Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/uaPCbKZq15NVbtweJv7WtywLv48.roa
File: uaPCbKZq15NVbtweJv7WtywLv48.roa (raw, json)
Hash identifier: 0l94X004grw0dIoTIwVSKLYrGx8DsDRZHZu033I4/e4=
Subject key identifier: B9:A3:C2:6C:A6:6A:D7:93:55:6E:DC:1E:26:FE:D6:B7:2C:0B:BF:8F
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0794
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/uaPCbKZq15NVbtweJv7WtywLv48.roa
Signing time: Mon 10 Feb 2025 13:44:33 +0000
ROA not before: Mon 10 Feb 2025 13:44:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131657
IP address blocks: 103.153.176.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1940 (0x794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 10 13:44:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B9A3C26CA66AD793556EDC1E26FED6B72C0BBF8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:39:01:4e:08:35:de:dc:05:26:15:c2:a3:b3:
f3:73:b4:4d:93:5b:29:af:d9:67:01:2e:3f:66:e5:
93:96:55:1f:25:79:59:d5:f5:b1:f3:10:48:dc:06:
5b:86:e0:76:87:14:41:62:29:00:e5:6c:0f:e8:86:
ed:2e:b6:13:c3:fb:4e:42:6a:3d:4c:a4:ba:eb:82:
71:69:4c:76:0f:83:bd:c4:f5:c9:1a:36:2e:ca:99:
77:c8:cc:92:90:2b:9b:7d:0c:ad:78:52:e6:a7:42:
b5:a9:a6:15:91:5e:8a:4f:18:f9:a4:10:70:59:76:
a1:89:fb:e4:0c:f3:7f:f8:58:e8:32:e7:12:ce:c8:
c0:23:03:e3:4e:50:26:01:fd:a1:fb:99:97:a4:28:
55:8a:ef:d6:10:28:16:75:ea:85:4c:62:dd:8f:96:
0a:16:69:43:2d:1e:fa:48:e6:d5:96:ed:40:83:d4:
ca:7b:b3:65:4f:66:98:33:48:70:f7:cd:02:08:33:
88:41:75:39:aa:ef:c6:4b:bb:b2:97:e9:e8:d8:07:
14:e9:af:ab:44:a3:88:0c:73:ee:2b:2c:62:71:d4:
de:46:b1:5f:53:8d:0d:47:d0:4c:9f:2c:d5:10:5a:
37:2a:75:f8:85:9c:31:6e:16:fb:78:a6:8c:b3:91:
84:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A3:C2:6C:A6:6A:D7:93:55:6E:DC:1E:26:FE:D6:B7:2C:0B:BF:8F
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/uaPCbKZq15NVbtweJv7WtywLv48.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
73:70:01:b8:7a:8d:46:ca:87:08:57:11:c8:2f:32:d0:cf:76:
86:8f:db:52:86:d8:ed:ac:2a:0c:0f:d3:22:b3:a2:c0:57:a3:
3d:b1:57:04:93:d9:c1:c0:32:54:9e:19:df:af:e8:0a:c2:db:
21:8f:99:a5:e4:83:5a:f2:85:63:72:39:a6:07:f0:17:35:02:
4c:c3:bf:fc:10:35:50:f1:a8:dc:50:25:fc:63:59:bb:d2:82:
e4:d0:0c:06:f4:a6:1a:b4:eb:b5:51:07:6e:95:c6:c5:96:30:
c2:18:c7:48:33:75:db:0e:62:59:4b:d5:0d:a7:cb:6a:10:8e:
c7:e4:31:f8:20:45:da:1f:ec:65:9a:b9:fd:1d:7a:21:15:c2:
8b:4f:2a:cf:72:c7:f8:70:84:6b:3a:49:b0:66:94:08:b9:2d:
e9:75:b6:c5:c4:5e:bd:6b:bf:a3:3a:bc:69:59:11:13:ff:3a:
ff:56:c1:3d:45:2b:a8:78:2b:41:3b:c3:c7:7e:a3:33:9e:9f:
65:d6:c1:d4:26:54:08:cc:17:eb:bb:8e:a2:d2:b5:2a:2f:92:
15:19:35:43:ff:28:b5:42:7e:b2:e4:e8:0a:12:7f:ea:21:f8:
06:c3:86:ae:79:14:7c:9e:56:e6:13:f5:60:04:c3:bf:2c:f4:
e4:ff:01:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:39 2025 by rpki-client