Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kogDtg33wQ4lcjRGa0cxGa3_m8w.roa
File: kogDtg33wQ4lcjRGa0cxGa3_m8w.roa (raw, json)
Hash identifier: 6TcKfkoWFdPeqH7VfELr2mQb01e675VS0FQhvWS7jts=
Subject key identifier: 92:88:03:B6:0D:F7:C1:0E:25:72:34:46:6B:47:31:19:AD:FF:9B:CC
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 079C
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kogDtg33wQ4lcjRGa0cxGa3_m8w.roa
Signing time: Mon 10 Feb 2025 13:44:35 +0000
ROA not before: Mon 10 Feb 2025 13:44:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1948 (0x79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 10 13:44:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=928803B60DF7C10E257234466B473119ADFF9BCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:27:5c:48:20:c5:2d:70:29:37:96:ff:c7:b6:
81:0f:63:f8:72:a5:9e:6c:6c:72:4a:f4:4a:54:ba:
46:d5:e3:ec:43:5b:27:cd:8a:c6:f1:19:2f:18:ea:
0a:97:cc:10:9b:60:c6:5c:c0:80:41:1f:f4:f2:7e:
2d:88:34:52:c7:1f:5f:ea:64:de:e7:82:40:b5:6f:
46:0d:0b:78:f9:b8:27:b1:53:51:73:8c:b0:08:0b:
70:e9:41:e5:e5:d3:98:23:dd:3a:73:e1:ab:f2:f8:
b1:a8:08:46:e8:41:a0:b4:ad:12:d3:45:90:7c:6d:
41:7b:cb:72:8f:3b:51:b5:7b:76:d5:62:26:c3:10:
8c:3c:ce:67:96:be:6d:34:aa:68:cc:ca:f8:7f:1e:
d8:a5:b6:f3:54:46:5c:aa:31:ff:26:ed:37:06:f5:
aa:f0:1d:7f:22:c6:bd:f8:34:87:e1:2e:25:87:19:
87:33:35:4e:e1:6c:32:95:eb:46:37:83:b0:30:f1:
2a:91:1e:cb:08:d7:b1:48:84:fc:b9:1f:94:ec:06:
08:27:96:1d:4e:86:fe:c7:e9:60:57:0a:d3:80:41:
6b:23:87:72:f5:95:1c:de:f0:2f:f2:df:6c:f5:ab:
22:39:5d:53:bb:9b:af:2d:c4:57:07:75:2e:c4:14:
fa:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:88:03:B6:0D:F7:C1:0E:25:72:34:46:6B:47:31:19:AD:FF:9B:CC
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kogDtg33wQ4lcjRGa0cxGa3_m8w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a7:2f:60:8f:be:c6:1e:9f:74:fd:73:3f:8a:67:7d:73:da:
8c:5d:3e:3b:88:f6:dd:b9:02:f7:7b:7e:df:01:7d:1a:f5:de:
60:cb:87:f2:9a:fa:8b:14:7f:f0:4f:c4:8f:63:5e:63:0e:3f:
5a:e6:e4:25:26:91:76:f9:4f:62:2d:2c:eb:6c:c4:aa:bc:b4:
a1:de:ec:aa:2f:57:4b:aa:d6:95:b2:b4:0c:84:73:6a:e7:0b:
ea:e3:b3:97:37:7f:f2:02:6e:a8:5c:82:40:14:ce:32:11:5f:
40:7a:e6:24:3e:0d:72:ec:99:66:84:c2:79:1f:4d:11:36:7b:
ce:a7:f8:50:35:b2:6c:a9:3f:57:1e:5d:e2:d1:26:6e:e3:27:
6c:a0:06:87:b5:61:88:e7:1a:ff:62:56:a1:26:cb:e6:88:d2:
8d:94:54:a6:a7:77:5d:dd:7e:15:37:ce:87:a1:12:bc:0a:29:
cb:7f:6d:95:81:49:32:d4:dd:1d:a1:ef:e5:7c:1e:ed:b5:a6:
2f:91:dd:c4:59:76:9b:a4:45:70:28:03:39:ed:d2:e9:82:00:
2b:89:fa:58:81:5e:37:9d:06:19:37:1a:4e:8e:7e:84:69:76:
fb:44:da:48:91:73:19:46:09:9b:08:b9:6f:34:c2:c8:cb:d0:
72:9f:a2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:34:52 2025 by rpki-client