Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/wBLsOu_S3sIoZpajkII5V77wCrI.roa
File: wBLsOu_S3sIoZpajkII5V77wCrI.roa (raw, json)
Hash identifier: uAZjQvsVDOruc1Zt+A/bNrV15GAaU63hFqABJ5i/45E=
Subject key identifier: C0:12:EC:3A:EF:D2:DE:C2:28:66:96:A3:90:82:39:57:BE:F0:0A:B2
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0CD1
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/wBLsOu_S3sIoZpajkII5V77wCrI.roa
Signing time: Mon 10 Feb 2025 13:49:56 +0000
ROA not before: Mon 10 Feb 2025 13:49:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3281 (0xcd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Feb 10 13:49:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C012EC3AEFD2DEC2286696A390823957BEF00AB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:62:38:d9:79:76:06:30:91:93:18:cd:7a:1f:
8e:87:65:46:5f:76:88:4b:f5:e8:88:6f:62:47:ad:
9f:c7:c5:14:db:28:84:00:06:6d:28:15:66:fa:70:
c9:19:2e:b4:dc:ed:7f:6a:9d:6a:3d:aa:9a:04:c7:
af:78:ec:f4:d5:a4:ee:64:d5:f0:de:56:a1:d8:61:
27:08:75:25:fb:89:20:03:21:85:ee:23:de:df:43:
f8:92:d1:10:c5:d1:28:ff:8a:dd:7b:17:82:a1:55:
43:29:04:6d:49:b1:7f:7a:c9:fc:24:f5:dc:09:63:
84:89:06:52:d8:0a:14:45:06:ee:f6:9c:5b:f9:a9:
20:70:f5:b1:53:52:d2:a3:4a:8f:d3:95:f3:a1:5f:
f6:28:e4:be:1e:d2:32:ed:d2:75:cb:05:b2:de:df:
55:b3:de:10:9b:66:45:6c:55:a8:08:ad:5b:94:3f:
84:0a:4d:ac:19:7b:46:8d:0a:4c:31:31:61:68:b7:
10:ce:76:c0:b3:7b:da:45:83:9d:9c:b6:a0:4a:eb:
96:b8:d9:95:3d:4b:9b:a9:d4:de:d5:86:a7:4b:4d:
0c:00:10:78:52:55:68:69:cf:6d:06:55:a0:f5:e6:
39:a6:72:10:5e:2d:96:6a:e6:4e:46:de:62:8c:c5:
a2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:12:EC:3A:EF:D2:DE:C2:28:66:96:A3:90:82:39:57:BE:F0:0A:B2
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/wBLsOu_S3sIoZpajkII5V77wCrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
94:80:67:3f:1f:30:24:4e:52:53:15:01:6a:bf:93:6f:b2:16:
98:ff:e9:02:c5:ad:ba:f5:d5:59:98:c2:54:e2:3e:a3:71:2a:
f0:73:e4:5a:ab:26:de:d5:33:d6:80:d5:42:41:ef:34:1e:a2:
16:1a:f4:ad:b6:b1:64:2e:e2:2e:02:de:14:df:eb:a0:80:26:
bd:97:8b:3e:53:bd:ed:fc:16:ac:80:2c:a0:40:b2:74:77:ad:
d3:fb:5a:01:43:0e:5d:35:a9:83:60:6b:63:e8:77:bb:72:d9:
62:89:a0:34:36:72:d9:44:c0:48:81:68:e5:83:cb:16:6d:41:
48:fd:fe:f0:66:74:7e:68:65:de:a8:34:07:03:6c:39:bb:bd:
6a:ab:57:f4:42:55:aa:4b:f8:3e:9c:7d:45:98:e6:13:9c:aa:
47:b8:c1:33:10:67:bc:4a:8a:fa:ba:eb:6c:ab:61:ae:33:d8:
d6:97:36:c4:dc:c5:39:17:43:35:c2:e1:fb:13:c8:fa:6a:ab:
59:32:aa:88:0d:7d:87:01:a9:3d:52:03:cb:09:99:29:52:ca:
26:68:a4:e9:81:ce:68:44:a0:53:e1:88:e6:a7:56:03:07:78:
f5:2f:b3:dc:0a:56:0d:70:a2:50:67:bc:0d:81:c9:a0:3e:d7:
9e:e1:6e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:00:06 2025 by rpki-client