Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/itDUCoBu-s9XvdSHSTvQRfciljI.roa
File: itDUCoBu-s9XvdSHSTvQRfciljI.roa (raw, json)
Hash identifier: z6mK8KalAqlJYEx8dDXcCLmWE5p5u2AVeWaxnMr6z9M=
Subject key identifier: 8A:D0:D4:0A:80:6E:FA:CF:57:BD:D4:87:49:3B:D0:45:F7:22:96:32
Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7
Certificate serial: 0172
Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/itDUCoBu-s9XvdSHSTvQRfciljI.roa
Signing time: Mon 10 Feb 2025 13:43:36 +0000
ROA not before: Mon 10 Feb 2025 13:43:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 103.69.54.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 370 (0x172)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7
Validity
Not Before: Feb 10 13:43:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8AD0D40A806EFACF57BDD487493BD045F7229632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:06:30:db:ff:52:71:d1:48:f4:b9:d2:a8:23:
3a:a7:78:de:23:6a:5e:10:6c:f7:3d:79:6f:af:4a:
ec:1f:e5:99:f5:eb:10:0b:5a:bd:34:cd:2d:29:7f:
83:2b:c4:5a:e6:bf:3c:69:1b:43:1f:e5:16:6d:9d:
fd:9c:dd:2a:eb:4e:70:6b:68:ab:2c:43:81:1e:c1:
34:2e:34:8b:b3:5c:9c:b1:9f:51:c2:db:81:78:37:
9b:2b:27:b8:c8:8d:c4:12:12:39:81:de:af:81:0f:
95:c5:a7:d7:de:9b:41:e0:89:3b:bf:95:fc:0c:1b:
4d:a5:2a:dc:94:0d:bb:20:d0:b8:d2:1e:6d:c0:5d:
9b:b2:2d:c2:ea:30:3e:66:a0:c3:e6:e3:ea:6e:ea:
3d:6c:8d:be:8e:f7:43:c2:9f:de:29:a7:67:b2:ae:
55:8a:eb:a0:fc:bb:cc:99:ab:54:82:0c:0f:cb:ff:
dd:47:92:b6:a1:fa:dc:ec:86:86:a6:16:41:95:ed:
4f:c1:4f:d8:7f:30:69:42:78:aa:51:28:6e:b0:08:
dd:c3:81:1c:ea:04:ef:6b:4b:05:a7:7d:99:20:83:
76:4b:c1:70:fa:a3:cd:86:48:34:39:ea:88:e8:91:
b5:51:aa:00:ab:83:c3:b9:6d:9e:5a:ee:51:74:34:
3a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D0:D4:0A:80:6E:FA:CF:57:BD:D4:87:49:3B:D0:45:F7:22:96:32
X509v3 Authority Key Identifier:
keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/itDUCoBu-s9XvdSHSTvQRfciljI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.54.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:8f:91:62:e9:72:55:b5:18:63:d9:99:71:96:9a:90:e9:04:
e1:16:00:ff:b2:9e:2e:60:f1:bc:6a:f8:2d:27:00:4a:64:57:
69:df:d5:b4:61:76:c2:96:04:ff:05:8d:ca:ec:c4:9b:2a:34:
ee:50:5a:8d:b9:95:72:2b:ea:b2:6f:23:d7:22:98:a5:f0:65:
36:30:54:58:f1:54:b7:3c:aa:83:75:34:6e:06:4b:45:2b:59:
52:a2:93:39:cb:97:66:26:ef:5c:71:51:ba:49:33:fd:df:c3:
38:86:88:72:0d:c1:10:f4:0d:55:b8:db:a5:e3:de:dd:35:c8:
1a:2c:34:a7:fa:fe:a0:f0:61:9c:45:e2:28:64:90:7b:09:8f:
dc:f6:84:14:9e:08:c9:6e:b8:b5:d3:df:27:85:0f:cb:8a:89:
df:0c:39:8f:67:49:0a:31:66:bf:f1:b1:c4:4b:b6:75:9a:39:
0f:30:4a:d2:d7:54:5f:f0:28:79:55:2a:81:c4:16:38:6d:0e:
bc:c9:f0:6e:68:98:90:40:1c:91:f2:7e:5a:b5:5a:38:b9:6b:
8b:d0:fe:71:24:b2:33:cc:f6:b2:df:4d:e3:79:b7:c1:c1:13:
9a:f9:78:73:e3:18:a3:56:0f:b6:7d:44:19:83:66:9c:c8:28:
2d:3d:57:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:22:00 2025 by rpki-client