Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/QEGy_JiOeWDlHFmOphaeWrhRPAM.roa
File: QEGy_JiOeWDlHFmOphaeWrhRPAM.roa (raw, json)
Hash identifier: VhLV0o43S+zeWqNhE5w8LJgrosGBqBdZCFMsVjk+/A4=
Subject key identifier: 40:41:B2:FC:98:8E:79:60:E5:1C:59:8E:A6:16:9E:5A:B8:51:3C:03
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 079D
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/QEGy_JiOeWDlHFmOphaeWrhRPAM.roa
Signing time: Mon 10 Feb 2025 13:44:35 +0000
ROA not before: Mon 10 Feb 2025 13:44:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17418
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 10 13:44:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4041B2FC988E7960E51C598EA6169E5AB8513C03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:66:8a:07:8a:b9:c1:d0:34:69:ed:b9:00:0a:
ff:27:cb:1a:17:eb:8f:54:d4:da:01:02:e6:9f:ed:
4f:52:81:84:ce:d2:46:45:f7:67:6f:50:46:be:f3:
3b:d4:65:40:cd:c8:94:1b:ac:73:fb:7f:13:0b:36:
6c:5f:11:5d:e4:05:72:46:52:6e:de:a2:d8:ce:24:
2b:7f:34:54:7d:f5:38:d8:c9:fd:b7:29:d0:75:3a:
73:63:39:8e:77:6c:2f:3e:83:ec:12:10:fe:be:5d:
a3:5f:de:14:7f:d7:07:2d:ae:0a:4e:42:73:59:4a:
44:59:6f:86:7d:cb:a3:15:ab:25:07:70:62:e6:45:
49:cb:51:93:22:30:a8:67:8f:81:cd:57:ee:e7:b0:
0f:81:34:6e:13:14:a4:6d:03:fe:dd:8c:31:d1:61:
fb:d3:8c:e6:df:08:45:68:d2:af:15:a9:f2:9e:79:
c7:75:69:01:07:94:0c:96:8a:a9:82:bd:26:15:74:
b6:1c:e3:2d:a3:38:4d:00:7e:30:1d:db:ab:4a:d7:
3d:a0:eb:6a:52:03:6f:bb:25:b9:aa:57:c0:ee:0f:
4e:d4:3c:63:fe:da:06:d9:78:3c:02:73:41:13:4f:
4c:15:8a:46:ca:da:3f:7d:87:77:2a:c8:f6:b5:b0:
aa:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:41:B2:FC:98:8E:79:60:E5:1C:59:8E:A6:16:9E:5A:B8:51:3C:03
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/QEGy_JiOeWDlHFmOphaeWrhRPAM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:07:89:ec:fa:6f:cd:7d:2f:d3:00:86:42:75:c0:b5:61:43:
61:84:f2:e3:48:ca:49:c5:a3:6e:8c:2c:9b:4d:b6:70:71:5b:
d8:20:c6:02:47:f0:ee:d2:83:84:7b:99:4c:29:6d:40:a5:56:
a6:ff:7c:14:a4:10:20:0a:66:49:bb:8e:a0:49:2e:f3:e0:11:
a1:62:79:ae:52:6d:e8:cc:89:f1:26:5e:23:73:dd:55:6a:3a:
f1:0c:10:2b:68:96:ce:2e:2c:30:de:98:72:b2:26:fe:5f:7e:
c2:6c:47:37:46:12:c6:0a:45:37:2b:18:6a:b2:0d:b1:2c:7d:
bd:68:94:ac:46:19:1f:8b:a5:5a:9b:1f:01:bd:92:dc:64:00:
c0:64:31:8b:ea:e9:0e:81:9f:a9:8c:5d:e0:6e:27:4a:c2:8f:
b5:5d:3e:fc:c0:11:d8:90:6c:57:5b:1f:ce:cf:54:1b:01:53:
35:00:e0:f2:c3:25:cb:13:ef:89:dc:a3:f8:4a:c2:11:6d:1c:
23:5b:fe:cc:11:35:de:cc:bc:7f:50:df:17:9c:01:d2:a6:fe:
74:26:07:3a:a1:df:2c:a5:65:98:6e:74:25:eb:ba:d6:0f:39:
f4:d9:32:af:df:4c:47:00:07:47:10:53:f5:bb:c3:fb:bf:fa:
c0:99:7e:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:57:31 2025 by rpki-client