
5a:53:28:20:ca:d3:8b:d2:e9:d9:3e:3e:4c:eb:94:
7a:df:73:ad:61:a2:57:5f:dc:19:07:7a:e3:35:67:
8f:25:43:ea:a1:45:56:49:e5:ce:06:f0:57:48:8e:
34:b9:b1:8f:38:1b:bb:44:69:de:e8:32:7c:c9:65:
f4:68:be:be:3e:22:38:91:20:31:15:84:a5:71:38:
b1:ed:65:13:ce:97:f8:e0:60:6d:35:a4:ab:dc:ee:
fc:4b:c4:a0:51:56:ac:08:80:5a:4a:39:80:e5:c0:
50:d4:10:3d:e7:cb:96:0c:11:01:de:59:65:de:9a:
d5:72:54:3a:ca:34:83:ca:fc:39:98:f0:4b:ea:3f:
29:9c:c4:5c:e7:61:40:6f:c6:36:58:e8:f5:6c:d2:
a7:55:15:45:29:66:fd:96:7c:50:bf:9e:fd:56:8c:
c7:08:24:39:51:52:a4:89:3a:a2:ce:13:7e:db:c8:
01:ec:bd:a9:83:56:3b:f9:ab:d4:14:6f:91:71:7c:
ec:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3F:84:79:7D:0F:A4:BC:D6:E4:69:51:D7:25:6B:D6:62:E2:BA:61
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Tj-EeX0PpLzW5GlR1yVr1mLiumE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.96.0/22
Signature Algorithm: sha256WithRSAEncryption
20:d0:09:65:a0:51:5a:cd:c3:37:7e:47:bb:b5:1b:f5:3e:bd:
5d:78:98:18:15:cc:4f:fb:1c:c8:b0:0b:1c:eb:95:59:a9:e6:
3c:6c:30:63:b4:f4:32:d8:b7:ea:33:fe:c6:25:c8:86:8c:82:
ad:7d:27:81:03:bd:08:6b:c3:c3:55:46:fb:d1:fb:ad:f2:24:
0d:27:41:97:53:84:96:0a:c3:57:84:9b:7e:fe:d7:0d:11:b2:
ee:e3:a9:5b:1f:15:75:08:ad:80:80:1a:47:08:ea:9b:3a:5f:
1b:2b:7b:45:90:1e:85:53:87:21:42:58:fa:cb:d4:6b:9f:ac:
a3:62:13:a1:3d:0d:f0:bf:02:3e:5b:b5:7d:96:b3:7e:0e:7a:
1a:0d:0f:45:73:a3:80:db:52:f0:08:43:38:e6:58:aa:08:a1:
98:39:2b:f1:dc:7e:e8:16:e9:57:52:60:d5:a3:24:96:de:00:
9a:26:5c:43:e8:df:59:83:83:b8:af:a4:a0:22:8f:55:41:d0:
c6:76:ec:a1:7b:30:da:6d:cb:1e:92:8e:e7:83:26:13:48:9f:
86:bd:c3:ff:7e:ac:e7:0d:d9:82:7a:f6:c4:d9:71:36:e6:f3:
cd:54:9e:4a:08:46:f2:ff:7a:17:ea:f1:58:42:c5:11:51:d1:
aa:ac:62:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:07:23 2025 by rpki-client