Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/e6ctCldZnVIycrlLqEoesEG4TjU.roa
File: e6ctCldZnVIycrlLqEoesEG4TjU.roa (raw, json)
Hash identifier: Yfrr0x2Gp+uA76xSpj0FvIQWna20/kjCSUw1jac5BT8=
Subject key identifier: 7B:A7:2D:0A:57:59:9D:52:32:72:B9:4B:A8:4A:1E:B0:41:B8:4E:35
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06CA
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/e6ctCldZnVIycrlLqEoesEG4TjU.roa
Signing time: Mon 26 Aug 2024 05:18:27 +0000
ROA not before: Mon 26 Aug 2024 05:18:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20473
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1738 (0x6ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:27 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7BA72D0A57599D523272B94BA84A1EB041B84E35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:01:36:4d:8c:c5:66:50:88:88:c8:ca:31:5a:
60:6f:89:38:f0:e5:b9:45:8b:2f:b8:0a:46:fc:7d:
ba:2c:76:ba:97:21:dc:3c:ee:42:84:4c:a4:40:64:
4c:d0:12:11:dc:a2:92:50:da:93:94:ba:02:78:83:
c5:d4:82:9e:be:8b:f7:45:17:95:ab:06:12:d3:9c:
29:d6:46:23:a1:cd:9b:a8:71:55:29:63:a1:69:86:
7e:7a:d0:80:63:f4:03:19:83:06:04:74:22:2c:f8:
0f:c5:7f:a6:a1:6b:b0:bf:97:71:f4:a2:d3:70:97:
3c:79:8b:08:69:62:cc:18:d8:5a:c1:3a:1f:c2:96:
68:20:fa:2e:06:0b:23:98:62:a3:eb:fe:c3:25:0c:
5e:88:81:b3:53:0f:cf:67:f8:7f:f0:54:e2:30:47:
a6:53:fa:32:92:8d:fd:2c:f2:32:af:9b:be:70:b0:
1d:04:34:58:5f:1c:73:d4:6d:a6:d0:5f:0d:20:5e:
a9:c1:2c:83:08:43:89:06:17:22:67:77:d7:1a:e3:
9c:63:0e:86:fc:59:f7:31:71:cc:bb:6a:06:64:84:
87:7e:de:01:ab:bc:9e:4c:98:e3:bf:f7:a6:32:71:
5a:1e:6d:9d:9d:ac:79:d6:93:9d:64:c0:8e:07:c9:
bd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A7:2D:0A:57:59:9D:52:32:72:B9:4B:A8:4A:1E:B0:41:B8:4E:35
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/e6ctCldZnVIycrlLqEoesEG4TjU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
08:c9:50:8d:37:99:f6:12:59:b7:ba:01:8c:90:2a:7c:e4:dc:
42:31:28:53:1e:37:4a:2a:80:be:95:3a:8c:98:68:11:cd:45:
9c:9e:85:91:1a:64:9e:cb:70:63:b0:8a:da:5b:72:65:e0:2f:
1b:83:b8:c0:6d:1c:d6:ed:4f:aa:22:14:86:d7:28:b1:59:00:
67:9f:db:b5:be:cc:ae:bf:b7:18:fa:99:ef:28:c5:35:0d:1d:
40:7a:22:f1:0f:3f:07:a3:2f:8c:3d:3f:7c:05:52:37:e4:70:
38:84:26:45:1b:57:d1:9d:1c:3e:bc:36:a8:02:96:b5:d3:01:
7a:07:01:67:fe:8b:4a:24:d8:31:28:36:62:8b:1f:07:28:3e:
e8:ff:2f:c5:50:5c:0a:6c:01:67:3e:10:f7:b2:1a:65:f0:85:
86:c4:c4:b5:c6:29:50:cd:e1:35:c8:a1:36:d6:7c:69:17:cb:
15:72:f8:a7:5d:cd:6d:2b:64:3c:f0:ee:cd:12:91:9c:71:78:
29:52:3b:e3:7e:55:68:89:90:04:b7:58:02:a6:52:6d:7d:0e:
35:cc:9a:7e:cd:37:ac:d3:ee:19:99:c0:15:e6:88:b5:98:95:
f7:8f:d2:89:42:7f:3f:15:93:fa:b0:f6:ae:85:73:fc:7c:de:
5e:e3:82:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:50 2025 by rpki-client