Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/JSD3lOwoodsex2vgYhLy56PGW94.roa
File: JSD3lOwoodsex2vgYhLy56PGW94.roa (raw, json)
Hash identifier: Toe5KqgCRMaNQZUnpUtWaTnnEEx9V1ACHSy2rfuc7MI=
Subject key identifier: 25:20:F7:94:EC:28:A1:DB:1E:C7:6B:E0:62:12:F2:E7:A3:C6:5B:DE
Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D
Certificate serial: 03E2
Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/JSD3lOwoodsex2vgYhLy56PGW94.roa
Signing time: Mon 10 Feb 2025 14:00:20 +0000
ROA not before: Mon 10 Feb 2025 14:00:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152611
IP address blocks: 160.30.78.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 994 (0x3e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D
Validity
Not Before: Feb 10 14:00:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2520F794EC28A1DB1EC76BE06212F2E7A3C65BDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1c:3f:a7:87:6c:7a:bf:5c:6f:68:3c:c1:a1:
5c:80:06:42:e6:46:63:75:4c:42:19:05:75:48:d4:
ea:ee:e4:9a:9d:84:27:76:c0:59:1a:89:b0:bc:e8:
80:d4:0f:3f:8a:a5:2f:26:8c:6d:11:99:6f:0d:0e:
6a:cc:6f:88:cb:94:9a:63:21:8f:79:6b:bf:b1:e6:
28:27:76:03:42:3a:66:1d:e4:25:7f:ef:c1:ef:d8:
11:77:35:af:f3:eb:b5:7b:11:75:91:d4:aa:65:09:
e3:5c:f2:8d:b4:c0:85:b4:1e:e7:10:50:40:c6:35:
04:4d:ac:8b:bf:dc:80:d6:e0:a9:ed:84:29:34:d1:
00:e7:42:56:ab:9e:d9:6f:f4:63:4a:2d:23:0c:fe:
68:5b:71:40:1b:5a:ea:0a:5f:8c:50:20:19:50:6e:
ce:d2:02:fb:8e:c4:67:0f:7e:6c:8b:4b:0c:03:7a:
f8:5d:fa:dc:db:82:aa:52:67:d1:15:52:ca:46:36:
41:89:1a:35:69:5f:3f:50:35:22:8a:d5:50:e6:9b:
bf:c4:43:78:40:15:4f:d0:88:da:8f:64:02:7f:ea:
3c:88:d6:47:39:42:22:05:93:c6:40:9e:85:68:9a:
36:31:1f:ff:2d:d6:91:b8:4d:7b:7a:9e:cc:99:b6:
5f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:20:F7:94:EC:28:A1:DB:1E:C7:6B:E0:62:12:F2:E7:A3:C6:5B:DE
X509v3 Authority Key Identifier:
keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/JSD3lOwoodsex2vgYhLy56PGW94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.78.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:3e:43:d0:b5:24:65:81:06:1a:6e:22:19:2d:2f:e2:80:9b:
24:9a:59:f3:44:2c:c1:59:30:02:fb:f8:63:8e:5f:d0:7c:69:
f9:21:e8:59:e2:5b:ae:7d:8b:86:c0:47:c5:d2:81:f0:69:c8:
ca:f0:be:39:0a:09:55:42:fc:4a:76:d4:5f:7b:44:57:60:5e:
c6:6a:c8:f4:6e:a0:84:70:41:c2:39:13:79:31:11:bf:33:5b:
16:91:b7:5c:5d:64:ac:c8:55:e0:13:34:f6:f9:61:59:34:80:
9a:bf:5a:79:0e:59:c0:f0:98:55:7b:51:15:54:ee:ac:fa:54:
1a:ee:cc:22:66:bd:43:12:ec:26:ed:1a:e1:87:a2:9d:47:8c:
54:01:ba:72:8c:70:d1:1f:8e:d3:95:ec:9b:fa:d2:e3:5c:99:
8a:ba:6c:53:c4:ec:34:88:d8:55:3c:c5:dc:72:19:06:85:20:
8d:2e:eb:e6:ee:3b:fa:56:72:bf:b2:00:60:f7:2d:12:af:56:
58:85:13:da:63:b1:2d:68:59:a9:70:4f:89:83:60:56:87:b3:
02:de:3d:10:54:39:80:28:56:d0:dd:a4:50:ee:28:8c:89:ba:
e2:db:a6:da:a9:ec:5e:bd:0a:ee:8c:8d:5f:91:ad:d2:66:f0:
6b:67:17:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 04:08:34 2025 by rpki-client