Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/Q8w9Ss3IQer0Ms8AKQq-3fEteNQ.roa
File: Q8w9Ss3IQer0Ms8AKQq-3fEteNQ.roa (raw, json)
Hash identifier: DycGbVfuIq5w81WBYtLs0mnJCzqVUk6E0Hc3toLyqjw=
Subject key identifier: 43:CC:3D:4A:CD:C8:41:EA:F4:32:CF:00:29:0A:BE:DD:F1:2D:78:D4
Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial: 11B5
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/Q8w9Ss3IQer0Ms8AKQq-3fEteNQ.roa
Signing time: Mon 10 Feb 2025 14:27:10 +0000
ROA not before: Mon 10 Feb 2025 14:27:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 5065
IP address blocks: 103.127.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4533 (0x11b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Validity
Not Before: Feb 10 14:27:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=43CC3D4ACDC841EAF432CF00290ABEDDF12D78D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:15:c0:7b:b3:b9:48:98:b4:00:e8:da:3b:f3:
4e:51:e4:d4:61:52:a6:27:30:38:42:db:5a:77:46:
df:9d:5b:e7:41:3d:d1:18:91:2d:4a:24:5c:47:0e:
02:0e:58:d9:9b:52:98:0e:51:e5:0c:73:71:07:0b:
e1:36:38:bb:77:67:c3:78:ea:e3:30:6b:d5:63:45:
2c:43:6f:1f:89:94:f4:07:b6:a1:61:63:29:67:65:
c7:ac:ac:04:b3:c5:1c:62:06:69:40:f1:04:4e:a7:
aa:fe:81:7c:59:a3:c4:26:05:17:02:57:ee:ea:6b:
30:f4:bd:a7:79:a1:6a:a6:7d:d9:3f:a1:d7:7b:4f:
15:9e:5c:18:cd:09:c3:a9:74:c1:06:40:ee:38:d7:
42:fa:c5:22:b4:b4:c7:f9:3f:40:c2:3c:03:4f:50:
41:47:f6:f3:2e:9c:0e:a0:84:45:c0:56:c7:27:26:
07:2c:45:08:30:71:0d:3a:8f:29:65:fd:f6:c4:f6:
82:00:35:d0:5b:59:bb:5a:74:dd:09:98:4a:ab:b6:
54:af:71:ab:82:ec:33:ce:43:6c:2d:8b:58:5e:e4:
99:fd:15:3e:20:02:e5:f0:34:b0:6c:29:f0:0c:d1:
7d:9f:20:85:d4:be:f2:e2:7b:c8:c1:1b:d7:66:da:
24:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CC:3D:4A:CD:C8:41:EA:F4:32:CF:00:29:0A:BE:DD:F1:2D:78:D4
X509v3 Authority Key Identifier:
keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/Q8w9Ss3IQer0Ms8AKQq-3fEteNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.239.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:1b:98:40:a7:32:c3:4a:e1:7a:55:ba:bd:ff:5a:a7:32:49:
12:2f:b6:45:81:49:6d:a0:4a:05:b6:11:9c:98:92:7c:24:43:
52:d8:d7:1c:c0:ee:6d:30:79:27:2c:65:6e:f5:24:ff:6a:d9:
ef:a0:a2:f9:d0:3e:84:74:f4:c3:89:bd:5b:01:6c:6b:d1:a6:
49:f6:a3:dc:ce:8b:1f:16:c3:b4:02:3a:80:e7:5c:0d:04:d9:
d2:cd:65:fd:71:2a:cd:15:da:30:b3:54:52:27:6a:f6:66:93:
fe:be:71:28:05:67:b7:a1:5e:8c:43:37:0b:05:9b:df:2d:f4:
1d:11:e6:61:8e:3f:69:4d:4d:99:5b:f0:67:4c:bb:16:4d:7b:
31:47:7e:4a:1f:63:f6:16:af:65:ca:77:11:f1:d9:44:cd:42:
68:19:2a:e4:e3:bd:a5:34:45:4d:e6:6c:dd:e4:fd:69:f8:ff:
ec:ca:dd:e3:28:ab:ee:bd:67:8b:51:dd:34:77:bc:b7:cb:a7:
65:20:8d:8a:b2:4e:ff:fd:bc:dc:1d:8e:f3:74:a5:a2:1d:75:
10:f0:a5:80:04:3b:8f:41:ed:6a:c0:7a:3f:54:3b:13:4e:ef:
30:0d:ef:1a:1a:84:46:65:f2:e1:4e:12:8d:65:ac:28:b8:d0:
cb:d5:ce:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:32:43 2025 by rpki-client