Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINENET/snXoHVNxyxbbb2FmI54tXdCEOVM.roa
File: snXoHVNxyxbbb2FmI54tXdCEOVM.roa (raw, json)
Hash identifier: nCvxkxxCGfAR9x9rQ22yHR4pRi/S/l3zx59hUtX1lJc=
Subject key identifier: B2:75:E8:1D:53:71:CB:16:DB:6F:61:66:23:9E:2D:5D:D0:84:39:53
Certificate issuer: /CN=45542320685E62421C114DBA65B8F5705A774845
Certificate serial: 01A7
Authority key identifier: 45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/snXoHVNxyxbbb2FmI54tXdCEOVM.roa
Signing time: Mon 10 Feb 2025 14:30:15 +0000
ROA not before: Mon 10 Feb 2025 14:30:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150770
IP address blocks: 103.197.158.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 423 (0x1a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45542320685E62421C114DBA65B8F5705A774845
Validity
Not Before: Feb 10 14:30:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B275E81D5371CB16DB6F6166239E2D5DD0843953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:31:c2:41:04:0f:d2:44:11:99:5b:51:29:
35:5d:30:35:65:f4:ac:d8:ec:08:7b:fd:82:2c:5d:
4b:9b:0a:9f:d2:1b:1e:34:83:7e:04:bb:ee:56:d4:
f4:94:3c:d6:fc:c0:02:53:d3:df:54:b6:36:c6:5a:
b0:e9:66:e8:a8:94:c0:32:61:5d:82:e2:d4:04:0b:
d3:be:77:a1:c4:18:c1:e7:e7:21:a8:7d:2e:43:aa:
e1:00:c1:a7:cd:13:00:61:4a:30:22:cb:72:4b:60:
54:56:0c:16:34:3b:b9:53:94:e5:ab:6e:bf:f4:5a:
a7:29:32:f8:d8:42:6d:1e:18:3a:bc:a5:5e:85:08:
75:f2:c2:a7:d3:d2:00:6c:0e:1e:de:6f:a0:7a:1e:
8b:f1:a1:31:a4:15:7d:86:bd:30:bc:e3:ee:9b:17:
83:5f:0b:d5:56:aa:16:15:2f:d1:54:77:19:90:a6:
03:d4:63:82:05:5a:0f:c8:f8:b1:7e:90:b0:bf:56:
97:92:f9:e5:05:6d:db:30:20:ad:4b:4b:17:1c:85:
e4:02:7e:a2:70:cc:a0:d2:66:98:70:78:ca:91:ea:
c6:37:f3:47:9b:d9:a7:ad:56:32:a7:ae:86:cc:bf:
af:bc:83:3f:3c:67:ab:f1:39:e2:95:17:a4:01:d6:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:75:E8:1D:53:71:CB:16:DB:6F:61:66:23:9E:2D:5D:D0:84:39:53
X509v3 Authority Key Identifier:
keyid:45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/snXoHVNxyxbbb2FmI54tXdCEOVM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.158.0/23
Signature Algorithm: sha256WithRSAEncryption
30:be:21:fd:0d:75:2a:78:cd:9f:4e:6f:b1:88:61:54:fc:f2:
42:4c:4b:ca:24:de:c0:1c:41:c4:08:90:ef:3f:bd:4a:36:a0:
a1:fb:51:a5:04:78:92:51:b3:18:2d:07:38:b0:80:ad:ec:9c:
3a:23:c1:1a:5c:2c:4f:87:ba:67:92:db:47:da:04:77:f8:20:
fe:e2:17:c7:3b:09:8a:75:53:cf:79:ed:1f:39:70:51:81:ec:
59:89:81:12:85:06:98:0a:68:b2:43:a7:59:87:66:48:59:a3:
e4:4d:bc:90:ac:06:8d:5c:43:2f:3a:83:2e:de:21:97:9e:0d:
44:f9:68:ae:d2:e9:46:2f:2a:a0:97:5f:6d:1d:95:5c:c5:9c:
23:ff:6b:8c:04:b9:30:3b:f2:d8:94:fa:6b:47:8b:2f:13:cd:
20:7c:fb:af:65:5a:47:9e:07:ec:31:4c:51:b2:9b:c0:71:93:
b0:e0:66:a4:c0:e1:db:8d:e4:99:5f:8a:02:9a:39:06:63:ef:
37:9e:87:6c:85:8f:b6:81:3f:dc:69:05:ec:13:da:d9:22:23:
1a:3e:4b:92:3a:92:ae:3a:40:3c:2b:09:ba:f4:98:4f:18:02:
63:f4:87:37:55:89:09:10:fc:bb:19:69:84:a4:69:82:36:53:
84:9d:94:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 23:46:22 2025 by rpki-client