Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa
File: LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa (raw, json)
Hash identifier: JNKv20DwEcmc6lBrjNkVLQ64+CvdG/dUA6A0kT2GK3Q=
Subject key identifier: 2C:3E:73:E0:47:B7:CA:97:9B:BD:05:FC:24:65:8E:A3:80:DD:DD:86
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 114A
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa
Signing time: Mon 26 Aug 2024 05:20:51 +0000
ROA not before: Mon 26 Aug 2024 05:20:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 48024
IP address blocks: 103.127.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4426 (0x114a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Aug 26 05:20:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2C3E73E047B7CA979BBD05FC24658EA380DDDD86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f5:86:9f:e9:03:11:6a:63:6b:a4:72:49:1e:
fe:96:91:48:bb:81:9f:18:47:d4:0d:45:30:6d:dd:
ba:70:76:a3:56:ad:c1:47:17:b1:ed:3e:7f:e4:a8:
7a:4f:d8:c9:9d:55:f3:35:cf:92:1e:4a:3d:a3:68:
8f:ba:72:f1:f9:d5:eb:69:d7:43:2b:88:55:47:5a:
f7:27:01:77:35:4c:a1:02:be:51:2b:8d:11:28:ec:
45:f9:37:2e:13:36:b8:01:38:bb:4e:9f:8e:d1:02:
d3:d5:2a:3c:99:22:c9:bf:48:24:f1:a6:66:4e:e5:
40:28:e7:df:e3:20:32:5f:18:a2:4e:f1:96:68:31:
7f:54:36:c3:52:7a:9d:b0:fa:6f:28:5b:37:ce:87:
33:45:13:2c:79:35:97:f9:8b:3b:23:91:6f:98:74:
61:2d:1f:48:dc:d7:6a:a9:f2:76:83:65:f5:89:04:
ad:74:8f:a6:88:88:3f:c9:f5:4d:04:39:70:a3:83:
33:7e:43:43:1f:95:db:07:ad:4a:c1:a1:84:35:4f:
07:67:cf:f1:67:24:c5:95:a6:3c:92:24:e4:a6:bf:
aa:1f:66:8e:76:82:dd:fc:04:74:af:4b:46:85:8e:
07:a7:93:c8:d7:f8:d0:46:ab:5a:aa:1a:3a:7c:61:
cf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3E:73:E0:47:B7:CA:97:9B:BD:05:FC:24:65:8E:A3:80:DD:DD:86
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.240.0/22
Signature Algorithm: sha256WithRSAEncryption
05:54:44:a6:f5:00:86:5e:bb:02:01:24:14:94:b4:26:b1:9d:
29:bc:44:c9:fe:b9:ff:3d:33:f4:b4:cf:b8:e6:75:e3:a0:04:
3a:88:36:1d:64:c3:db:0e:58:4b:e3:f3:f4:a3:ef:29:1b:80:
31:e3:d5:dc:97:1f:7e:0b:b6:ff:e1:2d:9d:2a:6b:e5:fc:33:
ab:42:bf:ac:71:6a:a5:6c:d3:eb:bb:a1:97:4e:51:90:3a:0f:
bf:82:49:fc:c1:d9:8a:83:16:31:b9:e4:bc:da:7f:02:c6:42:
16:7d:f8:36:8c:39:e5:ca:ba:1e:22:0a:e2:1d:df:bf:34:30:
e4:9f:c2:96:61:4f:85:18:4e:01:52:4f:8b:43:9e:c9:4a:80:
57:8f:83:0c:4b:9b:29:65:60:04:10:ce:27:f5:1c:44:54:23:
4a:8d:09:83:aa:68:0e:83:41:af:53:a4:d5:5b:58:6b:e2:f1:
79:ec:51:c8:c4:61:1c:94:53:d1:0c:cc:60:44:70:fa:b4:cc:
0d:b7:f1:48:1a:25:eb:72:a4:32:68:29:3d:97:9d:e7:34:36:
42:3a:7d:b6:cb:73:49:5d:5f:30:ab:1c:8f:49:7f:2f:4d:5e:
98:12:ae:82:be:43:60:c9:f9:b5:69:8e:ea:4c:b9:35:21:9f:
12:8d:de:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:37:05 2025 by rpki-client