Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0hVhEC1G23IYg-9_24o8fgvLnNM.roa
File: 0hVhEC1G23IYg-9_24o8fgvLnNM.roa (raw, json)
Hash identifier: nNHi5LVGyhLoe5oGbm1pbWFNL/DmE07s9dKfeiFopGM=
Subject key identifier: D2:15:61:10:2D:46:DB:72:18:83:EF:7F:DB:8A:3C:7E:0B:CB:9C:D3
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12D3
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0hVhEC1G23IYg-9_24o8fgvLnNM.roa
Signing time: Mon 26 Aug 2024 05:32:35 +0000
ROA not before: Mon 26 Aug 2024 05:32:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 14618
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4819 (0x12d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D21561102D46DB721883EF7FDB8A3C7E0BCB9CD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:2b:07:0a:19:59:27:a2:0d:8d:ad:c0:12:
ca:58:4d:2f:2e:00:d1:80:8e:92:c5:5c:bf:b7:3c:
3c:c5:04:3b:e3:51:6c:21:6d:74:62:d2:9f:41:54:
ce:82:26:c2:76:82:0d:cd:08:45:7a:de:c3:ee:0c:
4f:3d:ea:27:fb:bf:a4:13:37:4d:f0:41:01:2e:67:
5d:34:2c:54:e4:ce:cc:77:97:50:b9:bc:fc:be:29:
3a:5c:6b:d1:ad:27:e4:a7:78:38:a2:cc:91:32:a7:
59:de:4b:ae:2e:ba:57:8b:a4:c9:37:7d:29:ee:81:
cc:a1:4f:38:66:65:cf:ea:92:e4:e0:27:46:48:09:
3a:f7:1f:0a:e7:bc:07:73:a2:3c:c9:6f:f4:62:6e:
be:5c:b7:87:b3:33:4b:7b:41:74:38:82:58:aa:78:
02:ef:ec:5a:66:f7:c7:65:db:d2:8a:12:7e:4e:cc:
ce:b0:c1:ff:a8:91:eb:e1:70:ba:be:89:9b:9b:b2:
2e:d9:37:c8:98:a0:57:1d:91:24:d3:f1:d1:50:82:
1b:b8:67:c8:f8:5e:1a:e3:d3:08:32:da:c0:27:82:
d9:80:44:9c:1a:48:eb:0b:d0:6d:11:9f:9c:11:e8:
0f:19:43:94:c4:7f:fb:af:3e:55:e0:dd:d4:24:c2:
ed:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:15:61:10:2D:46:DB:72:18:83:EF:7F:DB:8A:3C:7E:0B:CB:9C:D3
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0hVhEC1G23IYg-9_24o8fgvLnNM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:52:f1:b6:02:e2:c6:c4:fb:42:a9:c8:17:6e:39:f4:af:42:
a5:79:d6:9d:c8:fa:ed:51:ad:2a:6f:6f:1c:a7:55:14:ae:2b:
f1:dd:03:4d:03:02:45:f1:1f:af:98:f6:64:c4:2a:d6:b4:c1:
8c:31:d4:f1:30:f6:56:e2:3c:a0:64:6c:95:9b:02:2d:d3:59:
45:30:5a:d1:12:01:9b:aa:fa:fc:66:1e:3b:7c:57:23:83:16:
c2:ec:10:20:6f:29:b8:f6:9a:9b:42:b9:68:f6:25:44:bf:86:
32:c3:cb:6b:19:43:91:fd:53:7c:a2:d0:18:33:8a:26:c8:a4:
05:79:8d:a8:73:8a:93:7e:db:35:dc:3e:d4:e7:c1:ab:ed:71:
d6:81:95:8c:8b:6a:63:ac:f1:c5:f3:ca:35:70:07:50:a5:70:
ce:ac:aa:5e:25:04:82:95:28:47:80:34:3f:b0:26:e0:0e:3d:
24:1f:97:92:14:0f:48:df:a0:74:01:6c:61:1f:1b:aa:36:0a:
9c:2d:bf:fb:52:06:ae:31:eb:10:db:be:39:8c:05:7b:9d:59:
2c:c5:f0:ef:9e:85:0b:4d:65:b9:5c:9a:c5:4c:ec:64:ff:92:
f7:b3:48:43:36:bc:51:02:21:40:b8:cd:ad:a5:60:67:24:f3:
39:bf:dc:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:10:06 2025 by rpki-client