Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/6AD09RhhSlVX3Bi3hEHBNh8TnIU.roa
File: 6AD09RhhSlVX3Bi3hEHBNh8TnIU.roa (raw, json)
Hash identifier: nStEV34LU8U3gwUjfCxu9vu81FhZ+DhL680qZHG55H8=
Subject key identifier: E8:00:F4:F5:18:61:4A:55:57:DC:18:B7:84:41:C1:36:1F:13:9C:85
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0C97
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/6AD09RhhSlVX3Bi3hEHBNh8TnIU.roa
Signing time: Mon 10 Feb 2025 13:59:39 +0000
ROA not before: Mon 10 Feb 2025 13:59:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 103.122.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3223 (0xc97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Feb 10 13:59:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E800F4F518614A5557DC18B78441C1361F139C85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ca:99:2f:60:da:bc:4c:38:19:76:a3:3d:7a:
c4:05:03:a1:f4:87:7e:eb:60:12:62:08:fa:c1:9c:
ce:b6:45:26:8d:0b:b6:cf:5f:23:09:20:ba:c6:98:
0c:20:43:1f:cc:f6:c3:f3:68:f4:71:47:a3:41:d0:
b5:f7:c8:44:cb:e1:26:8a:ee:9f:c9:6d:08:0e:bf:
f9:4a:80:51:dd:6d:c7:9b:b8:e6:f2:a5:9b:17:4c:
05:9d:07:23:d1:71:2e:19:d6:f6:40:2c:b9:fd:5f:
0a:8a:5e:c1:2c:6a:f0:ea:af:cc:78:70:e3:88:66:
c8:7b:5b:5c:bf:98:6c:84:f2:10:58:dc:95:e2:0f:
50:f6:e7:3a:71:f5:4b:d8:8c:75:01:b3:dc:de:f3:
ff:36:39:31:17:3a:48:30:9e:09:52:0d:77:84:3d:
fb:8d:0c:5a:07:5c:2f:05:ce:46:b7:de:78:50:e0:
10:98:1d:e8:70:38:fd:fb:c4:2c:b5:22:fd:8e:0f:
0c:7c:8e:d1:d6:ae:df:87:73:5c:5b:7f:f9:fd:8b:
78:e9:df:bb:ee:2b:d8:55:8e:40:25:aa:17:c8:f2:
47:ed:a4:cc:5c:9c:0c:33:c3:d5:f6:01:f9:bb:19:
5c:02:09:8f:21:61:c4:6c:2b:50:f5:49:5f:47:62:
25:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:00:F4:F5:18:61:4A:55:57:DC:18:B7:84:41:C1:36:1F:13:9C:85
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/6AD09RhhSlVX3Bi3hEHBNh8TnIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.16.0/22
Signature Algorithm: sha256WithRSAEncryption
15:81:63:eb:a6:6f:39:aa:1f:fc:2d:b6:86:bb:ee:e2:c8:9d:
50:ae:3c:5e:69:54:a5:88:ab:15:98:cb:59:ae:b1:58:01:6e:
a7:0e:94:a7:bc:47:76:9b:47:27:1d:ef:b6:8e:f7:2e:63:ad:
a7:79:54:d4:2b:9a:68:5e:30:57:b1:31:10:1d:42:1f:76:9e:
b2:07:9e:b4:21:22:e6:56:2a:83:6e:4f:ea:86:dd:38:ac:24:
36:b7:16:ba:3f:6d:92:04:96:93:90:05:3f:96:dd:74:a3:83:
40:bb:4e:9d:15:82:2e:2a:22:18:74:45:5c:51:0d:03:24:9e:
6f:63:1f:c2:0a:8e:39:78:0a:21:b7:9f:98:5a:91:84:2d:cf:
bb:30:27:87:a6:e6:eb:de:ba:b1:54:62:e7:00:9a:9c:51:1b:
96:76:86:20:c9:bf:46:3f:91:1d:00:dd:23:71:fe:55:0a:07:
16:a2:b2:a0:d4:0c:77:0b:2c:4e:f6:29:0e:7d:eb:83:d2:31:
bc:8a:2e:93:bc:77:ca:b1:f8:c1:e5:4c:9d:ba:b8:d7:4c:0b:
35:bb:37:c0:52:8d:00:db:eb:9c:0e:a0:6a:38:40:53:28:64:
96:85:35:9f:e0:55:fa:bb:64:97:9a:08:09:52:27:64:dc:17:
95:c0:fd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:41:29 2025 by rpki-client