Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/hfa9BPrMUKTIRuHcIayKjhq3byY.roa
File: hfa9BPrMUKTIRuHcIayKjhq3byY.roa (raw, json)
Hash identifier: gUu014zwJ0LXlCxlxwXMelgZCBA8ET78vim2NG1lcI0=
Subject key identifier: 85:F6:BD:04:FA:CC:50:A4:C8:46:E1:DC:21:AC:8A:8E:1A:B7:6F:26
Certificate issuer: /CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D
Certificate serial: 031B
Authority key identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/hfa9BPrMUKTIRuHcIayKjhq3byY.roa
Signing time: Mon 26 Aug 2024 05:12:00 +0000
ROA not before: Mon 26 Aug 2024 05:12:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 14618
IP address blocks: 103.168.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 795 (0x31b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D
Validity
Not Before: Aug 26 05:12:00 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=85F6BD04FACC50A4C846E1DC21AC8A8E1AB76F26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:31:e2:52:44:a6:df:72:52:e8:62:52:d1:b6:
8c:4d:65:bd:21:c9:0f:5b:2a:47:dd:67:4c:cf:57:
a5:b5:66:69:3d:6b:fb:23:bd:df:ec:07:fa:a3:40:
0d:d5:79:ba:fb:a7:4e:7b:97:6f:ea:73:5d:9d:ed:
2f:4c:bc:49:24:5d:35:84:b9:dc:3d:28:c4:51:ba:
5b:90:d4:48:a8:df:19:8b:56:5f:a4:dc:75:31:33:
9b:be:4e:e2:1a:49:db:bc:1e:54:bc:43:ce:0f:6e:
a2:f5:ff:36:9a:38:b1:27:8c:b5:f0:6f:4f:6b:22:
74:25:ad:fc:2b:16:a5:f1:a5:a2:b2:9a:f5:cd:83:
ca:9e:81:e8:ba:cf:4f:06:0c:24:be:1f:14:f3:19:
15:ea:e0:7c:ed:32:20:40:69:f5:a6:66:02:91:db:
81:67:b9:e4:5d:72:90:88:80:58:9b:de:ff:49:d2:
48:0b:3e:08:ef:12:e0:ee:91:ae:5d:54:a1:1f:a9:
d2:93:6f:7f:b1:6e:8f:59:e2:13:2e:14:5c:24:2d:
18:9d:15:f7:46:84:e5:a3:ac:fa:2c:24:e6:64:8c:
44:74:b7:1d:f6:be:f2:88:7f:74:d2:75:ab:ec:d4:
6f:ad:b4:37:b0:b1:fa:ff:0a:12:f8:6f:41:04:a0:
11:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F6:BD:04:FA:CC:50:A4:C8:46:E1:DC:21:AC:8A:8E:1A:B7:6F:26
X509v3 Authority Key Identifier:
keyid:8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/hfa9BPrMUKTIRuHcIayKjhq3byY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.168.156.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:ac:c7:16:74:bf:fe:f5:75:fc:86:e8:65:e5:ef:2e:a4:8c:
ce:24:a0:51:6e:3c:c4:8d:6a:a3:2e:d6:52:93:e2:bb:59:8e:
7d:43:db:0c:19:f2:6e:03:90:d6:90:b8:17:43:0b:6b:b1:97:
a3:83:b8:05:f8:15:55:a2:79:34:0d:1d:87:d1:2a:ca:c1:06:
65:4d:03:f5:5a:54:fc:f6:1b:36:21:f7:ef:3b:e4:51:59:c6:
d7:30:77:51:c6:94:10:83:04:16:e7:ec:2b:3d:26:2e:21:f0:
68:3b:f5:33:88:13:4a:f8:64:12:d1:98:14:2b:8c:70:a7:40:
07:be:62:2f:f5:1f:3b:96:97:b0:06:b6:f7:83:23:66:ea:cc:
60:03:05:63:df:6f:c1:4b:c9:40:8d:cf:aa:ce:0d:b2:8b:b6:
fb:af:1e:4d:e9:fb:44:57:17:65:f1:d1:1e:4e:4a:cf:ad:36:
c2:4e:82:c1:be:89:1a:44:90:80:09:5f:9f:a6:a5:20:2d:ed:
5a:05:b8:46:66:a6:39:31:ac:12:5c:25:d4:2d:33:a0:87:05:
aa:46:a3:10:f4:52:b9:4d:6c:97:ec:6f:d6:47:00:46:27:cb:
c1:5b:01:0e:ed:5f:e6:d2:65:01:5b:78:bf:18:88:3f:0f:4a:
57:e8:96:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:18:21 2025 by rpki-client