Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yevWzleE3arDxQnXiHkqC9KsWg4.roa
File: yevWzleE3arDxQnXiHkqC9KsWg4.roa (raw, json)
Hash identifier: mrVjXXWy05RbV9x6Ugao4a5GWtE+17Qf5gx5bciwPZk=
Subject key identifier: C9:EB:D6:CE:57:84:DD:AA:C3:C5:09:D7:88:79:2A:0B:D2:AC:5A:0E
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06CF
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yevWzleE3arDxQnXiHkqC9KsWg4.roa
Signing time: Mon 26 Aug 2024 05:18:29 +0000
ROA not before: Mon 26 Aug 2024 05:18:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131657
IP address blocks: 103.122.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1743 (0x6cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:29 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C9EBD6CE5784DDAAC3C509D788792A0BD2AC5A0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:41:89:bf:3c:25:55:16:5d:76:1e:85:e8:
16:80:7f:35:a9:72:f9:86:24:da:72:4c:a4:20:33:
aa:de:6c:8d:d9:b9:48:07:e7:ff:0d:40:7c:2e:f5:
37:f3:eb:fc:67:07:c6:72:fb:13:09:f0:80:72:f1:
f5:7c:40:80:26:06:5a:07:e0:cf:e2:17:6a:37:39:
40:9b:5a:52:4a:9d:10:b8:3e:14:a1:3a:8e:87:45:
0f:d1:31:15:82:7b:19:1a:3b:93:bb:6d:1e:43:b1:
00:a6:7c:a7:e9:ab:3f:1d:aa:c5:53:27:57:ab:42:
66:3c:4c:05:51:40:68:62:16:9d:ee:91:a2:ad:d3:
7a:b4:0e:5e:94:9d:c4:12:86:2d:dc:aa:58:8d:fe:
fa:58:36:8f:7c:b6:26:92:10:a5:13:50:ac:50:93:
75:0d:c9:0c:25:eb:77:9b:bd:9d:66:e7:21:57:29:
40:ce:88:97:b0:cf:ca:b7:de:65:e2:73:69:cb:5f:
a5:a7:50:84:37:85:3f:b3:7b:e5:31:0c:35:f6:2e:
ee:b5:29:73:7f:c3:7d:fe:91:8b:7b:f0:08:0a:c6:
e7:9d:58:a9:93:82:07:5e:dd:f9:77:06:d3:3e:99:
4a:d0:73:6c:7c:ef:9a:35:3c:2f:44:30:51:bf:86:
11:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:EB:D6:CE:57:84:DD:AA:C3:C5:09:D7:88:79:2A:0B:D2:AC:5A:0E
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yevWzleE3arDxQnXiHkqC9KsWg4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:74:70:75:21:56:d1:5c:24:2d:b4:42:5b:c3:69:44:2a:bf:
96:00:88:c1:7b:d2:7b:1f:c9:e9:84:9a:cb:3d:ef:64:40:6b:
7e:9d:c1:08:0e:9b:d3:8f:da:b1:84:48:f7:f8:c9:50:e9:eb:
e6:af:3a:f0:99:32:bd:a7:0b:8a:8a:6c:c2:55:ec:4e:1d:8a:
4b:72:fb:c6:11:46:f6:18:65:bd:7f:ce:ec:cb:48:73:23:42:
ee:41:c4:8f:6b:17:94:b3:e4:92:ad:2d:68:fd:f0:4f:9e:80:
86:b0:f8:56:43:1f:fd:d4:7c:70:e8:ca:46:02:2c:a1:1a:af:
56:e3:a5:0a:72:5d:2f:f4:ba:f1:b4:dd:77:d7:bb:92:0c:7e:
58:15:4b:b7:ca:94:05:42:e1:1d:f9:47:fa:d5:ce:36:30:fb:
2e:e6:1c:e5:38:55:fd:6f:3c:cd:30:f4:be:d0:5d:2e:95:6d:
16:e2:51:ec:c3:cc:e0:ae:de:49:ce:df:92:60:98:ae:d0:2a:
f4:93:a1:b9:ce:9e:de:2f:01:33:48:1c:d6:b4:51:32:1a:b4:
60:dd:3f:1e:fb:30:bc:e8:00:ec:28:0b:23:1a:73:88:aa:18:
a0:27:96:4f:9f:8f:4e:00:c3:c8:69:4f:f8:4a:18:d3:de:4f:
4e:57:e0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:54:39 2025 by rpki-client