Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/wRyUW2ckM9N3imr8vpl7s-4pLuM.roa
File: wRyUW2ckM9N3imr8vpl7s-4pLuM.roa (raw, json)
Hash identifier: 5v9UK90jSzR88IFUBZZdHdJJA/IlSpXpEu9/2CmMj6o=
Subject key identifier: C1:1C:94:5B:67:24:33:D3:77:8A:6A:FC:BE:99:7B:B3:EE:29:2E:E3
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 07AC
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/wRyUW2ckM9N3imr8vpl7s-4pLuM.roa
Signing time: Mon 10 Feb 2025 13:44:38 +0000
ROA not before: Mon 10 Feb 2025 13:44:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1964 (0x7ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 10 13:44:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C11C945B672433D3778A6AFCBE997BB3EE292EE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fe:1f:7a:09:3f:f3:4c:8b:cb:da:4c:d2:2d:
07:04:c5:3e:e8:bc:34:84:a0:2d:90:7c:36:a4:80:
a0:fb:a6:e6:54:74:05:e1:57:a5:e5:fc:c5:2d:ea:
5a:e8:cb:2d:a4:22:7d:c0:10:91:da:14:0b:86:af:
c7:ca:35:a4:1c:ae:0c:1b:78:ed:69:86:82:a0:4a:
74:e0:55:c9:2e:9c:c3:37:e6:d5:b2:d0:5c:fb:03:
6b:69:41:cb:69:d8:7b:6f:26:f1:c0:16:63:d2:1e:
4e:3f:32:ff:21:a3:d2:d9:f2:65:d4:e1:c4:0c:1e:
e4:ab:2f:9a:11:59:d2:51:62:71:46:ef:3a:3b:5c:
78:7e:3d:c3:69:57:1c:70:99:57:cf:ca:5f:5f:a0:
3c:7a:b0:97:e0:d7:b6:78:02:20:42:d1:d1:d6:4c:
c7:80:45:96:f3:9c:28:cc:0e:ba:0e:04:8e:c3:35:
c4:74:87:44:ee:06:db:02:f5:59:4b:62:c4:26:8d:
b1:14:11:54:5b:e8:0a:5e:41:45:6e:75:df:36:1d:
21:6e:4a:d3:ae:ab:12:bf:ee:c8:27:54:fa:11:69:
59:9a:a1:bc:ef:61:72:98:0c:2b:11:40:84:21:40:
a7:d0:4d:91:48:92:cf:8f:eb:eb:4b:46:43:48:7b:
bd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1C:94:5B:67:24:33:D3:77:8A:6A:FC:BE:99:7B:B3:EE:29:2E:E3
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/wRyUW2ckM9N3imr8vpl7s-4pLuM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:42:b9:c7:69:d1:26:a2:24:ed:48:83:11:f5:68:22:60:ce:
61:06:76:9d:6a:cf:24:d4:04:c5:16:42:7f:dc:69:07:50:24:
2f:ed:5e:c8:98:4b:66:5d:13:14:c3:e8:99:f3:49:86:89:aa:
38:ca:f9:cc:36:b1:38:ae:95:38:1e:d4:b5:da:5b:7b:33:14:
4a:59:85:33:8f:3b:f9:4a:b5:cf:f0:c4:03:6a:e3:01:16:01:
50:ee:d5:98:70:29:07:14:ba:1c:cc:4d:47:ad:dc:b7:b9:a9:
f0:28:38:58:87:64:8a:bd:27:67:d2:59:8f:c3:be:56:2b:17:
ff:da:14:d0:9b:2b:01:44:e2:c3:9f:c4:73:32:cc:aa:e3:24:
b9:f6:c4:44:97:e1:2c:04:4b:54:c1:ad:3e:92:7c:e9:45:f7:
92:4c:55:42:09:92:c2:9c:05:6c:3e:49:58:e9:11:26:b1:0d:
9d:ac:75:85:67:88:a3:94:49:9d:6f:a9:f8:9e:5c:3a:44:7f:
6e:bf:cc:22:90:7f:86:98:a3:31:7c:92:bc:b0:05:6c:c0:87:
18:a7:e5:b6:8c:19:42:a7:11:3b:cb:04:53:c3:8e:0c:ca:b4:
0a:80:7a:13:8b:43:e2:ad:57:13:a6:71:ae:26:d1:15:dd:ab:
cb:d8:a2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:34:55 2025 by rpki-client