Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/V4SxGypEsp134Pzd6scAQzLv540.roa
File: V4SxGypEsp134Pzd6scAQzLv540.roa (raw, json)
Hash identifier: gMJwfBnwxm27C09xK+bfDKD/oIcgx7aGOt7cmUZ5vq8=
Subject key identifier: 57:84:B1:1B:2A:44:B2:9D:77:E0:FC:DD:EA:C7:00:43:32:EF:E7:8D
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1359
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/V4SxGypEsp134Pzd6scAQzLv540.roa
Signing time: Mon 10 Feb 2025 14:03:38 +0000
ROA not before: Mon 10 Feb 2025 14:03:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 396982
IP address blocks: 101.102.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4953 (0x1359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 10 14:03:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5784B11B2A44B29D77E0FCDDEAC7004332EFE78D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:78:25:81:e4:e3:08:d1:c9:4a:59:ca:29:e3:
1b:d5:74:83:ad:c3:a0:9f:9a:a3:70:82:26:c5:1a:
8f:5a:72:2f:c4:89:c6:ce:d3:77:50:59:8f:76:79:
80:88:f6:4f:44:ce:5a:65:2f:10:13:d0:76:7f:b5:
1f:db:42:59:78:a3:71:81:4d:98:58:fa:58:1c:72:
77:95:b5:d6:df:b9:8e:23:e4:e9:71:c5:1b:87:57:
6c:df:38:97:33:b8:54:68:a6:5d:44:6a:5f:cb:89:
17:61:6f:cf:17:fc:50:1b:ac:8b:f2:6f:92:28:ee:
58:87:e8:ca:83:2c:8e:37:8e:49:ee:33:ed:46:d3:
83:b1:eb:bb:d1:00:ec:63:02:a4:f9:a4:ca:97:6b:
9c:2f:75:42:44:8b:eb:0d:2b:15:47:a3:08:dc:a3:
e9:d6:76:04:ff:d2:a9:3d:90:a7:bb:86:13:6f:bd:
f2:fb:68:54:aa:90:e2:25:08:b6:9f:32:b2:b2:27:
b0:c2:31:0e:47:a7:30:be:cf:14:c7:4c:a3:ba:04:
8a:83:af:92:aa:dd:8e:7a:db:90:5f:59:9d:78:91:
b7:74:27:25:cf:10:1b:9e:33:b5:c3:8e:be:36:40:
9d:43:cc:b7:c3:21:17:a4:fc:df:3d:15:c7:ee:6e:
b7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:84:B1:1B:2A:44:B2:9D:77:E0:FC:DD:EA:C7:00:43:32:EF:E7:8D
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/V4SxGypEsp134Pzd6scAQzLv540.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.102.103.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:75:49:81:f1:fa:3e:67:f1:2e:67:20:f1:63:ae:b7:1e:a7:
0c:ca:b6:a6:bd:27:be:ce:80:2a:b6:f6:fe:80:03:77:d1:84:
65:66:c8:33:10:4f:fe:49:17:11:a1:10:19:f5:40:54:ea:73:
ae:e1:3a:57:9c:9c:c8:32:45:fd:3e:60:42:0a:ec:cc:7e:a9:
1a:7c:cf:57:f7:e5:4a:5c:8d:2a:07:aa:39:92:9d:3c:f4:a8:
65:9f:21:89:4e:32:78:9b:66:24:a0:ce:38:87:bb:ba:05:38:
c7:55:f2:65:22:0b:c8:ed:6e:11:4d:89:3d:70:6e:48:cf:ca:
20:1b:be:d1:43:e4:d1:67:6b:c7:96:fb:62:a6:8c:29:ca:5a:
f4:c9:62:73:dd:cb:00:a3:c1:30:57:38:a1:a4:18:40:68:b1:
41:dd:c9:1b:c9:a2:21:20:38:8b:9a:80:a5:43:d1:c3:86:3b:
a1:ee:93:b7:e8:7f:26:f8:49:8f:d4:9a:89:d7:5b:97:97:53:
42:e8:e0:23:b2:72:a9:53:cf:fa:8a:88:04:3c:a5:89:11:34:
b4:fc:2c:c2:6d:25:6c:34:af:4f:da:9f:8d:97:8d:76:a5:fe:
13:98:57:18:74:0c:f1:42:5f:9a:ed:e8:4c:48:04:92:db:7e:
12:21:f9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:37:32 2025 by rpki-client