Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/DS8jopO7eM8KgSpTSH-kJLd1DqA.roa
File: DS8jopO7eM8KgSpTSH-kJLd1DqA.roa (raw, json)
Hash identifier: lMByK5tPt0PDa6ns3vgWeirXIw32BAZzQtMKY7hYmVw=
Subject key identifier: 0D:2F:23:A2:93:BB:78:CF:0A:81:2A:53:48:7F:A4:24:B7:75:0E:A0
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0CF8
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/DS8jopO7eM8KgSpTSH-kJLd1DqA.roa
Signing time: Mon 10 Feb 2025 14:10:20 +0000
ROA not before: Mon 10 Feb 2025 14:10:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 122.200.152.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3320 (0xcf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Feb 10 14:10:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0D2F23A293BB78CF0A812A53487FA424B7750EA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d6:2e:7d:3a:41:f3:a5:ad:24:bf:df:cf:10:
d3:1c:eb:bc:39:cd:bc:bc:60:93:c7:b2:4b:88:6d:
05:01:78:32:f1:bc:ca:19:10:12:79:31:44:17:fe:
6d:f6:fe:db:4f:fe:4c:ca:60:65:3b:61:28:ec:ce:
9c:ee:39:48:80:1e:1d:1d:85:20:9b:2f:42:06:98:
b4:55:cd:80:aa:a1:28:c4:80:ae:36:2d:f0:41:b7:
4a:c8:b9:30:95:67:10:be:03:6f:fe:24:17:a0:e0:
83:d9:64:ad:1d:97:4d:ff:b2:87:8c:65:49:ce:e7:
1f:f3:9f:45:54:06:79:87:f1:6f:fb:9b:90:63:a4:
da:5b:70:4e:86:fd:c6:0e:30:ce:e6:e7:2a:b2:40:
89:19:ff:73:a0:4b:df:5f:ae:f2:de:7e:83:ba:46:
04:33:19:d4:26:93:e4:e5:d8:23:79:8b:6b:8c:35:
20:26:f6:3d:14:bd:7f:31:db:39:dd:38:29:c3:e4:
da:5a:de:36:3d:de:b6:9a:6c:85:25:65:24:41:62:
2d:5c:d8:c0:7c:3d:5f:8b:1b:ab:ce:a5:02:da:43:
ea:a5:7e:25:5c:38:16:42:95:27:5f:e4:9c:00:e7:
16:7b:f8:dc:0e:4e:68:df:c6:25:11:88:f2:6b:1d:
92:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2F:23:A2:93:BB:78:CF:0A:81:2A:53:48:7F:A4:24:B7:75:0E:A0
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/DS8jopO7eM8KgSpTSH-kJLd1DqA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.200.152.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:b0:b5:b1:dc:eb:bb:46:6b:ff:b6:d7:43:f7:72:8b:cf:1a:
06:65:92:e7:bd:5d:fa:74:3f:f7:86:31:12:77:f6:60:bd:33:
57:07:ca:86:a2:83:e6:7e:90:13:ef:aa:16:fa:1b:e0:e8:08:
c4:f0:b9:98:2f:a2:36:43:2a:ea:b0:11:14:72:a0:e6:02:0a:
5a:60:ef:97:7f:67:91:25:fd:24:b0:ad:46:48:28:df:26:4c:
47:1b:44:ac:de:78:5b:e8:86:ef:32:8f:d4:4e:69:aa:56:1b:
5e:24:cc:3e:e6:26:c6:e1:27:a1:87:ad:8f:1d:e2:70:73:f6:
d0:49:d9:2d:85:4c:37:f6:f0:17:ce:96:fb:b6:f5:21:13:74:
fc:75:c0:10:5b:dc:d1:ae:68:a3:75:aa:57:89:c6:92:14:b4:
62:73:cf:5b:36:ca:61:cc:e7:6f:35:35:87:4d:16:01:b2:95:
a3:73:73:ab:80:6a:5d:96:3d:80:88:c4:79:12:4d:0e:1b:34:
4b:9e:86:d3:02:3c:77:13:d2:6b:15:ca:e1:9d:8d:e8:ea:0b:
61:b4:ab:46:6a:46:b1:c6:55:30:f2:d2:5c:0d:bd:ab:a5:70:
2a:5c:88:d3:8a:64:09:02:cc:45:89:aa:f6:a6:f3:0e:81:43:
30:88:8c:8f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:26:51 2025 by rpki-client