Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/yro4WqUtMgtsXkqvvVuAABTAROA.roa
File: yro4WqUtMgtsXkqvvVuAABTAROA.roa (raw, json)
Hash identifier: OYjsPW5U6mc40XQ/dkc1XIfOAWe0mTg5D4K/SoDgH5A=
Subject key identifier: CA:BA:38:5A:A5:2D:32:0B:6C:5E:4A:AF:BD:5B:80:00:14:C0:44:E0
Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D
Certificate serial: 03E1
Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/yro4WqUtMgtsXkqvvVuAABTAROA.roa
Signing time: Mon 10 Feb 2025 14:00:20 +0000
ROA not before: Mon 10 Feb 2025 14:00:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131657
IP address blocks: 160.30.78.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 993 (0x3e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D
Validity
Not Before: Feb 10 14:00:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CABA385AA52D320B6C5E4AAFBD5B800014C044E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:a6:89:3d:bc:ce:f9:94:c1:ce:2b:3d:ed:
2c:96:03:1f:a8:dc:b9:b0:65:5d:8d:51:ea:f5:99:
10:a1:12:78:75:c1:c7:87:d6:20:67:a8:4f:b8:c9:
ed:03:79:fa:53:af:c5:4d:83:d7:14:62:d3:a8:55:
96:97:27:2b:d0:91:cf:d0:e3:cf:8d:d2:c0:fe:20:
53:32:b5:23:19:da:95:64:8c:6c:71:12:80:ab:cd:
e1:cf:2f:2c:83:7f:68:3f:32:dc:bd:67:9f:76:69:
90:5f:ac:36:e0:4d:0c:66:31:52:71:79:6b:e0:9a:
3f:43:8a:2e:13:d3:5a:6a:f0:23:3d:2d:4d:ff:b5:
29:ff:76:38:a7:d7:04:0d:2e:5d:0c:1d:20:6d:58:
aa:4f:95:1b:71:a1:7a:a0:89:9c:ae:e8:df:0d:d9:
3f:00:fc:25:db:c0:eb:15:3b:a2:be:cf:64:50:42:
10:ab:50:93:43:02:eb:35:7e:81:8c:44:f1:d7:3f:
b9:c8:3b:bf:41:e1:d9:14:40:c8:d3:28:fc:3c:3c:
5a:77:88:60:84:4c:59:a4:91:33:19:8c:91:a5:0b:
48:af:2d:50:89:03:7f:2f:2c:b8:dd:4b:cc:d9:02:
b9:c8:f7:4a:d1:1d:2b:76:44:35:e6:3e:56:d9:79:
87:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:BA:38:5A:A5:2D:32:0B:6C:5E:4A:AF:BD:5B:80:00:14:C0:44:E0
X509v3 Authority Key Identifier:
keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/yro4WqUtMgtsXkqvvVuAABTAROA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.78.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:d6:42:2d:eb:da:e2:44:92:3c:4e:50:42:f7:0e:2f:26:eb:
67:31:0d:ae:b9:5b:bd:3b:67:e0:38:a4:8c:f3:c8:a4:99:43:
7f:e1:fa:e0:c2:0c:6b:be:6d:c5:0c:9e:e4:bb:f8:a4:39:9b:
91:5f:bc:a0:15:53:71:9b:85:92:19:1f:1b:1e:50:98:20:ca:
cf:29:7e:b1:3d:73:30:0c:d1:5e:b1:07:62:7a:e7:f2:a1:6d:
04:5c:f6:cb:3d:df:f3:95:1f:78:a6:e3:79:6e:71:0f:8d:fa:
61:fe:c3:44:03:13:ba:b7:63:9a:b6:a7:9c:e3:00:ed:27:c4:
39:a1:1f:99:d4:2f:ce:c7:11:87:58:8e:cd:94:b8:ab:7f:27:
b1:ff:14:8b:d3:68:85:3a:53:22:e4:56:76:41:9d:b7:1a:08:
ed:21:74:b2:ac:74:b2:dc:0a:2b:b9:ab:76:b1:2a:ff:a7:64:
16:20:ba:fb:7b:57:d1:3e:39:8c:b1:b3:e6:5f:c7:25:8f:b3:
75:77:d5:40:f1:3e:c9:e0:44:de:49:46:ec:92:16:d1:ad:cf:
5d:f2:6c:ec:40:de:ea:c1:19:05:1c:73:02:31:7a:70:43:45:
61:9b:d8:43:0c:49:ed:42:e0:ff:b2:f1:15:db:f7:09:84:6e:
8b:f1:5a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:56:56 2025 by rpki-client