Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa
File: G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa (raw, json)
Hash identifier: 7YSUkYloPstyGRxUWFTzKwPHdKiPy/q0ULg7nW95d7E=
Subject key identifier: 1B:66:24:8F:69:77:A6:12:1C:56:D3:0C:E9:56:8E:A1:66:09:76:0B
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06D6
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa
Signing time: Mon 26 Aug 2024 05:18:31 +0000
ROA not before: Mon 26 Aug 2024 05:18:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.122.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1750 (0x6d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1B66248F6977A6121C56D30CE9568EA16609760B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:83:9f:bb:73:7d:f1:b1:df:64:5f:67:bc:
81:4b:bb:9e:7b:46:9d:b5:ac:f0:b5:11:17:64:77:
c1:0d:9a:7a:49:0d:7f:a6:7f:c4:c0:64:51:3f:47:
ac:51:53:08:a6:fe:6e:ac:95:f1:6f:ca:50:f0:6c:
6d:27:49:88:c0:9f:08:50:aa:ed:c1:0d:be:90:e9:
19:12:29:2c:4d:b1:93:5f:ae:c4:70:d5:8a:4d:fd:
05:88:67:ba:84:a8:9f:94:a8:8d:2e:45:a1:10:16:
18:1a:a8:02:84:ca:ac:1b:8f:1a:1d:e3:29:10:d1:
c0:b5:2b:84:f6:ad:cd:da:2b:b1:8d:bf:f3:e3:0d:
65:03:d3:2d:f7:1b:3f:61:3e:4c:5d:3a:f3:71:f3:
18:16:b7:ec:cc:43:8d:48:a1:22:8a:70:b7:d1:0e:
7f:31:84:67:48:37:64:6d:8b:d2:a5:82:d0:5e:0e:
9d:0d:a9:be:e0:1b:16:68:47:7d:41:e9:cb:1c:41:
38:3e:b0:39:b0:31:d1:e9:82:40:7e:ea:dd:46:39:
04:6b:cf:a0:69:5a:2b:34:7e:69:88:b0:58:44:bb:
c4:d5:f9:fd:47:fd:00:3c:88:fd:c8:10:4e:40:c1:
3c:03:7e:b7:55:08:c9:eb:7d:0b:0f:bb:a9:e6:34:
9a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:66:24:8F:69:77:A6:12:1C:56:D3:0C:E9:56:8E:A1:66:09:76:0B
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.190.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:5a:15:45:77:b7:2b:e1:be:b7:e1:56:c9:03:a9:2d:8d:ab:
44:56:87:a1:11:83:8e:d9:5a:cc:17:f1:f0:79:a9:4e:49:93:
5b:7a:f3:4c:3f:a9:12:8d:7a:04:8a:78:d4:32:11:f2:96:7a:
af:97:2a:60:99:0d:d5:6a:21:3b:ef:25:8c:d8:c6:e4:7d:71:
5d:fa:ab:a3:09:f5:2a:c5:0e:48:c3:af:76:db:13:67:30:7f:
1c:9c:87:49:0b:4d:f2:22:f2:92:03:40:bf:7a:38:6f:8c:9b:
9a:65:d5:0c:7e:47:88:16:58:6c:4a:bb:84:9f:9b:4f:aa:88:
1e:76:e5:45:9b:31:33:12:09:ac:d2:d0:35:8d:1c:f2:b7:a6:
d0:41:29:ea:ec:e4:9d:50:a6:23:89:61:02:03:d2:eb:fc:b5:
66:3f:e1:81:24:0d:d8:42:ec:7f:b5:d3:84:04:ea:a5:14:a2:
15:c4:b3:c0:fc:c8:83:18:e6:af:ca:7c:70:2f:8f:0a:c3:03:
49:ae:2d:6c:70:21:37:b1:53:76:bd:8d:18:3d:ec:49:25:34:
99:ed:d3:e2:1e:df:1b:94:7f:00:0f:25:d0:71:3b:91:64:20:
b5:55:f3:06:6e:ec:c0:1a:f0:31:fe:c2:b2:9e:03:90:a3:6b:
4d:86:4f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:59:08 2025 by rpki-client