Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/k2kQhae3kAk06Ib1J2Xv-Q68Kbg.roa
File: k2kQhae3kAk06Ib1J2Xv-Q68Kbg.roa (raw, json)
Hash identifier: hOipAoU4YXvgFzruMtVHLauNvbMdlgW3PKrvnVt0TH4=
Subject key identifier: 93:69:10:85:A7:B7:90:09:34:E8:86:F5:27:65:EF:F9:0E:BC:29:B8
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0D50
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/k2kQhae3kAk06Ib1J2Xv-Q68Kbg.roa
Signing time: Tue 11 Mar 2025 07:16:21 +0000
ROA not before: Tue 11 Mar 2025 07:16:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131616
IP address blocks: 103.124.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3408 (0xd50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Mar 11 07:16:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=93691085A7B7900934E886F52765EFF90EBC29B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:17:09:f6:12:88:df:65:0f:72:76:34:02:
3f:fa:97:2e:2e:28:70:81:c2:0c:db:f4:24:4c:4e:
05:22:e1:d1:00:49:a2:02:44:13:51:5c:9b:f4:4d:
e0:6f:96:c4:4f:ad:20:91:29:9b:6c:7a:63:a7:99:
9a:40:be:36:cc:f7:c9:a7:5c:61:e8:67:9c:3f:37:
fc:9b:2a:12:f3:52:4a:90:a5:83:e7:ce:4f:f1:34:
71:53:be:f3:19:60:dd:9a:fd:c5:94:19:54:b7:ec:
f1:bd:10:8e:42:98:e5:eb:f9:4d:17:b2:58:47:de:
5c:03:ed:d5:ce:08:b3:28:e3:97:4e:75:3d:1f:0b:
5e:35:07:0d:2e:9b:76:ad:85:ce:d6:4e:2c:1c:7b:
8d:5c:19:ab:18:e4:79:f2:1a:f3:23:c5:50:ab:d0:
0f:8d:04:a5:09:59:cf:d1:2e:8d:3c:2f:0d:a2:29:
d9:03:29:f6:0c:2f:e0:ab:43:cc:a9:9d:9b:75:93:
48:ce:95:8d:b8:81:e1:e1:4f:c7:ca:25:ee:e9:93:
c6:a4:3a:1e:4a:bb:e5:1d:32:d0:63:f7:00:24:9f:
00:13:77:26:a1:c9:0e:42:52:2c:74:55:1d:4d:b5:
62:d6:d4:74:0f:c6:17:0d:10:32:85:6c:87:97:f6:
04:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:69:10:85:A7:B7:90:09:34:E8:86:F5:27:65:EF:F9:0E:BC:29:B8
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/k2kQhae3kAk06Ib1J2Xv-Q68Kbg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.148.0/24
Signature Algorithm: sha256WithRSAEncryption
11:57:70:14:51:5f:84:fa:de:7b:3c:9d:be:68:df:b2:9d:e8:
fd:fd:39:e5:45:f3:7b:30:e1:e5:8e:44:f8:97:1a:12:37:68:
83:cf:05:82:bc:8a:a6:a0:06:09:21:b6:ea:88:63:c5:b7:ec:
98:4f:34:c8:e5:57:6d:ad:39:d7:6c:28:7c:fc:a8:d4:95:ed:
49:4f:d4:1b:b0:3d:79:d6:1d:e9:5e:ac:92:89:76:c7:bd:dc:
48:c5:0f:60:91:7c:81:a0:56:41:2e:31:90:47:ff:8a:27:7b:
b7:51:3b:b5:04:f4:b5:93:e7:3e:c8:41:7f:e1:e9:77:ea:37:
ce:4a:65:ae:7d:a0:81:f4:0f:0c:fd:ad:29:3b:75:ef:bf:98:
17:79:92:4d:a0:21:0c:ec:20:6f:4d:87:e1:00:88:bf:51:b6:
a2:c5:83:7d:00:da:91:5e:57:4a:e4:d8:f0:f9:99:b7:40:d9:
83:3c:f6:77:e7:8e:df:d3:1f:d3:bd:17:f6:4c:ee:08:69:ab:
a5:47:35:61:d1:1f:a1:17:72:23:da:b8:86:f6:5a:04:e2:2e:
d3:04:bc:97:7b:07:16:db:fc:ac:98:d3:d2:19:73:f7:e9:f7:
75:bc:7d:fc:dc:59:9a:6c:5d:92:c2:27:2d:fa:fb:06:1e:b2:
85:7b:63:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:54:01 2025 by rpki-client