Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/cFcftMd_aI2pC0puLsqRax_4zAk.roa
File: cFcftMd_aI2pC0puLsqRax_4zAk.roa (raw, json)
Hash identifier: pIbvE4TLIvnM6Eq+ua9FO3Si+qu59gXoHZYzgPeQoAE=
Subject key identifier: 70:57:1F:B4:C7:7F:68:8D:A9:0B:4A:6E:2E:CA:91:6B:1F:F8:CC:09
Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial: 0C61
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/cFcftMd_aI2pC0puLsqRax_4zAk.roa
Signing time: Mon 10 Feb 2025 14:02:16 +0000
ROA not before: Mon 10 Feb 2025 14:02:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 135293
IP address blocks: 103.104.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3169 (0xc61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Validity
Not Before: Feb 10 14:02:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=70571FB4C77F688DA90B4A6E2ECA916B1FF8CC09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:98:e7:d7:0a:b1:32:29:a1:51:4d:5c:02:
9a:25:63:99:0c:79:58:23:42:95:b5:3a:34:c2:89:
bc:ac:b4:74:a1:3b:b0:3e:b4:24:bc:23:90:97:04:
08:54:42:a6:b4:ba:4f:fe:d8:35:87:f1:a1:44:27:
23:33:2b:21:eb:36:38:4d:b4:72:ed:24:f7:36:a1:
8e:e0:48:a6:53:10:8e:68:00:a4:80:e6:c8:7d:ac:
dc:f7:75:e1:65:3a:f4:7c:7b:1b:b6:a1:17:40:b4:
ff:b2:49:8b:b8:76:b1:c4:71:02:80:86:68:c6:10:
4a:17:99:4c:7e:f7:d4:fb:86:76:0a:92:6a:1c:88:
4c:6d:6d:6b:a3:a4:9c:17:b1:c0:0b:a8:f5:0f:32:
ca:3c:6b:f1:79:ca:55:69:db:54:9d:d8:02:59:31:
b2:7c:eb:0f:74:90:7c:bf:65:02:33:f7:d7:75:81:
ce:9b:ae:aa:d5:12:92:7b:fd:51:61:29:e2:9f:1c:
db:77:55:e3:15:d2:4d:d6:d4:4b:99:a1:30:4a:43:
23:c4:45:47:fa:bb:af:9f:ed:df:33:41:71:9f:03:
a0:9b:d1:e1:47:a9:bb:ef:5d:bc:7e:7a:3a:e5:1b:
ec:1f:ff:7a:b7:d7:fd:4f:b1:ff:2e:9a:82:1c:8d:
4a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:57:1F:B4:C7:7F:68:8D:A9:0B:4A:6E:2E:CA:91:6B:1F:F8:CC:09
X509v3 Authority Key Identifier:
keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/cFcftMd_aI2pC0puLsqRax_4zAk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.150.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e8:2e:52:f3:90:b5:df:ee:be:8e:4f:5e:1d:44:32:af:22:
d1:4f:c9:dc:1a:43:66:4a:24:90:55:8e:4e:f2:e3:f9:96:d2:
63:11:2e:d0:d1:fd:1e:92:a8:31:5d:ea:ca:cf:a5:52:59:42:
92:b1:72:de:7d:0d:6d:8b:63:a9:16:19:c7:ed:ae:13:34:19:
78:b7:d6:6e:7b:ee:52:c6:66:e5:61:62:58:91:8f:ca:3b:ba:
4b:02:77:61:e8:9c:93:ab:df:7f:e3:7f:58:6b:2b:38:32:65:
81:37:5d:93:c5:98:46:33:5b:1c:cf:45:ce:98:11:a1:84:61:
b3:74:46:02:58:a9:0b:88:f8:64:26:62:9c:bd:cd:7d:99:38:
85:b8:87:50:6f:c8:03:4d:6f:86:aa:38:c6:da:e0:75:fb:1f:
e6:ac:28:14:e4:5e:36:be:58:33:30:fd:bb:69:d5:e5:59:5d:
dd:e1:37:45:70:3c:6b:12:8e:f2:9d:0d:b6:08:25:81:ac:f1:
68:7c:66:18:5f:51:50:d1:45:ee:5a:ec:ff:94:af:e8:be:f3:
43:e6:39:18:02:f4:7c:ba:26:b9:1e:42:9f:45:5d:d6:4a:d4:
58:d5:74:a7:25:5d:7b:56:89:4d:eb:d7:43:82:ff:34:77:50:
ad:f4:88:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:15 2025 by rpki-client