Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ayHkt3mtTWx33a2gGfdwSuNPqE0.roa
File: ayHkt3mtTWx33a2gGfdwSuNPqE0.roa (raw, json)
Hash identifier: AeAKx32NXK9HdEt+tGyHf67pkPv9djpMZd3GDevnyUk=
Subject key identifier: 6B:21:E4:B7:79:AD:4D:6C:77:DD:AD:A0:19:F7:70:4A:E3:4F:A8:4D
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0CD5
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ayHkt3mtTWx33a2gGfdwSuNPqE0.roa
Signing time: Mon 26 Aug 2024 05:26:16 +0000
ROA not before: Mon 26 Aug 2024 05:26:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3285 (0xcd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 26 05:26:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B21E4B779AD4D6C77DDADA019F7704AE34FA84D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5e:1d:da:80:3a:ca:11:4b:21:15:e6:a8:06:
27:29:30:50:ca:0d:9a:54:8b:75:d0:d6:7a:9c:23:
1a:a3:18:29:63:b3:f5:d0:56:51:50:b4:51:c7:ef:
f7:a1:c9:6f:10:5a:98:b5:38:29:56:95:48:35:1f:
86:b0:75:dd:b1:db:b9:1d:4b:f1:b1:27:af:bf:26:
80:f7:b5:6d:5a:b3:c5:54:e5:4b:26:30:ad:e4:31:
5e:19:ae:74:b1:d9:c5:f3:21:a4:6b:75:bd:d7:a6:
27:05:c9:98:07:a2:5e:da:8b:33:4c:56:57:e7:0f:
c4:18:e3:b4:f2:8f:91:52:7e:f5:d9:8b:e2:83:20:
59:2c:f1:a1:42:cb:ae:c8:9d:7b:88:73:1c:f1:7b:
bd:5c:8f:34:e8:11:35:d5:00:73:b2:4a:2e:ac:7d:
19:8b:85:60:dd:67:58:e2:93:b1:d5:00:e4:13:9e:
7b:23:cb:44:fe:63:33:d9:48:e1:95:0a:69:f5:ee:
cc:b1:fb:b5:4e:87:ce:f2:a9:33:77:82:02:23:76:
76:9b:2c:b3:ae:03:ad:b7:05:39:be:21:c8:e7:df:
b6:f0:b1:29:b8:e5:c7:51:83:2e:2c:26:84:06:2f:
b7:27:79:b5:8e:4f:2e:74:3e:12:56:6d:ee:1a:65:
85:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:21:E4:B7:79:AD:4D:6C:77:DD:AD:A0:19:F7:70:4A:E3:4F:A8:4D
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ayHkt3mtTWx33a2gGfdwSuNPqE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:a3:b4:10:9f:ae:9e:c3:97:a2:6e:91:b1:40:3a:ee:02:34:
2d:6a:00:60:6d:d1:07:6f:dc:17:e8:8b:2f:0e:69:38:e0:b3:
0e:44:f8:43:25:f5:a0:3e:32:5b:34:94:9f:79:a9:ab:bb:2f:
51:d9:53:2d:de:23:ae:16:c8:bb:6f:af:8e:de:4b:18:6b:79:
92:fc:78:9e:05:52:28:c1:89:24:17:25:71:3e:07:7a:7a:4d:
07:55:53:d2:1c:b3:34:3f:38:21:6e:e6:08:67:7d:29:cc:8c:
a2:28:22:65:c5:39:e1:7c:a4:27:19:67:02:f7:45:17:99:ba:
3b:de:5a:73:3d:f8:cd:f0:57:d3:e5:eb:3a:3b:3b:21:15:07:
7d:bf:3b:ef:f9:b5:3f:16:24:be:a5:ba:19:c0:c7:80:c6:b6:
e8:83:0d:28:7d:3f:90:17:20:9a:75:ad:55:16:5b:37:50:7c:
52:6b:45:45:62:61:0c:30:11:32:55:03:f8:5c:2d:98:98:4f:
eb:f8:bb:0a:1c:bb:e1:ef:b9:32:f0:54:ef:48:26:4d:8e:14:
32:41:22:34:c2:23:18:d3:65:7d:1a:a1:7f:95:73:c5:c5:2e:
45:d6:ba:53:19:e9:33:5e:32:59:43:fc:a5:e2:5e:89:f0:31:
bd:b8:75:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:48:04 2025 by rpki-client