Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/n25YhG77D2V2zns7nbF_XyuoVI4.roa
File: n25YhG77D2V2zns7nbF_XyuoVI4.roa (raw, json)
Hash identifier: hKXU4gJQSfRk0tWlw+fKEnJI8qZxgRy3veR8UWVtodg=
Subject key identifier: 9F:6E:58:84:6E:FB:0F:65:76:CE:7B:3B:9D:B1:7F:5F:2B:A8:54:8E
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0CF3
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/n25YhG77D2V2zns7nbF_XyuoVI4.roa
Signing time: Mon 10 Feb 2025 14:01:01 +0000
ROA not before: Mon 10 Feb 2025 14:01:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 21859
IP address blocks: 103.123.242.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3315 (0xcf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Feb 10 14:01:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9F6E58846EFB0F6576CE7B3B9DB17F5F2BA8548E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:da:d9:55:7b:6d:67:6d:e3:32:1e:10:90:99:
9a:9b:c7:08:40:aa:5d:c9:9c:5d:22:39:bc:da:5f:
14:97:f0:dc:4a:c1:6b:c5:b0:0d:fe:ac:2a:58:39:
7f:f0:1c:23:34:16:47:98:e0:65:bd:76:a0:9c:a5:
f2:67:ce:28:09:64:b3:5a:f8:14:53:87:7d:7a:7c:
88:6f:8f:d5:92:5b:11:45:ba:9e:64:fc:db:71:30:
60:7a:f8:3f:67:f1:1f:14:72:a4:5f:8c:3a:6b:c3:
11:76:2c:a7:c8:ea:57:4e:35:78:b0:50:02:5f:a5:
d8:09:28:7e:ce:3e:1e:e0:88:c6:af:04:01:83:d4:
df:49:00:95:96:8f:08:91:9d:97:3c:dc:f8:b8:1d:
c4:66:d5:2b:c2:67:3c:38:ad:7c:9a:a6:26:3b:29:
43:83:c2:1a:26:10:b9:fb:36:52:92:25:d6:f1:f4:
a8:66:29:11:0b:22:da:9c:0c:59:cf:87:ea:5f:b8:
ae:9c:f6:0c:79:0f:a6:71:a9:05:8e:8d:9a:25:aa:
35:24:37:60:f6:40:54:24:c7:88:a5:4d:2b:01:49:
e6:31:c4:82:87:69:75:ed:4a:f4:13:e4:72:21:b6:
fb:8e:67:63:84:4d:00:60:9a:0f:2d:32:17:56:96:
27:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:6E:58:84:6E:FB:0F:65:76:CE:7B:3B:9D:B1:7F:5F:2B:A8:54:8E
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/n25YhG77D2V2zns7nbF_XyuoVI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.242.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:c0:6a:a8:24:ee:d9:47:e1:83:5d:09:2a:72:96:51:1a:fd:
ab:64:a4:a9:47:6f:5a:af:90:75:18:60:d0:7f:08:90:9a:e9:
49:60:21:9d:13:7b:d4:29:bb:e5:b9:57:42:a5:da:98:f3:17:
e1:d3:bd:9d:9a:dd:1b:4c:e4:3e:07:a8:6f:c3:90:df:1a:22:
2d:bc:0e:d1:95:e3:aa:1b:2e:dc:3c:4b:75:df:13:7f:5d:68:
a8:9e:93:c0:b1:30:00:ad:b6:13:a1:8b:0f:57:ef:5d:9b:d9:
2b:07:6c:77:50:27:69:28:52:32:3d:e5:8d:58:da:51:9f:0b:
11:ff:6d:d5:53:c4:1b:75:53:4f:19:ed:5e:10:37:4f:dc:87:
f0:27:62:09:27:ef:dc:84:ce:16:cf:cc:7d:47:cf:6b:55:86:
c1:c4:b9:94:ba:44:77:a1:86:f0:78:9a:fa:68:8d:02:da:78:
b4:5b:20:c6:d9:bf:13:7a:95:d1:31:84:07:16:db:20:e9:51:
42:cc:83:7c:e8:32:9a:d4:8f:9e:b7:69:06:c0:71:38:0b:8a:
69:45:d5:b0:9c:62:ea:58:09:e7:06:f6:af:96:64:bd:55:d6:
3f:26:ed:3e:3b:42:ec:99:66:c0:21:52:53:d7:a9:8f:6a:56:
12:05:a3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:16:48 2025 by rpki-client