Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/_lnjvbTp_eFKmZJ4uhvbnHdZ7kI.roa
File: _lnjvbTp_eFKmZJ4uhvbnHdZ7kI.roa (raw, json)
Hash identifier: Dk3zPTUg9C2EVniuCBIYkDz0FChgtjxA9MH2NtNX9Pw=
Subject key identifier: FE:59:E3:BD:B4:E9:FD:E1:4A:99:92:78:BA:1B:DB:9C:77:59:EE:42
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 0BE0
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/_lnjvbTp_eFKmZJ4uhvbnHdZ7kI.roa
Signing time: Mon 26 Aug 2024 05:20:17 +0000
ROA not before: Mon 26 Aug 2024 05:20:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 103.123.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3040 (0xbe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Aug 26 05:20:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FE59E3BDB4E9FDE14A999278BA1BDB9C7759EE42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9a:0d:b4:ac:65:ad:b5:c1:f6:b5:9f:87:b0:
06:c7:fd:75:82:a5:5d:09:4b:09:1e:16:73:2e:cc:
40:42:2a:1e:36:bc:dd:72:0e:f8:49:90:b1:1f:a6:
be:2f:f4:fe:29:e1:54:17:d1:f6:ef:10:b3:5b:d3:
b2:2d:a4:a2:56:55:31:f7:e7:99:47:fd:2b:fd:11:
e2:0d:2d:16:d3:26:9d:b5:dd:39:09:5e:39:56:da:
10:da:fc:5a:04:2c:54:51:c7:27:86:a5:83:1e:2c:
cd:74:06:8a:aa:6e:da:b2:bc:44:3d:82:95:1e:43:
95:fe:ea:97:d2:ae:60:c7:ac:0a:42:30:68:4a:89:
90:12:4c:f1:e2:37:23:aa:4a:a8:21:5b:ec:80:ab:
9e:2d:ed:8c:19:7f:6c:b6:25:f0:79:ad:9d:3a:56:
49:9d:d1:3c:0f:b9:66:72:31:ec:43:a5:6d:28:3a:
62:66:75:84:ea:af:e4:19:22:64:7f:24:c0:0f:5e:
cb:97:c2:2a:4a:85:7c:0e:27:7c:b0:a8:72:bd:e4:
03:c8:24:c1:0b:c6:cf:80:d7:75:4d:cc:53:dd:a4:
2b:42:91:c9:d0:36:18:62:2d:25:de:05:e6:36:aa:
81:7c:88:26:92:c8:c1:0c:04:d9:20:1c:51:da:00:
5c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:59:E3:BD:B4:E9:FD:E1:4A:99:92:78:BA:1B:DB:9C:77:59:EE:42
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/_lnjvbTp_eFKmZJ4uhvbnHdZ7kI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.3.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:5f:f0:0c:f2:64:82:77:f6:43:c2:92:cc:41:9e:bf:ae:df:
7d:0a:88:1b:da:6b:ae:6f:23:48:c5:0f:64:4c:fa:a9:ff:2d:
1f:21:4c:bd:e3:8e:38:ce:56:be:9b:34:6a:c6:27:ef:cd:bd:
90:31:e0:2d:bd:62:d7:63:c8:68:52:a2:bd:0d:ae:45:79:a4:
94:54:77:92:79:b0:90:c7:4a:fb:03:7c:72:5d:42:8e:50:34:
20:18:4f:e7:ce:f3:29:a2:e4:fb:f0:cd:9f:3b:1b:9c:42:1d:
b1:63:9e:90:e8:11:01:fb:15:d2:51:74:57:0f:0a:75:35:22:
2d:3d:ea:b2:ff:99:e7:fa:86:72:75:c2:47:f2:3d:5a:c8:f7:
57:35:01:3e:27:51:fb:90:04:1c:84:24:91:9f:64:e0:f0:d8:
30:1b:4a:27:b7:8b:8f:56:4a:7a:f3:00:95:76:1e:14:49:1d:
b4:44:04:91:13:0b:cc:33:bf:3c:47:54:4d:ec:eb:6c:1a:1e:
57:c3:21:61:b8:9d:10:4c:4a:1d:f8:90:ef:31:2a:d9:b0:ce:
46:62:56:93:94:90:e5:db:30:30:0f:95:e1:ad:0c:5d:30:09:
48:6e:10:30:1c:82:1a:37:66:9f:a9:49:42:6a:ff:2d:eb:fb:
1c:80:64:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:53 2025 by rpki-client