Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/yUuFhed10OqZwFFYZ5WbUYyE0qY.roa
File: yUuFhed10OqZwFFYZ5WbUYyE0qY.roa (raw, json)
Hash identifier: lWJTIEBRYEcZUc0MiyZh9daYcCAlu10DFSxfbHnUeCk=
Subject key identifier: C9:4B:85:85:E7:75:D0:EA:99:C0:51:58:67:95:9B:51:8C:84:D2:A6
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1193
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/yUuFhed10OqZwFFYZ5WbUYyE0qY.roa
Signing time: Fri 10 Mar 2023 01:06:38 +0000
ROA not before: Fri 10 Mar 2023 01:06:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 202525
IP address blocks: 103.123.217.0/24 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4499 (0x1193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Mar 10 01:06:38 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C94B8585E775D0EA99C0515867959B518C84D2A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c8:e0:64:b3:c4:72:41:8f:41:c1:8a:75:45:
7a:5f:89:83:64:22:13:d1:d6:32:80:2c:c5:55:66:
cd:39:9f:21:1a:b1:65:13:93:3a:05:4a:9e:45:e4:
0d:8a:1a:33:23:48:0e:cb:d6:6c:59:46:25:50:04:
cd:60:b3:18:3b:aa:ce:e2:75:32:5b:07:0e:3d:b4:
df:fb:3d:6a:bc:4f:f3:75:76:be:a2:48:22:1b:69:
a7:bc:e0:58:a2:1a:34:3c:76:e8:ce:61:52:0a:08:
99:b5:e2:4f:cd:c5:9b:96:f8:c9:e7:19:46:8f:dc:
eb:af:29:4b:16:e0:87:ad:47:e2:2c:74:73:bd:86:
9d:a0:14:58:30:53:3a:1f:07:3e:67:24:6f:37:be:
a4:7f:f1:c1:b8:1e:6f:90:b2:03:f6:3e:a2:47:9b:
fe:ec:11:0b:0c:81:88:a1:b9:3a:69:f3:b4:54:77:
3e:a7:81:a3:55:34:0a:a8:a3:3e:af:6c:e6:12:d0:
64:07:a1:ff:bd:42:0b:5d:be:36:22:c4:b5:44:d3:
8e:6d:bd:24:d2:fa:cb:87:99:79:ad:78:71:7c:ee:
ce:f8:45:cf:f1:8c:a6:df:e8:b2:4e:f7:f6:79:12:
1a:3a:82:84:44:ad:01:8a:d1:81:ba:27:c6:df:1e:
4f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:4B:85:85:E7:75:D0:EA:99:C0:51:58:67:95:9B:51:8C:84:D2:A6
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/yUuFhed10OqZwFFYZ5WbUYyE0qY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:39:a2:28:56:65:45:0f:9d:f5:39:ee:39:a6:8f:3b:b1:a7:
aa:06:36:eb:01:5b:19:ca:16:0a:14:a9:b5:19:14:57:3e:ed:
25:37:bf:8b:4b:f2:96:31:48:c9:0f:d5:78:f5:cb:ea:bc:96:
51:b6:e9:51:49:dc:31:ce:9b:ed:e4:3b:9f:14:ef:59:17:9e:
70:fe:1f:9f:14:84:9a:64:df:72:da:3c:60:74:f5:1c:a0:c9:
09:67:b9:b6:88:53:2a:b7:31:a1:11:25:ab:ae:3f:ee:c0:80:
30:d7:38:54:99:ff:a5:76:9d:f5:ef:83:44:79:b7:5f:96:f7:
14:d9:40:40:a1:f8:a3:85:39:48:ea:52:c1:bb:f2:ac:fc:a7:
58:f2:6f:ad:07:5c:cf:18:07:19:3f:31:99:2f:91:3c:1a:f7:
71:9b:1a:41:63:af:39:82:23:58:a5:05:72:9f:c2:3a:af:d0:
5d:f4:ba:8f:c9:e5:1b:86:c6:7b:0f:18:33:1c:77:4b:05:2d:
ff:00:02:71:5f:86:e0:1d:33:f8:ac:ab:3d:f8:7b:a0:3a:bb:
08:2b:ed:65:27:0f:b7:b9:67:e2:c7:ec:ef:f7:ed:64:10:cb:
e7:3a:c7:de:0a:b3:ab:1b:f5:f7:6f:77:bf:dc:6c:7d:5c:d5:
7d:2c:a5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:39 2025 by rpki-client