Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/m7l48i_kBH5AdSK7Uh_NIbky8xo.roa
File: m7l48i_kBH5AdSK7Uh_NIbky8xo.roa (raw, json)
Hash identifier: y1TR6xKwnL46CZRIeuoC4rHx5hPnrTpLbRcYYwLu68g=
Subject key identifier: 9B:B9:78:F2:2F:E4:04:7E:40:75:22:BB:52:1F:CD:21:B9:32:F3:1A
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1362
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/m7l48i_kBH5AdSK7Uh_NIbky8xo.roa
Signing time: Mon 26 Aug 2024 05:25:31 +0000
ROA not before: Mon 26 Aug 2024 05:25:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 103.123.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4962 (0x1362)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Aug 26 05:25:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9BB978F22FE4047E407522BB521FCD21B932F31A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:be:7a:56:fa:cd:84:f5:b1:b3:00:94:a4:0b:
8e:9e:a7:cb:1f:90:5d:1c:06:0b:40:f3:21:4d:c6:
e7:7d:83:24:66:7f:51:c7:a1:d8:4f:60:7a:d2:d6:
76:db:c7:b4:a0:2d:f4:cb:1b:cf:3d:6e:63:fe:8f:
4e:d1:b4:fb:2c:6e:52:63:a6:b4:80:ae:34:a4:ea:
9a:53:fb:98:06:1d:4f:9c:4e:47:09:e6:6d:ee:5e:
1c:c5:5c:42:80:31:04:39:5f:69:c3:b3:fb:d5:8c:
4c:4c:a6:19:75:52:38:09:1a:8d:90:cc:19:9f:5d:
df:13:3d:8c:02:b9:84:74:05:36:d2:43:d9:b9:42:
4d:2e:b8:92:1f:b3:aa:fe:b1:42:9d:68:2f:42:f8:
58:b4:9e:39:78:9b:ca:d2:78:2e:8b:ef:ac:a5:d7:
02:d2:21:f8:16:e8:cf:53:dc:f8:0b:f0:a8:14:aa:
5c:41:89:43:80:f3:ba:c7:dc:7e:cc:b1:e5:16:25:
10:32:f5:20:eb:14:f3:a0:52:74:8f:8e:d3:4a:6f:
5c:7a:15:47:4a:bf:93:ae:6a:f9:5a:e0:7f:23:6f:
af:de:69:fe:1c:ae:16:61:ca:b2:70:72:98:65:57:
fc:a4:bc:ed:91:ff:68:33:e6:8e:7a:16:73:35:98:
30:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B9:78:F2:2F:E4:04:7E:40:75:22:BB:52:1F:CD:21:B9:32:F3:1A
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/m7l48i_kBH5AdSK7Uh_NIbky8xo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:74:d1:72:4b:b2:7d:f3:4e:75:c5:25:03:04:5f:0a:88:5e:
c9:fd:71:46:08:53:ea:2d:67:7f:4d:82:7c:6b:a2:8a:39:fc:
a9:eb:0f:f6:7d:cf:b0:c9:00:5b:40:96:15:aa:9e:d4:10:be:
dd:a2:ad:a1:65:1a:b1:79:f4:a7:97:b4:3a:d9:69:8b:b9:b5:
f5:52:c4:54:56:ef:ee:8c:9e:c2:15:20:39:b5:01:98:5b:ca:
36:4a:82:a6:51:c3:66:89:ee:9f:7b:92:72:3c:16:40:05:2f:
f4:42:95:24:13:55:52:49:e6:d5:ce:7b:a0:3a:bd:b2:8d:d7:
25:ba:73:e2:eb:48:ec:e6:70:ec:c1:24:cc:3e:c2:82:a9:fa:
f2:ea:0a:14:0a:a3:f7:ba:0f:82:62:8f:e9:5f:1e:fd:85:f3:
29:4e:63:b5:5e:df:35:f0:58:6c:02:bb:45:72:45:3b:e6:e3:
d4:9b:9c:07:f6:19:3d:dc:df:95:b8:8a:49:44:74:3a:5e:c0:
8a:d7:f3:51:dd:69:72:be:bd:ad:1d:98:ad:8d:07:68:8e:a8:
7d:71:0f:e9:b2:0b:39:2c:22:93:b4:b7:5c:71:a0:05:db:59:
82:18:b3:37:da:6d:e1:25:e5:0b:e7:8a:f8:36:98:99:2d:de:
16:d8:61:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:54:01 2025 by rpki-client