Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/PeGA7LfRh7rTVZSfzpVuLexcnGQ.roa
File: PeGA7LfRh7rTVZSfzpVuLexcnGQ.roa (raw, json)
Hash identifier: iqLk7fp82Bzpo401ZSaeeb2ZsWS9I4D/afq5+6fS5xM=
Subject key identifier: 3D:E1:80:EC:B7:D1:87:BA:D3:55:94:9F:CE:95:6E:2D:EC:5C:9C:64
Certificate issuer: /CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Certificate serial: 0F14
Authority key identifier: 27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/PeGA7LfRh7rTVZSfzpVuLexcnGQ.roa
Signing time: Mon 10 Feb 2025 13:46:47 +0000
ROA not before: Mon 10 Feb 2025 13:46:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17502
IP address blocks: 103.136.210.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3860 (0xf14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Validity
Not Before: Feb 10 13:46:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3DE180ECB7D187BAD355949FCE956E2DEC5C9C64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:87:84:34:29:5a:44:c3:32:6b:a9:64:03:70:
65:83:9f:cf:4e:0e:e8:78:88:4e:fc:44:16:59:11:
dd:ce:14:1c:1e:84:ce:46:ce:53:6c:5b:b2:fa:9d:
97:97:d4:29:a9:3a:af:ea:b5:d1:72:42:8a:d0:30:
79:79:12:8b:d3:c9:9e:29:54:96:d4:e6:77:b0:f9:
ce:62:57:e2:67:53:34:55:c5:f5:42:0f:ff:74:3c:
ea:0f:f0:b7:5d:06:91:cd:27:75:a0:67:a7:2c:01:
58:f2:b2:37:4f:13:d3:25:ff:59:79:2e:25:27:d3:
93:f8:2a:17:13:c3:f8:ee:e1:06:b3:0c:6c:32:ea:
23:90:05:cb:cb:1a:f5:7c:c9:16:96:48:5e:51:b7:
a5:85:4d:db:93:ef:24:cd:83:ed:71:13:00:88:3b:
fb:5f:61:ac:55:37:05:15:a4:77:a7:ed:21:07:23:
43:eb:cd:6e:b1:32:21:51:c8:81:b4:f8:b3:c2:fc:
e1:d5:a6:b7:26:c5:51:8a:24:27:51:2c:b1:5b:d1:
cf:bc:71:dd:ed:a9:9d:53:1c:69:5d:16:dd:80:67:
aa:0e:bb:c2:4b:b6:99:20:50:19:5c:c6:98:d3:34:
36:27:db:c6:f8:84:97:f1:53:3f:0d:91:93:d1:34:
e5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E1:80:EC:B7:D1:87:BA:D3:55:94:9F:CE:95:6E:2D:EC:5C:9C:64
X509v3 Authority Key Identifier:
keyid:27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/PeGA7LfRh7rTVZSfzpVuLexcnGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.210.0/23
Signature Algorithm: sha256WithRSAEncryption
60:f4:30:32:e4:ba:45:b9:68:35:23:a8:b4:13:3f:9c:c6:f5:
f8:58:35:74:5f:b2:4d:46:0b:41:61:8d:2c:e7:46:c1:d0:fb:
12:56:28:b0:60:dd:6e:21:e1:91:7a:dc:f7:96:2e:2e:f4:f6:
31:e1:fa:8a:46:47:43:89:bf:c6:92:ab:e9:8d:67:7c:e4:16:
ed:06:7b:1e:ce:62:5a:3a:56:8b:16:63:ed:4d:4b:f6:04:0e:
6d:94:86:83:01:30:42:e1:7f:5e:d2:ee:bb:d0:d8:e4:cb:46:
3e:a0:46:ce:6f:d6:ca:ec:75:d9:16:fa:38:d2:ac:1a:36:43:
ec:fa:0e:03:d0:0a:1d:bb:5d:b8:ef:50:ce:81:93:ec:61:be:
33:62:51:98:9b:94:5a:0e:84:e2:87:43:f5:d9:36:c5:db:f5:
6c:a0:85:c0:a8:1b:05:7a:1c:71:a9:a4:ce:42:3a:c7:61:7b:
ae:c3:bb:30:8c:7d:5a:44:2d:6f:5c:91:0d:fa:3d:d7:c1:38:
93:e9:7b:50:06:92:db:f8:5c:fc:30:01:0c:df:c6:f4:05:c5:
d4:fc:2f:b1:90:90:0e:6e:b4:d0:a9:e1:c9:c8:ad:2e:28:ca:
f2:f9:8e:c7:29:e5:ec:08:9b:c6:06:ae:43:31:9b:b6:94:fd:
d8:a8:da:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 21:44:23 2025 by rpki-client