Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASUS/k_gHxZWMCNsaJ7uO1NGLEuOr1Hg.roa
File: k_gHxZWMCNsaJ7uO1NGLEuOr1Hg.roa (raw, json)
Hash identifier: pOtxNCkEyQy+eI1hB4fuy70rjUi2Vpyi/FN9/DRoUYo=
Subject key identifier: 93:F8:07:C5:95:8C:08:DB:1A:27:BB:8E:D4:D1:8B:12:E3:AB:D4:78
Certificate issuer: /CN=786648F79BB79E1F0B0FF9039692F74E4F3CE1F8
Certificate serial: 0C54
Authority key identifier: 78:66:48:F7:9B:B7:9E:1F:0B:0F:F9:03:96:92:F7:4E:4F:3C:E1:F8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eGZI95u3nh8LD_kDlpL3Tk884fg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/k_gHxZWMCNsaJ7uO1NGLEuOr1Hg.roa
Signing time: Mon 10 Feb 2025 13:47:35 +0000
ROA not before: Mon 10 Feb 2025 13:47:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131144
IP address blocks: 103.10.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3156 (0xc54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=786648F79BB79E1F0B0FF9039692F74E4F3CE1F8
Validity
Not Before: Feb 10 13:47:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=93F807C5958C08DB1A27BB8ED4D18B12E3ABD478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c6:37:a3:8d:15:c1:3b:3d:6a:96:cc:e2:35:
1c:d1:83:a0:3c:3c:9d:68:d7:92:59:ef:14:51:53:
1c:1b:87:ac:f9:8d:09:f2:c6:24:2e:1a:3f:7e:88:
63:a3:1e:66:61:c5:bf:59:04:ae:88:1c:a3:b0:1b:
63:e2:13:6f:84:d7:17:a0:df:08:e3:d0:e3:54:a4:
c8:70:e6:bf:f5:ba:0a:5d:65:c2:0d:6e:f2:91:17:
b4:2a:9e:d6:05:c3:51:5e:aa:bf:80:df:b1:3b:25:
9c:97:f7:fb:45:7c:d6:08:35:b0:23:12:59:fe:ed:
92:9e:9f:76:6a:e2:10:b0:2f:b1:07:7b:fb:2a:05:
ee:f6:06:ff:91:2b:d8:59:e7:7a:57:ae:bc:f4:80:
ea:b1:8c:f0:1d:55:01:e0:bc:7f:b8:b3:59:81:34:
cd:4c:0f:02:e3:23:53:16:3b:59:aa:c1:05:53:25:
e8:a6:64:7b:12:dd:fc:63:72:9d:a2:a0:11:f7:2f:
5f:97:c6:60:10:f2:27:ff:d0:43:3f:4c:2c:d9:21:
48:f6:02:f9:4f:f9:0b:f0:3f:55:11:f9:5b:0d:aa:
ac:cd:7d:e8:5c:51:5b:7c:b1:3f:88:c6:68:ac:66:
c3:ed:87:78:d3:79:ca:f9:7e:66:bf:8c:e9:97:40:
8c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F8:07:C5:95:8C:08:DB:1A:27:BB:8E:D4:D1:8B:12:E3:AB:D4:78
X509v3 Authority Key Identifier:
keyid:78:66:48:F7:9B:B7:9E:1F:0B:0F:F9:03:96:92:F7:4E:4F:3C:E1:F8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/eGZI95u3nh8LD_kDlpL3Tk884fg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eGZI95u3nh8LD_kDlpL3Tk884fg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASUS/k_gHxZWMCNsaJ7uO1NGLEuOr1Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.10.4.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:cc:db:3a:a0:2b:a8:45:42:3a:c1:89:6a:0a:8a:30:48:57:
71:17:0e:47:fd:02:ee:2d:f3:87:cc:29:ba:6b:26:e9:fc:c2:
61:f6:36:0f:0c:f7:7a:0d:b2:3f:f0:c3:9d:db:ec:5f:21:30:
a6:8a:37:8e:34:1f:50:0c:ea:8d:e6:8e:80:63:be:96:54:fd:
b6:89:be:e7:bc:07:12:77:cc:13:e7:a9:8b:c5:6c:5b:51:53:
1f:63:8d:15:74:e3:1e:2f:44:4e:fb:8a:f9:ad:44:f8:73:0f:
7e:ea:e2:b0:94:bd:7c:54:32:15:46:d6:d1:6a:ac:79:5a:7c:
67:8a:e0:c1:3d:d7:95:6a:0e:6a:38:17:f8:07:0a:54:1e:05:
9a:45:ee:b3:1e:ec:0f:2b:ce:7b:d4:55:48:dc:58:22:d4:bc:
67:d5:a8:eb:31:f1:0b:ff:6e:de:0f:cb:29:f3:18:b2:38:a8:
cf:0c:cd:9b:24:8f:91:0f:93:72:7f:87:e7:84:16:f7:b3:20:
00:02:f3:7e:9d:d1:1b:cf:14:22:a2:1f:c1:12:d0:38:5a:5c:
cc:67:ea:21:ae:ac:01:21:92:b8:b3:2f:b6:2d:f0:f1:94:bc:
84:10:bf:75:11:35:ae:22:dd:62:b2:fb:2d:15:cd:3b:f4:a5:
fe:6a:76:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:13 2025 by rpki-client