Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/UTJnvZ0ps4aMJTHGC_3lNpB9esE.roa
File: UTJnvZ0ps4aMJTHGC_3lNpB9esE.roa (raw, json)
Hash identifier: nusUT1KZboa5FNpu4qx+46MqmqPmdl8WsxFspPfbu54=
Subject key identifier: 51:32:67:BD:9D:29:B3:86:8C:25:31:C6:0B:FD:E5:36:90:7D:7A:C1
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 0C6F
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/UTJnvZ0ps4aMJTHGC_3lNpB9esE.roa
Signing time: Mon 10 Feb 2025 14:13:39 +0000
ROA not before: Mon 10 Feb 2025 14:13:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 139637
IP address blocks: 103.119.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Feb 10 14:13:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=513267BD9D29B3868C2531C60BFDE536907D7AC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:51:f1:bb:17:b3:fb:15:c3:5c:30:8d:b4:47:
27:de:7d:53:db:6f:c1:62:46:ec:82:b9:28:8c:f1:
35:cb:2e:7d:3f:ac:ae:4a:76:7c:e2:72:61:20:01:
0f:84:2a:c4:77:8a:07:2f:96:88:7d:cb:7e:12:52:
3d:74:a7:ce:ff:16:1e:f4:fc:b8:4d:a5:a3:a9:8d:
5b:5c:51:77:52:c6:f9:30:00:d0:da:e9:41:35:f0:
82:97:9e:ee:24:8d:6a:26:9a:c2:7c:30:0d:3a:29:
aa:36:66:21:ba:ac:70:c9:d9:b9:e2:0b:6a:5c:6d:
76:a4:db:15:75:52:2f:9c:ed:e1:c5:53:78:03:a0:
ab:b6:f9:2e:b0:53:92:ad:11:c4:30:ea:40:ed:b0:
e9:52:02:52:c2:94:1a:d0:bb:19:d3:79:3b:d1:c6:
d0:2c:1d:d1:42:42:ef:61:e9:1e:66:6e:53:f7:50:
f9:90:37:c9:bd:19:94:5d:64:de:0c:43:b7:9f:af:
e4:2c:b2:b7:bc:d7:11:64:65:b8:d9:f6:8e:96:99:
93:32:b9:f4:9e:74:7b:39:cb:cd:7a:63:23:27:6f:
0a:30:84:69:94:96:b2:6e:32:e7:f2:81:71:8e:ca:
8d:71:42:8e:7e:46:f2:94:34:34:8c:af:2b:00:af:
02:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:32:67:BD:9D:29:B3:86:8C:25:31:C6:0B:FD:E5:36:90:7D:7A:C1
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/UTJnvZ0ps4aMJTHGC_3lNpB9esE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.214.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:0a:dc:03:05:74:ae:e2:7e:ec:56:26:02:a6:b8:1f:31:78:
30:ee:3d:53:ae:41:de:00:ef:75:f9:a4:fa:80:04:dc:b7:1d:
e6:14:dc:e2:db:af:ee:3d:25:31:0e:8f:ad:1f:43:b9:66:e6:
af:75:00:4c:d3:d1:12:a6:a8:73:06:ea:bb:7c:7d:f7:d9:f4:
60:f5:4c:d8:8d:97:22:4c:3c:64:ca:d5:99:a8:b7:44:bc:99:
c0:82:49:b0:92:81:45:d1:80:03:86:bf:08:9f:b8:15:78:2f:
3d:9f:ae:89:9b:63:e1:f3:3b:43:3a:11:6f:5b:c9:2a:4d:01:
fb:b9:8a:de:da:3c:e0:4b:8e:78:16:0a:9e:ce:5e:a7:aa:a1:
60:74:28:28:53:d5:41:f4:17:03:8f:a0:8d:c7:58:5b:f5:6b:
9b:5c:96:24:de:8d:2b:b3:d0:bc:76:8b:c2:f8:73:18:ec:e1:
56:ff:f5:ee:0c:75:47:5a:de:f2:61:94:c0:de:00:e2:d9:33:
ec:b6:bc:d7:60:bc:10:65:5f:7a:88:94:0c:30:48:c8:8e:70:
41:37:e7:4a:cb:58:dd:40:2f:3b:75:b9:e5:ed:f4:58:cc:b6:
ca:17:7a:7e:12:3c:33:0a:c9:54:3c:f1:c1:6c:99:76:79:80:
f8:8c:d1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:06:37 2025 by rpki-client