Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/x7E2fEp_IAPpBAaNxt6Q11GeStc.roa
File: x7E2fEp_IAPpBAaNxt6Q11GeStc.roa (raw, json)
Hash identifier: JQWLf010NcX37vqya3X87j8Bt3Tfh5Nan3XV2kmK/Sw=
Subject key identifier: C7:B1:36:7C:4A:7F:20:03:E9:04:06:8D:C6:DE:90:D7:51:9E:4A:D7
Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Certificate serial: 0236
Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/x7E2fEp_IAPpBAaNxt6Q11GeStc.roa
Signing time: Mon 26 Aug 2024 05:25:47 +0000
ROA not before: Mon 26 Aug 2024 05:25:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 103.186.186.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 566 (0x236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Validity
Not Before: Aug 26 05:25:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C7B1367C4A7F2003E904068DC6DE90D7519E4AD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:04:b6:ec:33:e8:26:aa:a9:3e:28:e1:d9:55:
81:c2:72:39:75:51:18:11:d7:af:08:49:44:1c:27:
14:03:df:34:14:bb:f5:da:d4:32:39:30:cf:f7:c1:
ce:2b:a9:c7:5c:73:0a:02:0c:5a:0e:3a:e7:ed:3b:
26:41:76:a3:c7:0a:94:e5:0b:23:4c:18:bc:de:cf:
77:c3:7d:73:66:e4:04:53:d4:09:bb:c1:b8:59:e7:
5f:96:6f:fd:91:04:32:ac:a7:89:c7:51:f7:35:22:
ef:a7:4e:41:c6:51:58:2f:ff:f2:b0:97:31:c5:4a:
a1:4c:29:83:6c:87:a6:d2:6b:38:db:9a:36:a8:22:
3e:30:c2:28:05:bd:33:a4:bd:94:fa:a5:3b:eb:27:
8b:10:37:f7:be:b2:96:cf:60:4b:8b:8c:8d:6c:e8:
d3:68:e9:22:9b:d2:88:3f:b1:ac:26:11:d0:ae:8b:
53:ec:91:ba:4c:cf:32:54:c2:34:a1:8a:47:9c:b4:
7f:73:62:01:39:09:7f:94:0e:49:3d:dc:e2:43:8b:
89:4d:29:92:2d:e0:8d:7a:45:dc:12:46:9d:57:c8:
a4:c8:77:1c:cb:50:50:c9:2e:f1:43:61:29:70:c6:
3a:49:cb:dc:6a:f2:db:26:e8:1e:9b:75:39:46:41:
91:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B1:36:7C:4A:7F:20:03:E9:04:06:8D:C6:DE:90:D7:51:9E:4A:D7
X509v3 Authority Key Identifier:
keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/x7E2fEp_IAPpBAaNxt6Q11GeStc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.186.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:77:94:0d:b9:a7:a2:92:0b:21:16:45:7e:bd:4e:77:e1:c7:
38:46:b1:d0:2a:6f:4a:f4:d3:98:ad:d8:94:57:9c:24:5f:5d:
30:2d:3d:90:73:26:8e:96:b6:aa:3b:eb:0e:f4:fb:a2:3f:62:
0b:cf:17:5a:9f:00:ea:41:16:cb:6e:09:84:82:13:93:3d:01:
a6:3f:dc:c5:df:fa:80:08:aa:70:25:1b:e0:6a:8e:e0:15:9e:
84:c1:3e:57:ba:95:db:e9:b2:8c:ce:68:7c:7c:4e:74:6b:e1:
0b:f5:89:37:3a:35:4e:be:fe:4d:98:77:0b:78:c9:64:e4:fc:
4c:d7:46:0f:5a:81:da:e1:90:46:75:8b:bc:50:e6:ca:0d:9c:
60:60:d3:d1:6d:2f:95:2c:6f:2c:a1:84:aa:78:99:1c:8e:c1:
ac:36:a5:86:36:ec:91:91:59:e4:84:79:f5:e7:84:9e:9c:3c:
52:9b:aa:f3:e8:3f:f6:ae:90:d6:ca:74:6e:28:0c:14:fb:fc:
49:81:a8:db:4b:bf:d0:1d:3b:56:ba:21:82:0f:e1:33:5a:6e:
d9:b3:05:3e:f4:70:34:9f:89:f2:82:8c:63:70:c2:4d:c3:96:
d0:6c:a8:f9:4f:07:8d:c2:8a:2e:30:05:09:1c:3c:d5:d0:91:
d6:12:ad:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:42:50 2025 by rpki-client