Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/jUxkRUlTpRc4BAMGp1NyqxQon60.roa
File: jUxkRUlTpRc4BAMGp1NyqxQon60.roa (raw, json)
Hash identifier: HKDpSwbj7dz3U66tmvBHs++3mM9W80/cjWXnuVrkw+M=
Subject key identifier: 8D:4C:64:45:49:53:A5:17:38:04:03:06:A7:53:72:AB:14:28:9F:AD
Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D
Certificate serial: 0135
Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/jUxkRUlTpRc4BAMGp1NyqxQon60.roa
Signing time: Mon 26 Aug 2024 05:27:45 +0000
ROA not before: Mon 26 Aug 2024 05:27:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 201217
IP address blocks: 103.220.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309 (0x135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D
Validity
Not Before: Aug 26 05:27:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8D4C64454953A51738040306A75372AB14289FAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:20:01:5b:5e:73:10:b2:bd:20:f0:2a:97:c4:
a8:24:4d:5f:ee:68:3d:04:a8:4f:30:af:96:6b:ce:
c9:11:82:74:89:ca:b2:c9:1f:61:b3:6f:df:9c:63:
fe:89:74:02:44:b6:d9:59:5d:23:62:7e:8d:bf:c5:
1b:24:97:bd:cc:e2:21:8e:1a:9e:af:bf:40:d2:7f:
0a:c2:41:87:82:46:5e:35:df:84:52:56:7a:64:7a:
66:f0:95:e6:ab:57:c8:3e:b3:07:3e:f9:24:f9:95:
dc:6c:25:c5:5d:b0:8a:d4:ce:de:d6:15:e4:67:83:
02:2d:67:ab:f0:c7:a3:c8:90:5e:08:e6:08:55:dc:
6d:89:09:88:c5:7f:48:09:f7:4b:88:94:b3:11:b0:
67:56:2e:8a:0d:07:57:ae:9d:44:17:6c:8d:99:60:
0d:68:85:9b:94:39:3a:ca:30:80:f8:86:45:8b:d0:
76:f0:5a:ae:e8:eb:ca:18:f0:48:92:7b:94:b8:98:
61:17:da:ac:f0:69:8d:a1:90:f0:0e:cd:e1:19:b3:
0b:73:e2:e7:a9:ea:20:e6:94:1e:f3:c4:d8:ca:c2:
dc:c6:08:a5:ef:11:f1:62:7d:ab:74:a4:e7:a2:e3:
6f:a9:8e:10:f1:8b:08:a6:7c:7c:9d:17:1c:08:0c:
be:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4C:64:45:49:53:A5:17:38:04:03:06:A7:53:72:AB:14:28:9F:AD
X509v3 Authority Key Identifier:
keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/jUxkRUlTpRc4BAMGp1NyqxQon60.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.220.218.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c3:b7:c8:84:e7:8b:32:cc:e7:e9:be:91:5c:2e:37:45:37:
af:f8:89:71:25:b3:6a:5c:37:82:e9:0d:02:ad:d3:10:1f:2d:
d8:a6:ed:79:87:f7:54:64:30:e2:22:28:36:15:cc:cc:84:e1:
64:a9:56:6b:8b:dd:5a:5e:cb:29:b4:c1:fa:7b:5e:0c:c9:ac:
1f:e7:f9:da:a2:43:4f:48:1d:66:89:10:d6:20:ea:ce:93:41:
1e:ba:b8:f8:77:11:f6:c4:a6:03:92:50:02:69:38:83:51:7d:
30:9c:a6:63:4a:f2:fc:b5:20:ff:52:6d:6e:74:d8:ae:92:ae:
d0:b2:38:98:0d:1c:01:f9:d2:26:36:cd:05:49:e2:23:59:9c:
df:07:7f:d3:b5:4d:d2:a8:a9:54:28:9c:c5:bf:de:ad:f9:11:
d1:a6:bb:67:a9:8f:74:87:6b:a4:ec:67:f6:01:f1:d5:de:66:
84:1f:57:f2:3b:c3:1f:ce:2f:36:24:c8:8c:2c:24:03:6c:2e:
97:85:9a:cd:0a:ca:41:8c:ad:2c:ad:a6:8c:ae:2f:40:59:2f:
c3:be:5b:33:82:7e:4b:26:20:02:2c:68:4e:d9:c5:1f:77:d3:
fb:24:aa:e3:fa:6d:08:56:fe:b4:a7:92:19:4e:cf:de:e1:71:
9e:e0:22:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:19:43 2025 by rpki-client