Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/j63G7POC5f8TZ7DfIg28fOwYJQw.roa
File: j63G7POC5f8TZ7DfIg28fOwYJQw.roa (raw, json)
Hash identifier: 5fmHXghiroyUZIB9LnDnNt8HH0yi/q/MQR94js1Tme0=
Subject key identifier: 8F:AD:C6:EC:F3:82:E5:FF:13:67:B0:DF:22:0D:BC:7C:EC:18:25:0C
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0C87
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/j63G7POC5f8TZ7DfIg28fOwYJQw.roa
Signing time: Mon 10 Feb 2025 14:06:18 +0000
ROA not before: Mon 10 Feb 2025 14:06:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18464
IP address blocks: 103.122.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3207 (0xc87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Feb 10 14:06:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8FADC6ECF382E5FF1367B0DF220DBC7CEC18250C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:d2:ab:ea:e0:1c:2d:ec:e0:5e:07:82:12:
d0:48:10:08:9a:ea:35:a6:d1:1b:7e:e8:5e:69:3e:
ed:97:f9:b2:e9:d4:e2:64:34:39:7a:e1:ea:4a:45:
84:70:d1:5e:21:dd:a2:4c:84:6c:f3:01:48:18:6c:
46:fd:3e:82:6c:ac:e4:1f:94:fc:95:0d:68:ec:4d:
b4:c5:bc:56:24:2d:e9:ee:4a:67:f6:6d:91:b0:90:
fb:d9:f8:23:95:ab:a3:08:d8:f6:96:c9:e1:f1:14:
5f:d9:02:cb:d6:2f:a3:13:15:5b:fd:31:e9:c2:da:
b7:3f:06:81:6f:bc:35:dc:2f:2b:e5:6d:3e:01:44:
7d:89:f0:a5:9e:d3:6d:2f:2b:20:89:bb:ea:ca:f8:
0c:3c:de:b2:0e:98:14:1c:6f:82:b9:a2:49:37:ee:
74:8f:1b:99:3e:4e:e7:0c:95:69:09:d5:69:bb:d0:
df:9f:85:a6:d2:6a:0e:27:e0:36:d0:79:11:b4:b0:
7a:24:ec:22:a1:e7:b1:5c:69:dc:36:50:9f:5b:ce:
48:5a:84:bd:79:da:ff:df:7c:3c:90:66:26:f8:18:
d6:9a:47:3c:61:a9:ee:69:b6:3e:fc:72:e9:75:60:
db:c3:bc:88:25:33:e1:87:1d:61:c3:a1:61:e0:96:
d7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AD:C6:EC:F3:82:E5:FF:13:67:B0:DF:22:0D:BC:7C:EC:18:25:0C
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/j63G7POC5f8TZ7DfIg28fOwYJQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.23.0/24
Signature Algorithm: sha256WithRSAEncryption
63:66:7e:7d:60:57:43:d5:c8:65:48:b5:f2:47:77:e1:a0:7d:
ea:b5:e2:d6:01:f4:33:ff:12:59:5b:50:c4:2d:06:d9:f3:82:
cc:d3:4d:29:73:89:a3:19:0a:f3:e3:13:69:b7:6d:f8:b3:31:
dc:cd:16:bc:6b:97:26:a3:53:48:32:ff:1e:20:c1:18:56:e1:
9a:cb:21:ad:e6:5b:c5:5b:89:6b:f7:f8:06:f6:f8:be:b2:6a:
20:db:2c:9f:14:69:41:72:73:11:00:f5:25:75:e6:d7:a9:56:
a9:e7:3b:c5:bf:c9:99:fe:50:23:e6:0a:00:61:29:9d:47:d2:
d3:f1:f6:c8:98:57:a5:9f:1b:1b:6c:29:b2:24:ee:b7:bd:b1:
0b:6d:9d:4b:34:78:c5:3a:f8:83:54:d3:b4:a3:35:8d:58:ae:
5e:62:8f:61:27:02:e3:e8:36:12:71:8f:06:62:d0:63:b6:9e:
96:ee:7b:ce:a4:1d:70:ab:cb:ce:3a:fa:3c:79:03:30:e7:92:
0e:90:d7:ca:8c:a3:c6:52:7e:d8:09:a9:ba:24:fc:1f:2c:54:
72:ae:4a:7d:30:d3:6e:ed:ca:a0:6e:a1:6e:2b:e3:1a:0c:27:
15:7a:01:6b:d5:5e:eb:ba:46:6b:c9:47:6f:01:70:7a:03:76:
2f:b0:3e:73
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:21 2025 by rpki-client