Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa
File: LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa (raw, json)
Hash identifier: naxyPgwWGxN0V1lO9EsVxG48z6zNiaDelEoilm08H+w=
Subject key identifier: 2D:44:78:13:69:E6:3B:2E:A6:DA:E1:E2:32:A0:6D:9F:18:48:FC:D1
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0C5B
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa
Signing time: Mon 26 Aug 2024 05:12:20 +0000
ROA not before: Mon 26 Aug 2024 05:12:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 138145
IP address blocks: 103.135.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3163 (0xc5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Aug 26 05:12:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2D44781369E63B2EA6DAE1E232A06D9F1848FCD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1a:83:06:17:31:46:4a:38:21:d5:ad:f0:ca:
d1:5b:79:4a:89:0c:c0:57:92:6b:75:67:aa:ec:d0:
28:0b:a9:ce:bf:83:6e:cf:e4:cd:6b:9e:4f:f7:01:
70:17:e6:b7:3c:29:79:3b:bb:e5:86:f5:34:67:34:
7e:77:ad:f0:9b:32:17:68:4d:7a:44:77:75:78:48:
ba:14:36:73:0e:9a:52:42:d5:4e:2d:7e:f1:7a:97:
33:45:c4:a5:7e:25:76:71:02:06:97:4f:05:cf:26:
52:4d:a9:c4:b7:9a:37:9e:67:c9:02:fe:64:41:ce:
ab:06:21:63:e7:3e:ae:9b:cd:14:4f:aa:cf:ae:ab:
a6:66:1b:b8:4b:3e:c6:68:1f:51:1c:32:06:dc:a9:
1f:da:06:56:0f:65:5c:f9:97:11:70:d7:f3:28:72:
68:68:e2:aa:02:d3:f8:57:c7:77:af:70:c9:da:55:
62:9d:e5:10:0b:3a:d4:a8:3a:c1:a2:54:40:b9:ab:
20:e9:23:36:25:7d:73:2a:22:f1:bf:bb:6f:11:23:
86:b0:9b:21:d4:cc:24:95:26:8b:1e:d4:2a:d3:37:
70:0e:e5:75:bc:9c:7e:92:06:c0:eb:d0:93:05:14:
1f:5b:c8:37:9d:f4:a2:d9:a0:0a:1d:c1:b3:7d:f2:
2a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:44:78:13:69:E6:3B:2E:A6:DA:E1:E2:32:A0:6D:9F:18:48:FC:D1
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.19.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:82:e2:40:7a:ca:b7:89:be:ca:52:2f:25:87:a8:2c:c1:97:
1e:8d:75:5b:f8:d2:bc:34:33:68:dc:26:ce:43:12:c3:39:e4:
8a:44:71:ca:df:d0:91:85:68:42:ff:1b:ec:52:29:8d:58:9c:
39:71:95:cb:cb:8c:b8:19:d7:2b:07:2a:ca:a6:eb:b7:e2:6b:
51:6e:93:ed:25:76:c7:fa:d0:23:3b:03:6b:9d:dc:e7:1d:c2:
b4:ec:d3:fc:2b:5b:a8:10:10:0c:e6:84:8f:7b:a5:4f:b4:64:
ee:14:01:1a:be:23:f7:76:69:1b:9b:50:4b:f7:dc:c0:9e:3c:
cb:d3:60:24:21:58:76:35:08:09:a0:af:42:29:87:75:70:8a:
ec:b6:9a:6b:3c:62:13:d7:39:96:f5:a4:aa:44:2d:3b:c7:43:
d2:75:3b:1c:91:e0:10:53:44:f4:98:c4:20:d9:39:22:2c:4a:
3f:9d:48:e4:1c:be:10:5f:8c:cb:cf:39:e9:84:1c:b4:a8:16:
5d:98:db:5b:b1:f4:ee:1d:76:b7:f5:39:75:c5:f4:4b:39:26:
f1:d6:3f:f8:12:ee:11:3e:b9:03:63:0c:4b:33:27:6a:c7:12:
01:28:c7:19:cd:a1:19:32:e8:d8:b0:f0:ab:2b:5c:e6:a0:f7:
7d:47:69:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:13:20 2025 by rpki-client