Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/WfBp2rYCF5te5CRtEk8PrJ4L970.roa
File: WfBp2rYCF5te5CRtEk8PrJ4L970.roa (raw, json)
Hash identifier: dbA3nhWZdEEcA2mG7DowGkI90qDHkagkLARDr9wkdAE=
Subject key identifier: 59:F0:69:DA:B6:02:17:9B:5E:E4:24:6D:12:4F:0F:AC:9E:0B:F7:BD
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 0AE5
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/WfBp2rYCF5te5CRtEk8PrJ4L970.roa
Signing time: Fri 01 Sep 2023 09:16:01 +0000
ROA not before: Fri 01 Sep 2023 09:16:01 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 103.123.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Sep 1 09:16:01 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=59F069DAB602179B5EE4246D124F0FAC9E0BF7BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9c:10:67:66:6c:f0:0b:e1:79:7e:bc:b1:5b:
64:28:18:8e:02:23:25:fb:b9:4c:4d:9e:60:7c:bd:
47:c2:a7:6b:9c:b7:3f:be:de:9b:03:6b:a3:01:53:
fa:87:51:98:2a:19:ce:e8:90:da:bf:6f:c5:ab:a6:
54:a1:5a:4a:f5:5c:c4:77:7e:c6:82:dd:79:89:da:
ee:b5:59:44:d3:ad:8e:21:9e:28:0f:73:a4:76:b0:
d2:a4:ff:18:97:b5:11:ce:93:1f:6e:7e:a0:a8:2e:
96:48:10:3e:11:bb:47:89:38:1b:27:c6:4a:2e:8c:
d1:90:87:32:4a:c6:69:e3:e4:2d:99:9f:ed:e3:61:
ef:cc:2a:fa:0f:72:56:3e:c9:09:2d:3a:84:86:3f:
6d:7b:e1:88:91:4d:74:e6:9c:e4:c8:be:85:83:38:
02:45:d4:ce:79:72:86:78:49:cc:47:19:10:9a:c6:
7c:f3:f5:86:be:94:b0:de:43:d5:5a:4a:35:b6:bd:
35:ce:52:ff:0c:2b:d8:95:9d:5c:c7:52:c8:bb:ae:
60:b9:ff:3e:72:60:d1:2a:46:b1:71:3a:98:e9:09:
ec:85:7b:21:c7:8d:4b:26:28:f7:c0:2f:f4:19:70:
83:74:ad:1a:03:93:d8:5f:de:0f:51:e2:0b:c5:a9:
98:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F0:69:DA:B6:02:17:9B:5E:E4:24:6D:12:4F:0F:AC:9E:0B:F7:BD
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/WfBp2rYCF5te5CRtEk8PrJ4L970.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.2.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:18:4f:13:c5:2b:ca:1b:fb:d0:2e:27:da:09:4f:93:60:97:
72:05:b8:07:45:4c:9d:67:3d:02:c1:37:5f:79:db:be:9e:61:
ea:bd:1c:fd:ee:5a:cc:7d:e2:02:fe:31:b1:ab:18:47:d5:ea:
7f:05:18:4c:e6:e4:76:6d:df:3e:4e:c9:d2:72:93:19:50:47:
fe:1e:b9:e8:e3:23:08:49:f9:07:b9:16:90:c2:6b:c8:c9:11:
2d:60:d9:de:f7:a2:ce:e6:a3:8f:2d:5b:14:fc:26:37:3e:aa:
2d:70:a3:7f:ed:c6:fb:d6:82:3c:09:8a:6c:6a:56:fd:c7:e7:
45:fe:53:37:cb:43:c0:aa:90:63:df:16:39:8e:80:75:d8:ce:
3e:67:15:1b:49:eb:b6:84:c2:0d:44:cd:12:02:1e:55:ec:60:
b2:66:6d:3c:4b:73:04:6c:e3:34:3a:5a:16:ef:7d:14:d4:16:
a4:a9:7c:07:e3:9a:d2:d2:4a:07:09:db:00:a6:23:17:fc:72:
b0:45:83:0f:2a:23:63:dd:51:a4:70:2d:a4:00:20:1a:32:ff:
85:21:6d:64:d1:7c:3f:88:50:6d:b2:51:d7:fb:51:55:cb:ae:
a8:56:d7:23:e5:7e:98:5d:46:8e:14:6a:e3:9e:50:ab:c5:21:
40:c9:1b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:17 2025 by rpki-client