Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/h9Iu2YZ1XRIHsFJ---IRlmxsoLE.roa
File: h9Iu2YZ1XRIHsFJ---IRlmxsoLE.roa (raw, json)
Hash identifier: KhRW0MCAw1eqhoq29fL91VDVrYI/4gRWcjt1IUVkVYI=
Subject key identifier: 87:D2:2E:D9:86:75:5D:12:07:B0:52:7E:FB:E2:11:96:6C:6C:A0:B1
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 06B6
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/h9Iu2YZ1XRIHsFJ---IRlmxsoLE.roa
Signing time: Mon 10 Feb 2025 14:09:40 +0000
ROA not before: Mon 10 Feb 2025 14:09:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1718 (0x6b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 10 14:09:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=87D22ED986755D1207B0527EFBE211966C6CA0B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a4:08:85:29:b5:b9:8d:83:43:20:f1:e3:5e:
67:8a:c6:1e:95:79:6f:99:1e:03:02:5a:52:cb:94:
a6:c4:7e:b5:14:96:cb:35:4a:ea:ec:14:cc:2d:5d:
68:15:f5:72:7e:40:f2:5a:7a:3f:6d:8e:85:03:1c:
78:44:d2:50:49:35:a3:12:9a:cb:94:9b:25:fd:23:
dd:f7:0f:10:30:c0:2b:3e:ea:e1:14:d6:d9:50:85:
8f:01:8a:89:33:28:6b:02:b0:be:68:cb:11:a9:31:
10:ab:af:6d:44:b0:ac:60:a9:d6:70:da:07:7f:08:
e6:6e:13:83:fc:bb:70:3b:5c:15:6a:73:83:f2:38:
8d:cc:b8:ff:f6:4e:37:3c:fc:ac:18:7d:b6:17:43:
2c:05:31:0c:7d:e0:2e:21:55:5a:6d:8a:c8:0c:8c:
10:fd:db:f1:ad:a5:20:c8:6b:61:0d:6d:aa:5d:1c:
08:77:bf:5e:1f:fa:ad:56:f2:20:88:bf:a9:be:a0:
63:13:66:ed:44:21:a3:be:00:15:00:2e:ad:76:55:
51:ff:52:ae:80:c2:71:b4:1a:65:5d:df:24:58:be:
72:72:04:1e:fc:f1:17:27:f4:ba:a9:d0:13:d3:c8:
d5:83:d4:7e:90:a6:41:68:1f:6a:15:63:a3:c1:cd:
6a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D2:2E:D9:86:75:5D:12:07:B0:52:7E:FB:E2:11:96:6C:6C:A0:B1
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/h9Iu2YZ1XRIHsFJ---IRlmxsoLE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e4:8d:ae:8c:fd:ad:ff:0d:3b:c0:c0:59:72:fe:e5:b8:dd:
25:6f:ea:54:1f:2f:c8:c5:cc:b1:5b:99:f7:5b:d0:9a:96:63:
f9:9d:d7:42:6d:a5:cc:ee:17:81:3d:c4:61:bd:12:67:49:6d:
76:d2:6c:b0:d6:92:a0:73:7c:34:fe:e9:52:0b:7f:57:ec:f3:
04:c7:9f:9c:9b:78:c8:ca:46:06:8f:70:16:46:fc:56:19:08:
ac:b5:1d:15:cd:23:e0:28:15:3b:fd:b0:22:c1:43:4b:dd:5d:
e6:a6:39:ad:c6:66:10:a9:de:34:8f:50:30:98:7d:38:7a:c4:
b5:00:64:3d:49:5a:b7:24:de:84:8a:e3:98:ac:9c:76:18:c9:
e4:12:1c:ea:e3:ef:fa:e4:97:16:be:c8:19:33:c6:8f:91:27:
6a:07:39:b9:0d:d9:4c:7e:8c:1b:68:d9:76:9e:90:b6:88:2e:
a2:4a:b9:a2:58:22:aa:03:ab:21:bb:76:e6:89:1b:f1:33:53:
c8:4c:1b:aa:a2:fc:82:9d:c6:5b:19:d7:d0:4e:79:74:1f:9a:
64:d9:69:6a:b7:0a:a3:85:dc:98:37:26:43:5b:c0:cd:37:54:
72:ff:c2:13:a4:49:e0:d4:7b:00:a3:af:3f:95:d5:de:5d:92:
bd:ec:9b:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:05 2025 by rpki-client