Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mBvb4R_HROzZIMaOU-UoH8H6xrc.roa
File: mBvb4R_HROzZIMaOU-UoH8H6xrc.roa (raw, json)
Hash identifier: +AtYXmY5MHi2KL/t9YIrPHAJZyea1Ee3gILD+4WCxg0=
Subject key identifier: 98:1B:DB:E1:1F:C7:44:EC:D9:20:C6:8E:53:E5:28:1F:C1:FA:C6:B7
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06D9
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mBvb4R_HROzZIMaOU-UoH8H6xrc.roa
Signing time: Mon 26 Aug 2024 05:18:31 +0000
ROA not before: Mon 26 Aug 2024 05:18:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17418
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1753 (0x6d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=981BDBE11FC744ECD920C68E53E5281FC1FAC6B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3a:07:57:e4:52:59:d6:1c:5b:fe:77:c0:21:
fc:52:82:6b:6d:9e:9d:c1:7a:d5:49:4f:cd:69:f8:
3b:08:bc:05:d3:a6:50:bb:84:dd:dd:b8:a6:aa:71:
5d:cc:36:d9:1f:56:1e:23:c8:1b:12:51:69:bb:56:
8f:9d:af:df:aa:f4:59:a7:f4:90:ea:33:c4:21:d8:
93:a3:1a:4a:f6:31:b6:e7:b0:8e:4b:33:60:07:65:
c8:9c:8e:8c:90:41:92:04:29:6c:c9:fe:97:7f:7d:
db:84:48:6f:29:ae:33:dc:e4:fb:c2:77:d8:ab:f2:
b2:4c:db:b5:0f:fc:d8:13:22:08:74:e8:06:39:aa:
0a:80:2e:39:4b:b3:a0:d2:a8:ad:b4:f6:33:dd:aa:
c9:63:86:30:3d:06:f2:b3:41:11:d1:c2:0a:bf:14:
06:57:b1:6b:d7:13:ff:54:01:6c:c2:07:a9:83:f1:
10:6c:a4:ee:c8:8b:19:1a:df:b2:b5:39:1b:26:fa:
3e:50:76:eb:80:14:39:e1:61:94:34:7d:bd:fd:16:
85:c2:03:f5:0a:a8:e9:3b:75:88:21:49:43:73:1e:
b9:06:72:f5:40:49:4d:1e:d1:69:5d:df:85:86:be:
bd:67:eb:bf:15:62:1e:6c:84:2e:47:ba:6f:55:6e:
6e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1B:DB:E1:1F:C7:44:EC:D9:20:C6:8E:53:E5:28:1F:C1:FA:C6:B7
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mBvb4R_HROzZIMaOU-UoH8H6xrc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
c2:1d:10:d7:0f:6f:68:ba:fe:e1:3d:37:ff:70:db:1b:c2:52:
3a:c8:6e:30:7c:7c:a5:ca:a5:00:40:1a:c2:18:b2:34:92:0a:
f6:9f:e7:25:b0:46:8e:82:e1:d4:0f:df:dd:de:ac:7e:b9:9a:
a0:93:f8:7a:4a:9b:97:e4:b2:12:3a:1d:e3:05:3f:ee:00:bc:
91:8a:b8:72:30:bc:44:48:4c:85:b9:d8:23:00:94:37:27:5d:
33:7f:5f:ac:15:e2:24:1f:1b:05:0e:f1:91:89:5a:7a:e7:ed:
80:2b:4e:91:40:31:62:38:11:a8:79:48:2d:be:3f:fc:a5:eb:
2c:c3:2b:0c:7a:6b:06:f7:d0:4f:57:1b:43:fb:1e:a8:5b:9c:
9d:16:10:be:d2:c1:98:dd:ab:57:fa:00:0d:30:ab:45:cb:36:
d1:42:d1:5d:be:42:9a:2a:72:a6:31:87:55:33:fb:53:20:79:
e1:fa:55:3b:98:13:e9:f7:b8:9e:d8:df:fb:86:86:33:9f:f9:
29:bd:65:2c:15:3a:6e:08:76:2f:43:33:35:33:3a:fb:7b:98:
51:38:38:94:09:09:b7:72:4f:d0:0f:c7:7c:98:7a:f3:6e:13:
f0:ae:da:a9:40:3f:e9:b0:26:98:c1:4f:87:cb:45:5c:3c:80:
b7:36:b1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:52:03 2025 by rpki-client