Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/1jJ0f3-vmf008g9D2ktpJxN3Nmw.roa
File: 1jJ0f3-vmf008g9D2ktpJxN3Nmw.roa (raw, json)
Hash identifier: QDVPENU0ePgpq5cvulRcURW0X3oKZrBmpJ5BggqgrSk=
Subject key identifier: D6:32:74:7F:7F:AF:99:FD:34:F2:0F:43:DA:4B:69:27:13:77:36:6C
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 019F
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/1jJ0f3-vmf008g9D2ktpJxN3Nmw.roa
Signing time: Mon 10 Feb 2025 13:42:39 +0000
ROA not before: Mon 10 Feb 2025 13:42:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.208.196.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 415 (0x19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Feb 10 13:42:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D632747F7FAF99FD34F20F43DA4B69271377366C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:85:3b:f2:2d:f2:f9:ba:e8:62:0f:05:0b:
a3:b7:ca:6d:87:0b:5a:27:f3:a6:76:a5:5a:94:ac:
f4:cb:5a:a9:b1:6e:bf:ef:8e:60:b9:32:15:e9:ae:
5d:6b:c9:9f:70:3d:7b:94:a9:11:8b:ce:7d:93:6c:
82:dc:d7:6f:90:73:0c:23:2c:23:e6:fd:1a:2e:1a:
e2:e6:06:e2:71:15:99:38:2c:63:d0:97:95:51:71:
35:1e:6b:73:c3:a7:a5:4e:85:66:3e:e7:1f:46:5e:
3a:61:6a:71:4a:63:2f:55:a5:b7:c3:5b:19:82:9a:
a8:58:97:01:6e:a5:5f:2c:e2:33:9a:97:47:b0:df:
d6:6d:80:91:c9:7e:77:15:cc:0d:2a:58:63:2a:c9:
39:f4:c2:d6:db:48:2f:4b:4e:b7:0a:e2:2c:fe:af:
27:77:7b:ee:0a:1a:b8:4a:e6:11:05:d8:e8:bf:6b:
6b:08:44:4c:6b:cd:77:3e:5f:cc:60:9a:8e:ef:44:
83:5b:a9:39:28:a2:18:1d:1c:12:f5:46:d2:84:f9:
b8:02:2a:e6:1b:14:ea:25:63:07:96:b2:7d:c0:77:
29:24:c4:60:2f:6a:d4:59:2c:e5:1b:ac:b4:29:c2:
1b:13:7a:a9:76:e8:d5:ab:a1:1e:15:02:4e:d6:5a:
15:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:32:74:7F:7F:AF:99:FD:34:F2:0F:43:DA:4B:69:27:13:77:36:6C
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/1jJ0f3-vmf008g9D2ktpJxN3Nmw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.208.196.0/23
Signature Algorithm: sha256WithRSAEncryption
d0:9c:f5:eb:ce:fb:e2:4f:93:ef:21:d2:1e:eb:a4:58:1a:3e:
7f:8f:f0:f7:07:93:b9:32:31:c6:22:35:21:b0:e2:26:09:87:
10:c3:16:24:6a:68:dc:bc:e8:90:d1:e0:ef:c9:35:99:5d:19:
9d:a5:b9:cd:76:b0:b4:fe:f9:4c:37:ae:fd:c8:85:31:aa:29:
92:43:a4:24:af:a9:44:f5:1d:44:5e:05:36:ae:a4:60:e8:6d:
27:09:f8:5d:f7:11:67:3a:5c:8d:51:fe:00:14:73:78:eb:29:
69:72:3f:19:82:f8:f0:97:97:71:40:02:18:12:98:02:21:d0:
f3:46:9c:fc:c2:6f:86:05:87:18:86:60:58:5d:bc:da:fa:db:
00:0f:c8:a6:ff:2d:31:e9:5c:8e:b5:53:0c:1a:81:28:2e:da:
5d:3e:35:ee:4f:ec:2a:2e:96:61:06:35:a3:b7:2d:91:29:0c:
49:2c:5f:98:bc:39:41:24:bc:b7:6b:a9:14:b6:d6:80:1a:5f:
f6:f8:de:fc:55:c2:3e:62:06:f2:a5:72:94:31:a9:3b:08:6b:
19:84:bf:88:6f:0b:07:f3:ab:7b:f8:a1:93:a5:57:f7:0e:3b:
0c:3f:fa:6c:73:f8:b9:bc:8f:5d:3b:86:28:92:81:59:71:aa:
2b:67:d1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:33:32 2025 by rpki-client