Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/RZt8ik18y9atnUalzHkBomxnZos.roa
File: RZt8ik18y9atnUalzHkBomxnZos.roa (raw, json)
Hash identifier: cvi9K4iwLTSyWudTKK57hyiopJfPzAxtgw1EEddudDU=
Subject key identifier: 45:9B:7C:8A:4D:7C:CB:D6:AD:9D:46:A5:CC:79:01:A2:6C:67:66:8B
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0F92
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/RZt8ik18y9atnUalzHkBomxnZos.roa
Signing time: Mon 10 Feb 2025 14:30:52 +0000
ROA not before: Mon 10 Feb 2025 14:30:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24168
IP address blocks: 103.136.60.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3986 (0xf92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 10 14:30:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=459B7C8A4D7CCBD6AD9D46A5CC7901A26C67668B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:89:bd:3b:13:1f:e8:5b:15:f0:b7:94:15:23:
1e:ac:74:98:b9:35:09:6d:e4:99:44:6c:92:bf:df:
a0:0f:28:85:80:1e:6c:0b:09:91:be:09:27:c1:9e:
92:b5:c2:dd:77:6f:ec:f9:0d:f6:0c:69:15:d4:1d:
8e:9d:75:0c:3e:2c:8f:99:80:88:6c:ae:56:d4:78:
44:64:5b:1e:b0:58:e2:9e:e4:6b:47:b3:47:cb:c7:
01:6e:43:c8:a6:95:72:93:4e:2f:a6:2e:50:2b:87:
50:15:60:de:28:79:76:b5:86:4d:51:d9:9c:36:a9:
3a:0d:ca:c5:7c:03:74:ed:56:02:b3:d5:75:ec:a3:
67:ed:8d:bd:3c:4c:d7:75:1e:90:9d:9b:6f:6e:cb:
ed:ec:c9:60:84:f8:26:9f:1f:80:8f:e6:a1:29:86:
99:e5:2c:86:68:c9:51:33:59:0a:13:fb:a9:4b:91:
bd:7d:e1:17:0c:89:ec:29:28:55:68:79:2d:2d:98:
c8:6d:e6:76:36:3d:2e:a9:9b:6f:ac:1d:da:7e:55:
f8:9d:1a:3e:87:23:3c:d9:14:4a:ee:66:27:2d:da:
9a:ef:5d:f5:30:6a:f5:ba:fa:eb:1b:64:80:b8:c5:
40:6a:34:7e:1a:d1:87:c4:ec:75:cd:e4:55:c7:3e:
7e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9B:7C:8A:4D:7C:CB:D6:AD:9D:46:A5:CC:79:01:A2:6C:67:66:8B
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/RZt8ik18y9atnUalzHkBomxnZos.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
53:86:1d:89:5b:0e:db:7e:09:9d:fd:92:0d:c4:be:1c:ee:5b:
62:df:57:5e:06:fb:55:c9:fa:eb:67:9b:ee:e1:ae:eb:fa:3e:
19:93:e6:68:3f:92:2f:ea:70:b3:41:28:58:25:bf:ab:a4:3e:
cd:39:bc:e1:bb:7e:a4:07:0e:48:6e:89:19:35:21:aa:e0:bf:
51:e9:fa:41:52:27:dc:12:34:fe:12:55:3e:78:d5:d7:77:ed:
62:cc:38:a9:e0:58:43:8d:c7:64:d3:6e:e8:c4:80:a8:87:0e:
17:44:65:e8:94:a1:47:00:40:d4:25:8c:58:82:bc:e0:03:0a:
f5:55:59:48:19:bc:6c:86:25:0f:d8:7c:09:70:ea:a6:df:82:
ad:4d:71:bc:6e:63:2a:56:60:46:b1:9f:83:63:57:74:49:22:
12:ca:e0:d1:44:4a:29:27:77:81:62:9a:cd:e9:7b:27:ea:e3:
e9:18:7f:00:91:f3:28:f3:4c:96:e6:15:b3:d5:5f:6d:68:35:
20:92:5c:a8:89:0c:d6:e6:6d:b1:b4:a0:8f:31:bd:de:c9:a6:
60:59:13:46:71:36:40:a3:96:1e:7f:b0:97:43:e9:a6:23:8a:
53:8e:2f:22:c1:17:c3:8f:e4:f0:4e:5d:6a:ab:22:6d:5f:32:
bc:a0:50:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:30 2025 by rpki-client