Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/mGyhQsqGueXOw7kquA0iAfmFbvU.roa
File: mGyhQsqGueXOw7kquA0iAfmFbvU.roa (raw, json)
Hash identifier: 7Ol/xGULRY0HKvw9U5UeU70eXj/j+rjui5JKt2zxLA8=
Subject key identifier: 98:6C:A1:42:CA:86:B9:E5:CE:C3:B9:2A:B8:0D:22:01:F9:85:6E:F5
Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Certificate serial: 0C3E
Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/mGyhQsqGueXOw7kquA0iAfmFbvU.roa
Signing time: Mon 10 Feb 2025 14:19:35 +0000
ROA not before: Mon 10 Feb 2025 14:19:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 43.248.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3134 (0xc3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Validity
Not Before: Feb 10 14:19:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=986CA142CA86B9E5CEC3B92AB80D2201F9856EF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:78:76:28:34:cf:4b:ad:7e:4e:b7:da:69:
6b:c7:24:9c:55:56:ae:fe:a7:d2:4c:bb:43:d6:be:
6c:62:ac:1f:c2:36:7c:73:fe:18:dd:d7:8b:52:34:
0f:8b:f8:6f:10:86:ea:c0:19:4b:19:ed:4d:82:dd:
93:b1:2b:1f:ef:7f:69:f9:55:9b:6c:32:23:cb:b8:
b5:77:39:61:07:9f:07:9a:71:0a:ae:25:a5:78:6a:
7f:6b:b1:37:aa:40:c4:a9:73:cc:2a:e3:9f:95:01:
09:56:28:bd:10:0e:37:57:1b:ae:b2:d9:1f:67:e9:
a7:48:0c:b2:6d:0f:52:69:d4:f8:21:73:c0:50:66:
94:41:d6:51:82:8c:ac:5e:78:92:b1:98:94:a2:14:
14:a2:10:94:85:64:d3:66:4d:1d:7f:cb:07:7b:33:
98:bf:5e:d6:7f:f5:4b:f6:94:9c:29:f6:23:11:7c:
6c:84:d1:91:c4:c9:9b:57:2f:7e:a3:31:1b:0d:cd:
70:c5:11:28:c8:a7:e8:c0:8f:21:b3:c4:4a:8a:f2:
8c:a6:4e:d5:58:d2:fa:4e:09:bc:8a:5b:23:33:66:
1d:ee:fa:6f:52:15:6e:13:75:90:41:22:a4:f0:32:
61:08:9c:a6:48:e4:08:5a:46:5d:7d:34:df:a5:ea:
35:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6C:A1:42:CA:86:B9:E5:CE:C3:B9:2A:B8:0D:22:01:F9:85:6E:F5
X509v3 Authority Key Identifier:
keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/mGyhQsqGueXOw7kquA0iAfmFbvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.248.16.0/22
Signature Algorithm: sha256WithRSAEncryption
43:30:f5:9a:16:98:3b:b8:ae:24:38:ec:d3:dc:8e:56:78:54:
1f:ef:0d:ca:84:69:38:82:db:c3:2b:37:7d:7b:f3:45:6b:dd:
78:fe:1a:d8:c5:ec:7f:b4:66:3e:5f:63:ca:a8:e3:bc:c3:7c:
3e:7a:02:ae:e3:6b:d0:2a:de:b5:b8:55:62:2a:e3:cc:21:70:
9e:98:6a:70:e1:0c:2b:72:e7:8e:7e:5f:c1:c8:2d:81:f8:45:
56:2d:aa:c3:03:ce:11:f5:48:4b:90:19:0a:ea:77:26:4e:ee:
ec:0b:3b:0d:8b:76:d0:b5:d3:96:64:79:5e:fa:4c:04:bf:eb:
1d:66:ba:18:a4:91:09:28:f6:11:9e:4a:aa:c3:74:d6:ec:a7:
c6:16:31:10:7d:4d:bf:60:b6:34:b0:9b:c7:db:c4:d0:45:5a:
46:7d:67:5d:21:5f:cf:d9:72:ee:37:34:42:3a:f6:7a:1e:f7:
53:e2:f6:da:f2:39:50:09:e1:92:ad:60:89:41:8a:28:81:5b:
ef:a8:a2:57:28:09:9e:20:fe:31:b2:96:20:bd:39:6d:92:b3:
7b:cb:3d:7d:4a:52:c8:75:f6:3c:db:3c:e9:b1:87:ae:e6:e7:
0c:ba:e3:1c:41:ec:1a:5c:09:ee:15:37:7b:72:80:a8:7c:47:
2e:49:a9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:26:19 2025 by rpki-client