Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/Y4f1YZuxq-BGu3rRZrOtu6VRLYM.roa
File: Y4f1YZuxq-BGu3rRZrOtu6VRLYM.roa (raw, json)
Hash identifier: GzvCRzDx4oyxKKkglNrY1SZrdazmAAyZrb8Ec4jdwPw=
Subject key identifier: 63:87:F5:61:9B:B1:AB:E0:46:BB:7A:D1:66:B3:AD:BB:A5:51:2D:83
Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Certificate serial: 019E
Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/Y4f1YZuxq-BGu3rRZrOtu6VRLYM.roa
Signing time: Mon 10 Feb 2025 13:42:39 +0000
ROA not before: Mon 10 Feb 2025 13:42:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.246.218.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414 (0x19e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5
Validity
Not Before: Feb 10 13:42:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6387F5619BB1ABE046BB7AD166B3ADBBA5512D83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:a9:3a:67:99:3e:d1:56:36:86:5d:40:d1:bb:
af:7e:a8:a1:80:13:04:0c:e6:61:ce:46:5e:e3:44:
69:89:53:48:e4:5a:c7:48:cf:6b:0e:b0:e3:9d:fa:
9d:4b:a3:30:17:bd:f3:c8:1e:32:fb:5b:c2:42:36:
b8:54:be:c6:17:7e:d6:c7:ef:cd:e5:4f:48:dd:7f:
1d:6d:27:79:ba:2a:7d:64:5c:9c:3b:16:7c:38:9f:
00:40:7d:cd:77:5f:e6:88:5c:65:b0:78:48:f2:9b:
6c:99:89:1f:75:5d:11:8b:f3:36:c4:9b:8a:ca:27:
90:12:38:2d:94:18:28:6f:b1:14:86:9a:f2:58:8c:
52:85:7b:ee:25:30:14:44:48:34:70:7c:fc:e6:2e:
86:6f:20:55:d0:7b:6f:22:9a:88:c7:eb:a5:d9:a8:
11:7c:a9:51:30:54:16:a0:2d:d6:44:eb:b5:b0:8a:
17:f3:f9:12:ae:c0:dc:43:54:00:0b:a7:9a:47:07:
49:0c:f7:00:86:45:dc:3a:b3:be:a5:eb:f7:94:ba:
a4:25:25:f3:e8:55:7b:63:89:b1:1d:f0:fc:2e:d6:
f7:8a:54:63:7f:b6:ef:d5:ec:57:53:2f:82:0c:3f:
00:07:02:52:79:a8:88:88:a5:a2:44:56:ca:18:de:
8c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:87:F5:61:9B:B1:AB:E0:46:BB:7A:D1:66:B3:AD:BB:A5:51:2D:83
X509v3 Authority Key Identifier:
keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/Y4f1YZuxq-BGu3rRZrOtu6VRLYM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.246.218.0/23
Signature Algorithm: sha256WithRSAEncryption
24:a7:5c:77:86:bc:05:45:e2:97:c2:f1:c0:41:39:f9:89:48:
15:68:ab:c5:86:73:fd:ba:0d:bb:37:d9:f8:e5:d8:6b:de:b1:
18:58:cb:18:6d:cd:ef:8b:f2:53:c5:f2:c4:8c:07:63:4b:de:
36:e0:da:90:86:37:20:44:cc:ee:23:b8:df:87:52:89:30:34:
78:e8:81:66:d8:63:c6:0a:a7:1c:58:7e:56:d8:2e:06:2d:d5:
e5:0c:83:7c:1c:eb:15:1e:3e:fa:dc:64:1e:9f:c0:8d:03:eb:
9d:d0:d6:9c:60:ab:bb:54:a4:bd:17:4e:43:90:09:f3:1b:a4:
5c:1d:93:fa:e6:c1:aa:87:75:2e:17:ae:4d:1c:f6:54:82:b2:
9a:60:fd:f0:cb:f6:d8:4e:b3:9a:61:80:cb:f4:8e:d9:26:b7:
0d:20:80:de:89:42:82:bb:9b:e5:59:23:9d:bb:ac:83:4d:6e:
b4:c3:94:2b:e0:d9:a5:2d:e8:c7:b4:b6:f6:6f:23:89:cb:d5:
12:09:15:ba:95:e9:47:3b:84:54:40:42:90:07:72:68:28:0f:
68:66:a5:fa:66:25:1f:8b:c2:db:30:9b:b0:7d:bc:20:fe:40:
86:d4:b2:c5:60:38:4b:8d:e1:68:31:5b:02:8d:f6:c1:bc:df:
d0:ac:4f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:34:52 2025 by rpki-client