Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/RnpQ61SrmOEucUuX-ZVrz0Wr7JA.roa
File: RnpQ61SrmOEucUuX-ZVrz0Wr7JA.roa (raw, json)
Hash identifier: LQ/Nm2hu+6qUZlQydiXDuDY8G1AZjxvS8YJ1E360SMo=
Subject key identifier: 46:7A:50:EB:54:AB:98:E1:2E:71:4B:97:F9:95:6B:CF:45:AB:EC:90
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1357
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/RnpQ61SrmOEucUuX-ZVrz0Wr7JA.roa
Signing time: Mon 26 Aug 2024 05:25:29 +0000
ROA not before: Mon 26 Aug 2024 05:25:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 103.123.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4951 (0x1357)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Aug 26 05:25:29 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=467A50EB54AB98E12E714B97F9956BCF45ABEC90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:9c:94:af:b5:05:c2:b5:8c:03:6f:18:06:
ea:d4:cb:9f:02:5a:22:f8:9f:34:f6:2c:0d:55:32:
e6:fb:2f:d1:bd:a2:06:04:f4:82:a8:03:cb:50:97:
90:a3:65:f8:cd:60:f2:c2:d6:6e:8d:d8:1d:cf:bc:
5e:8c:ee:e7:df:34:b3:f3:cc:7d:3d:5a:d2:4d:28:
a4:fc:a6:21:88:d5:19:b4:56:d4:3f:82:5d:9d:80:
b9:30:06:b4:75:7a:a5:f3:70:ca:dd:81:68:68:30:
73:86:4e:6d:11:e0:2f:03:e6:77:0d:41:fa:ff:8f:
41:05:ee:d0:d6:32:59:6d:26:93:19:2f:df:5f:eb:
72:c9:6b:a0:04:4c:4b:df:69:22:62:5a:67:48:5f:
44:91:ef:0b:5a:0c:c6:4a:2e:5c:1b:24:87:cb:e1:
d3:0e:c3:9e:6c:cb:76:5f:08:19:a7:8b:9a:71:9f:
09:84:d5:b6:a8:fa:2e:14:ab:54:17:f9:4e:7c:a8:
c9:5a:bb:2b:1e:59:5f:77:a6:d5:a7:c9:7c:82:f4:
41:c2:1b:5f:30:c0:63:ae:8d:97:ad:3f:94:2b:70:
ee:bd:75:ef:e8:41:71:18:d2:1b:f8:88:14:13:f8:
b6:28:af:c3:bf:68:d9:6a:14:32:4e:11:a5:a4:e0:
d8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:7A:50:EB:54:AB:98:E1:2E:71:4B:97:F9:95:6B:CF:45:AB:EC:90
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/RnpQ61SrmOEucUuX-ZVrz0Wr7JA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
41:8a:fc:83:ba:fa:f4:58:6e:17:1e:96:32:09:7b:e5:29:8d:
54:f1:be:79:07:e3:ee:cf:73:8a:d3:49:53:a5:80:6e:ed:1a:
a4:e0:4c:cd:87:3c:80:84:8a:d9:17:f3:cc:9a:41:50:7a:9e:
38:c7:b4:b6:b9:c4:cb:e2:5f:bf:22:4a:1b:60:e9:d7:1c:c8:
0c:81:6e:e8:56:97:ab:44:10:31:81:38:27:d8:13:b6:4f:f5:
02:42:a9:a8:6d:12:20:23:4f:5a:bd:d3:9a:4a:ca:13:b0:07:
57:99:29:03:79:5f:e7:6b:c1:0e:c9:c3:62:e4:c2:3d:5e:0c:
28:1f:db:d6:af:09:69:6f:bb:46:8a:f8:98:ae:21:c6:87:cb:
be:f1:a1:b0:63:1b:3b:31:59:c6:71:a8:fc:1f:ac:c2:6a:ec:
61:f0:78:e7:90:0e:47:a0:6a:c6:f3:f9:e3:40:f6:da:58:84:
87:73:29:1a:3b:05:21:49:d6:37:49:7c:ba:c6:7c:f7:d8:bc:
84:40:38:bf:7d:69:68:40:ff:97:a8:66:5d:0f:04:26:e9:39:
ee:28:2a:0e:42:83:ee:51:f5:67:0e:98:37:68:3c:00:26:91:
ad:a8:0a:e5:f3:7e:c0:c3:5b:79:8a:c9:8b:4d:a5:ac:6d:7a:
b6:70:98:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:40:26 2025 by rpki-client