Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/WbB8Uq5GZ-6LNMifqqSKaUZAYyI.roa
File: WbB8Uq5GZ-6LNMifqqSKaUZAYyI.roa (raw, json)
Hash identifier: zOkERklex8Vv8cnxTwBLXfd4ypr/sFTvbu3UZQ9GVnU=
Subject key identifier: 59:B0:7C:52:AE:46:67:EE:8B:34:C8:9F:AA:A4:8A:69:46:40:63:22
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0CF9
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/WbB8Uq5GZ-6LNMifqqSKaUZAYyI.roa
Signing time: Mon 10 Feb 2025 14:01:02 +0000
ROA not before: Mon 10 Feb 2025 14:01:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3321 (0xcf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 10 14:01:02 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=59B07C52AE4667EE8B34C89FAAA48A6946406322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e3:85:67:57:b4:29:c8:42:62:82:cd:52:5e:
af:1a:b9:20:d6:53:0b:21:50:b1:dc:d9:6c:4c:ca:
06:bf:99:4c:25:21:31:d5:51:56:9b:0c:cf:7b:12:
e7:af:84:f7:26:b9:55:ec:ee:84:c5:48:ee:28:aa:
b0:b7:a4:ee:4d:8d:a8:42:1d:c8:34:50:01:08:e1:
8a:3b:c9:45:4f:bc:18:2a:41:23:7b:38:ac:38:81:
ac:e6:28:e9:47:c2:36:aa:00:d0:00:f0:c0:33:2f:
b4:0a:39:63:e7:e3:5a:bb:13:84:8a:ee:05:81:ff:
0a:7d:8a:b1:0e:10:11:b8:4b:7d:8d:41:17:47:31:
83:34:3c:c1:d2:93:13:77:e6:af:9e:4d:ec:0f:98:
04:92:f1:a9:14:d3:d1:79:81:2e:9a:07:74:77:1d:
08:eb:03:53:f8:15:da:0c:43:b6:29:78:b2:ed:98:
29:ab:06:0d:54:f5:be:e3:16:7b:2b:87:f7:14:f2:
7b:c2:c9:a3:ae:04:06:49:a6:94:cf:54:cf:b3:b6:
90:60:a7:ea:5c:b2:46:49:0e:a5:db:bb:c2:84:47:
92:eb:b0:f7:9d:7b:cc:ca:4f:1f:77:6f:60:e7:6f:
66:09:8f:4d:01:bf:dc:4b:1a:1b:9e:bb:f3:6f:c8:
bc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B0:7C:52:AE:46:67:EE:8B:34:C8:9F:AA:A4:8A:69:46:40:63:22
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/WbB8Uq5GZ-6LNMifqqSKaUZAYyI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:5f:62:4b:26:c8:5f:ae:b1:ce:4c:e0:2c:b2:f9:13:4e:bc:
0c:e3:32:c8:04:bd:4c:c1:df:50:3b:10:08:ef:b9:ea:d3:5f:
6c:b0:f4:fb:1e:86:f0:7a:37:36:f5:48:1c:94:26:75:c8:14:
27:83:b3:10:9f:0f:1c:03:03:06:44:a5:aa:04:ec:55:01:fc:
39:87:ce:79:22:90:94:b0:b8:b1:a8:23:dc:47:46:cd:18:d0:
b6:ce:b2:05:5f:17:a9:4e:30:dc:24:c6:fb:36:19:bf:6b:6e:
c9:f5:e5:54:2b:99:df:6c:4a:3c:2b:1d:5d:6d:fc:79:11:70:
f9:d5:4d:10:b5:12:5d:61:84:b1:27:0a:e8:9b:37:df:4e:ea:
3f:64:2e:fb:21:46:17:b1:ee:6b:6d:0e:9c:ee:b7:40:84:fb:
10:be:3b:18:c4:66:a8:4e:ab:7a:ba:e3:b0:e3:52:1e:23:24:
cd:88:d5:bb:fd:b4:d8:dc:01:32:4a:ee:4d:5f:60:ca:9f:98:
37:fa:bd:87:8b:63:8c:86:90:f0:69:a8:66:2c:74:6b:ee:50:
a8:39:fa:50:bd:ee:35:75:d8:73:18:c2:40:28:0d:c0:1e:8f:
8d:82:08:51:25:b9:01:43:7b:cf:6f:26:10:20:6f:fb:f7:19:
6a:76:be:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:14:08 2025 by rpki-client