Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/9Ny-lz9RL07lz766l5gKxDCAT8Q.roa
File: 9Ny-lz9RL07lz766l5gKxDCAT8Q.roa (raw, json)
Hash identifier: WzHzlRbbYFvJl0+XcqMw3M7vy6e2/30qe3J40aqKDa8=
Subject key identifier: F4:DC:BE:97:3F:51:2F:4E:E5:CF:BE:BA:97:98:0A:C4:30:80:4F:C4
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0CF5
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/9Ny-lz9RL07lz766l5gKxDCAT8Q.roa
Signing time: Mon 10 Feb 2025 14:01:01 +0000
ROA not before: Mon 10 Feb 2025 14:01:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 103.1.220.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3317 (0xcf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 10 14:01:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F4DCBE973F512F4EE5CFBEBA97980AC430804FC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:76:0d:3f:10:3e:40:3c:14:12:18:82:5d:a5:
25:45:2a:16:5a:58:be:f1:20:78:35:50:36:03:36:
73:bf:a5:ce:ad:37:20:9a:98:3e:04:16:7c:f2:96:
43:55:c5:a8:f5:ec:69:70:35:73:49:8f:c4:cb:6b:
ed:2d:3f:24:de:5b:c7:bf:6f:39:c9:3d:f1:35:0d:
e6:8e:ad:8e:44:42:5d:6c:bf:dd:44:d0:59:b2:c4:
36:cf:79:78:5f:2f:ec:7f:74:4d:19:7a:74:cf:97:
7d:53:5e:d8:77:a1:7a:9a:60:74:dd:0f:2a:fb:96:
b8:74:c4:1a:af:57:c3:97:3d:83:23:fe:7a:21:97:
0b:e2:23:ba:e4:aa:a3:54:95:90:a0:58:91:44:b8:
f8:a9:91:c9:15:ce:ca:29:b2:13:0b:0e:53:9f:67:
d9:e2:7f:51:f8:f3:f3:ad:a4:09:8d:fd:7e:ab:f4:
58:37:d8:ed:de:d6:a7:fe:3a:9f:bb:93:29:a7:94:
ea:39:57:ac:50:26:63:21:33:43:35:89:9c:22:63:
85:73:a9:ef:1c:b3:c8:a0:3b:46:3b:dc:dc:f4:22:
b9:10:13:d3:ed:6d:2a:b7:68:2e:3d:bf:a8:a8:0b:
b4:85:10:f2:27:11:df:07:74:fb:e0:7c:01:07:60:
43:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:DC:BE:97:3F:51:2F:4E:E5:CF:BE:BA:97:98:0A:C4:30:80:4F:C4
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/9Ny-lz9RL07lz766l5gKxDCAT8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:b1:4a:b8:78:72:8d:e9:de:be:fb:50:5a:dc:ad:6e:b8:35:
9a:1d:3a:6c:d1:48:98:fc:b8:fd:37:1e:e3:49:85:ef:c9:97:
46:9b:2b:29:fa:20:dd:2f:4a:f4:20:8a:f0:48:e0:53:73:79:
fd:ab:21:d4:61:6f:42:4f:0c:2d:4c:d8:28:0a:c8:b8:3e:0d:
d7:bd:51:26:72:01:c0:4a:46:e7:4c:0a:84:70:8d:db:18:33:
35:8c:42:b0:e7:39:e1:a2:e2:52:e7:2a:cb:a9:f8:63:54:d6:
ae:a3:94:28:17:a8:68:80:e4:89:d1:69:ed:c2:da:f8:03:86:
a8:d7:14:f5:3b:52:bf:d7:80:d7:29:d8:39:a2:48:9f:6d:6b:
f1:4c:e8:60:8e:18:8d:d3:f9:0e:ea:12:42:19:01:f2:89:a9:
57:3f:05:29:a9:b7:85:21:4d:19:51:b4:49:25:9e:75:03:19:
e1:9b:89:6c:98:67:d7:34:64:d6:b2:91:57:a3:14:01:92:d6:
b7:35:e0:1b:ed:e7:1a:f8:47:67:91:7c:7b:d5:8b:02:1b:43:
9b:ed:c0:d8:88:2f:9b:17:30:ce:18:0a:1f:82:16:df:9f:4d:
b3:0a:c9:63:90:87:be:5c:74:bf:a9:83:dd:ee:29:c8:d3:74:
33:f4:62:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:19:36 2025 by rpki-client