Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/rQSUlnMSJkFvAzkOfIeGVsLl6Cc.roa
File: rQSUlnMSJkFvAzkOfIeGVsLl6Cc.roa (raw, json)
Hash identifier: ozqkG0zNIWmzGcF8eRe1xlavD9kx7fsnMMw+Sx9FM6U=
Subject key identifier: AD:04:94:96:73:12:26:41:6F:03:39:0E:7C:87:86:56:C2:E5:E8:27
Certificate issuer: /CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Certificate serial: 11D8
Authority key identifier: DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/rQSUlnMSJkFvAzkOfIeGVsLl6Cc.roa
Signing time: Fri 01 Sep 2023 08:35:25 +0000
ROA not before: Fri 01 Sep 2023 08:35:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131149
IP address blocks: 103.123.196.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4568 (0x11d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB3428CCC4C12CF4F15BAF82EABB4C6A06304642
Validity
Not Before: Sep 1 08:35:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AD049496731226416F03390E7C878656C2E5E827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ce:c7:de:69:45:bb:e4:ab:7f:9a:c1:95:dc:
3c:df:c1:d0:62:b6:70:d9:77:8b:10:94:41:98:b4:
49:6d:ba:2d:e3:e1:37:30:5b:19:d0:e6:b1:66:a8:
60:16:44:c7:c9:86:e3:c1:80:af:91:81:f9:7e:f9:
8e:61:d9:15:36:53:f5:91:87:97:34:2f:92:a6:87:
32:5c:fe:ea:c9:9a:3d:ce:c3:22:c7:5d:af:17:30:
fd:e1:c3:9a:73:d2:b8:a5:6e:ea:68:27:67:83:85:
0f:62:1e:95:2d:8c:9f:49:97:bf:b6:2c:5d:37:48:
7f:41:00:11:33:27:05:d9:f1:26:d7:74:ff:f1:dc:
d9:1b:03:1b:9a:ed:dd:62:c4:74:17:81:95:38:e9:
77:61:45:bf:82:a0:38:07:bd:da:24:b5:f2:de:d8:
bf:f4:20:6f:54:5a:0e:05:f3:bb:fe:1e:04:37:d5:
5b:65:e7:fe:56:36:fa:db:df:b6:55:58:f8:fa:77:
fe:07:9a:54:5a:ee:4e:f0:57:11:28:f8:58:ec:58:
50:c8:f1:9b:0b:e0:c6:9f:d5:e4:69:fd:8a:ec:70:
95:e7:1b:93:19:fd:68:ac:69:15:b1:e4:1d:53:24:
2a:b5:6c:42:39:e1:a0:93:7c:9d:3b:00:b2:e6:a7:
eb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:04:94:96:73:12:26:41:6F:03:39:0E:7C:87:86:56:C2:E5:E8:27
X509v3 Authority Key Identifier:
keyid:DB:34:28:CC:C4:C1:2C:F4:F1:5B:AF:82:EA:BB:4C:6A:06:30:46:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/2zQozMTBLPTxW6-C6rtMagYwRkI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2zQozMTBLPTxW6-C6rtMagYwRkI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DEVISEHOST/rQSUlnMSJkFvAzkOfIeGVsLl6Cc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.196.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:6f:79:1c:0b:d9:91:e5:05:bc:aa:85:7c:16:ff:c1:e9:4c:
5b:a2:07:65:2e:3c:30:ed:02:57:90:ea:8f:38:11:3c:92:98:
11:1c:af:af:a5:42:d0:45:7e:b5:be:2f:08:bc:b1:92:e7:7c:
cd:06:5f:f2:ab:20:e2:9f:86:21:3d:d2:51:85:1b:98:0d:0c:
5a:84:ad:04:a4:e9:a8:d7:63:4f:e9:50:62:5b:09:d9:a6:45:
18:78:3f:fe:54:ff:54:54:e8:04:5e:38:f8:a6:14:b8:d1:b4:
7b:b2:50:4f:20:ca:cb:9b:51:cf:b8:78:9a:29:87:d9:ff:58:
88:4a:5b:ff:3e:57:bb:19:0c:55:b3:64:40:0f:2d:e2:82:72:
59:9b:40:36:81:75:af:ec:88:7e:dc:cd:6c:e3:ed:36:6e:a8:
2d:b2:fd:ff:08:c7:07:61:54:9d:03:3c:c1:e3:76:b1:1d:79:
b2:76:c9:e7:58:dc:93:ba:fd:c4:73:06:0c:f3:74:4c:ec:67:
92:c1:93:ec:01:61:6e:e5:b7:01:11:2d:7f:9d:da:98:6a:ff:
39:c6:01:0f:92:08:7f:a3:d5:07:93:f0:c3:a9:02:85:80:fb:
1e:05:c3:d8:fe:03:78:b1:86:30:e3:ae:5c:27:f2:f8:14:dd:
ef:11:3c:df
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:07 2025 by rpki-client