Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/RUu4Q3aKc1KdQks8SdzV7uki5Bs.roa
File: RUu4Q3aKc1KdQks8SdzV7uki5Bs.roa (raw, json)
Hash identifier: 9o3LUV68+QLWith3ZrVUmLLQnsnLOahbc2/iJHsNFB4=
Subject key identifier: 45:4B:B8:43:76:8A:73:52:9D:42:4B:3C:49:DC:D5:EE:E9:22:E4:1B
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0C8E
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/RUu4Q3aKc1KdQks8SdzV7uki5Bs.roa
Signing time: Mon 10 Feb 2025 14:06:20 +0000
ROA not before: Mon 10 Feb 2025 14:06:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 48024
IP address blocks: 103.122.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3214 (0xc8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Feb 10 14:06:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=454BB843768A73529D424B3C49DCD5EEE922E41B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:54:d8:8c:e4:bc:a2:8b:fa:53:2e:9b:57:c0:
29:51:d9:3b:ae:64:c6:c7:27:6b:d0:d3:d9:e7:82:
0b:7a:34:b8:5e:3a:9e:5a:f1:25:44:ee:17:92:a6:
90:f0:ee:03:70:95:5b:d7:32:f9:87:c1:61:5a:43:
75:84:81:3e:d2:8e:ce:26:2b:04:6f:9d:58:e7:bd:
06:45:35:78:d3:3e:83:32:f0:0e:f8:10:a1:79:4a:
0b:31:84:ca:4c:24:05:ea:f1:08:7e:04:ff:71:b2:
c2:dc:5c:f9:68:21:30:b9:64:8e:6c:8f:b0:88:94:
f8:31:b9:a9:7e:10:3f:60:6c:1b:50:61:61:d3:1b:
51:24:a8:4c:2e:a0:06:33:a1:b0:44:96:1b:c9:e4:
77:31:50:ab:0b:02:2c:7b:c3:d9:fa:e8:0a:3c:58:
d6:cd:0e:55:6d:ad:06:a0:c6:16:82:05:f6:e0:f1:
86:2c:b9:52:a0:a4:7f:13:46:84:40:13:72:9c:5f:
70:ec:a0:3d:0a:aa:52:03:b8:60:f5:cf:b3:cd:78:
0d:dc:ac:52:80:26:01:c4:f5:a8:44:74:9b:e0:8e:
2e:7d:4a:61:89:99:75:85:e8:16:3f:e5:33:e7:29:
b7:74:5f:6c:17:a8:41:97:ef:c2:dd:1c:53:bc:9c:
a3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4B:B8:43:76:8A:73:52:9D:42:4B:3C:49:DC:D5:EE:E9:22:E4:1B
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/RUu4Q3aKc1KdQks8SdzV7uki5Bs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.22.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:0c:94:23:29:70:57:b8:16:aa:71:3d:35:9f:d1:e3:07:0c:
ec:08:17:4d:ab:8d:61:c5:6d:b1:64:a1:8d:16:9c:95:1c:92:
bb:f3:b6:7e:c3:fa:14:85:5a:a4:cc:28:48:6f:b0:fa:a0:80:
03:e5:09:95:b0:da:f6:04:ae:3e:58:b6:66:94:5c:86:a3:16:
5e:fc:01:96:ce:0b:fe:dc:8a:58:3f:e7:e3:3c:4a:8f:98:bb:
d5:e1:5f:51:19:6c:db:32:97:39:f7:81:42:2a:57:98:b6:25:
ab:e8:2b:ec:58:d6:04:26:0d:6d:60:e4:51:b2:c3:f9:18:8f:
c0:30:d2:33:81:13:c9:bf:e8:2e:14:ce:e4:4c:20:90:39:96:
b0:a5:d2:ba:df:b3:e5:e4:f6:ca:8d:c5:d2:93:d9:bb:4d:3d:
40:29:ca:7f:d2:ec:b2:e0:1a:f9:5c:3c:bc:0b:3e:75:5a:92:
6a:d8:28:17:09:bd:49:f5:40:e8:c7:30:d5:d4:ca:28:8d:ba:
9e:78:31:d9:cc:2d:61:e7:54:74:48:98:91:99:96:8a:7f:48:
82:d9:ce:20:5c:18:ce:0b:7d:5a:db:a6:ea:f1:a2:17:5a:a0:
a2:d1:bc:73:37:8e:91:b9:dd:9c:47:7f:51:37:e9:07:ce:8b:
31:47:d7:3e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:35 2025 by rpki-client