Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pviTKwFKrDOdV43WL0hfehk7RIw.roa
File: pviTKwFKrDOdV43WL0hfehk7RIw.roa (raw, json)
Hash identifier: RZPkoelJlot/7+VsHIxSlG5l6LSsclUGu5oteCssQhQ=
Subject key identifier: A6:F8:93:2B:01:4A:AC:33:9D:57:8D:D6:2F:48:5F:7A:19:3B:44:8C
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0CD6
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pviTKwFKrDOdV43WL0hfehk7RIw.roa
Signing time: Mon 10 Feb 2025 13:49:57 +0000
ROA not before: Mon 10 Feb 2025 13:49:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131662
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3286 (0xcd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Feb 10 13:49:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A6F8932B014AAC339D578DD62F485F7A193B448C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:10:e9:7b:4d:7d:a0:e9:9a:90:8f:8e:5a:e5:
06:85:f1:59:70:a4:fe:ba:2d:6a:db:6b:96:18:02:
65:3c:86:1c:2d:90:d8:10:a1:86:d7:cf:06:e5:08:
51:bb:ce:ab:f4:78:75:7a:57:8d:0e:74:cf:5b:5c:
db:5d:ed:f4:b6:f5:9a:3a:1b:62:07:10:42:3a:20:
03:c9:4d:7f:51:8a:87:20:54:cb:14:ef:d8:23:77:
0f:80:f4:5f:b9:d9:b0:32:b8:9f:d6:13:6e:37:16:
23:c5:47:5f:7e:6e:65:01:9d:74:f9:34:b0:3c:85:
9b:a0:e3:2d:92:b3:f2:df:ae:b7:42:50:6f:26:00:
27:c9:ea:f9:0c:39:b0:80:5f:f7:16:81:d2:07:aa:
85:32:40:e2:86:f0:ba:0f:9f:d8:bc:db:0c:a3:3f:
c0:95:02:cf:61:56:df:70:de:90:50:de:d0:4d:4b:
ec:fc:c0:68:8d:f4:53:57:fe:6b:6b:da:d3:fa:e6:
c3:3c:7b:aa:b6:fb:ff:e6:32:71:2b:d2:29:e3:c5:
9b:e8:fb:6e:fb:94:bd:d3:f8:f8:c8:a4:18:2b:28:
67:bc:5b:18:66:cb:69:b4:9d:c9:e4:68:99:25:14:
a4:89:9f:d6:21:e0:26:0b:71:c7:5d:7a:39:6e:d0:
f8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F8:93:2B:01:4A:AC:33:9D:57:8D:D6:2F:48:5F:7A:19:3B:44:8C
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pviTKwFKrDOdV43WL0hfehk7RIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
94:2c:94:d8:67:19:d5:2c:f1:64:e1:30:05:68:9d:7a:12:22:
e4:35:5d:ac:f4:01:cf:25:02:62:ac:c1:7f:3c:3b:02:31:c3:
ce:74:87:ff:b8:5a:ef:ea:3a:43:eb:13:2b:44:30:4d:10:ff:
0b:52:ea:45:f8:12:91:0b:62:fb:55:d6:34:fb:bb:63:6a:92:
64:ca:f8:f7:d2:bd:bf:0b:68:6d:f5:7d:63:c9:25:9a:7d:b2:
9c:e2:38:ea:48:1a:5e:cd:cc:46:73:b5:c0:66:37:2b:a7:f6:
ba:ce:70:09:3e:cb:c1:fa:cc:41:28:aa:0a:62:51:e6:20:3b:
13:d1:0d:7c:8a:31:e1:58:29:0d:d3:16:df:be:b0:31:b2:99:
05:65:9c:97:d7:df:fe:3b:5f:3b:0d:9d:60:10:e9:ad:46:80:
27:14:8d:0d:d1:af:1a:4f:de:d6:ee:3a:65:e8:ed:f9:fb:85:
4b:20:b9:b0:8e:78:f5:6c:94:0e:d9:1b:76:24:78:84:b2:60:
9c:c7:b8:24:95:90:81:a8:a6:94:95:81:7d:e0:ae:97:0a:37:
10:ec:e1:bf:0f:76:17:95:d0:38:c0:ca:0f:23:74:b8:97:98:
84:1d:c6:5e:1c:9b:a1:ea:f8:2b:b2:c9:8b:94:4e:1f:7e:ff:
f8:30:e3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:56 2025 by rpki-client