Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa
File: qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa (raw, json)
Hash identifier: kPytXoqCCFxx2K2tirnZmihH4OdyhRvtCFqn9DUOzfc=
Subject key identifier: AB:0B:97:36:38:31:D9:01:84:B2:76:74:3B:CB:B6:12:32:74:09:C4
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 05D3
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa
Signing time: Mon 10 Feb 2025 13:57:51 +0000
ROA not before: Mon 10 Feb 2025 13:57:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 945
IP address blocks: 103.156.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1491 (0x5d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Feb 10 13:57:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AB0B97363831D90184B276743BCBB612327409C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2c:7c:6b:e4:40:4d:9a:58:21:ba:e2:f6:71:
f0:59:3b:de:d4:93:49:be:0d:97:a0:7a:a2:48:d3:
d3:94:0c:90:3a:83:e2:18:99:be:c6:1c:09:b4:f1:
3e:2c:fb:02:e6:73:e3:0f:36:52:8a:21:c4:8b:73:
3a:1a:0d:ed:6f:f1:b4:25:2b:9d:77:90:ba:a3:36:
18:7a:a9:ef:e5:c1:84:26:4e:ae:df:7d:d4:a1:8a:
2a:c4:e8:d5:ed:79:06:f0:ea:8f:6f:80:6b:90:4a:
43:77:bb:df:a2:35:01:e7:c3:d3:6d:b0:dc:d8:84:
1a:3a:02:88:ea:13:0b:bb:a8:a9:8a:53:4a:8d:8c:
af:02:24:8b:1a:97:36:35:65:6e:e8:a4:10:2b:fc:
43:22:3f:1a:a5:c3:15:c0:b7:35:0a:27:71:57:0a:
30:57:25:b8:9a:c9:ee:b2:f5:1e:26:84:89:b8:26:
21:4e:d1:d2:59:8d:2e:e0:75:d4:cb:20:5d:14:b7:
f3:1a:b6:dd:ed:c3:6e:a3:52:0c:b1:ef:b5:d4:d7:
0d:ca:70:75:cb:40:3d:92:1b:33:06:43:64:0f:4f:
ce:aa:44:eb:9a:f6:2d:c1:fc:9e:9d:04:47:69:58:
28:bf:f6:4b:3b:bd:a9:95:24:17:be:84:30:ff:e6:
60:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0B:97:36:38:31:D9:01:84:B2:76:74:3B:CB:B6:12:32:74:09:C4
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qwuXNjgx2QGEsnZ0O8u2EjJ0CcQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.185.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d5:5a:bb:23:20:84:b0:2c:10:99:d6:a6:ce:9b:07:43:d0:
21:e7:3e:30:e7:fa:81:54:e8:c9:cf:91:eb:d4:55:00:fa:60:
9e:12:da:65:d7:f0:0b:0f:5e:59:e4:b9:c6:e5:34:c6:e6:ce:
4c:dd:f3:90:64:80:61:93:03:e3:6f:a8:16:e3:a6:13:6c:ce:
1a:fb:75:b8:d1:32:03:f8:2a:da:97:fb:8c:85:73:48:68:da:
de:5c:cd:eb:43:7f:bc:3a:26:5b:72:c7:3b:6b:96:dd:89:9c:
7c:7b:e7:a3:d5:15:a6:31:3d:4c:b0:87:df:67:42:5e:37:cd:
17:3b:91:c7:58:26:8c:b1:0f:01:c3:4d:dc:d3:d6:4b:22:89:
1b:4c:6e:18:78:68:31:00:a2:fb:0d:ad:ce:9e:d6:0f:47:d6:
d2:1e:92:b2:31:49:02:6d:31:55:6b:71:cf:8a:ba:b1:b7:d2:
3c:7a:0d:9f:66:5c:3a:52:eb:63:10:d1:33:67:06:f6:bd:90:
76:8b:fc:c8:7c:c9:f0:c5:f7:83:6e:96:40:bd:b3:4b:8c:3c:
9e:8f:27:ca:9b:28:66:87:8f:b6:31:6e:08:93:83:40:2d:c6:
86:2c:05:c3:79:f2:e4:09:c6:e5:f3:bc:a7:e5:0e:7c:53:57:
a5:bd:af:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:19 2025 by rpki-client