Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/pCTO3EjclBT2DM6fu9iLR7rgoB4.roa
File: pCTO3EjclBT2DM6fu9iLR7rgoB4.roa (raw, json)
Hash identifier: w0mOEer+jN+04OJpab8fyAXgRxDk7GlFHLPzTgAPuC0=
Subject key identifier: A4:24:CE:DC:48:DC:94:14:F6:0C:CE:9F:BB:D8:8B:47:BA:E0:A0:1E
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0D4C
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/pCTO3EjclBT2DM6fu9iLR7rgoB4.roa
Signing time: Tue 11 Mar 2025 07:15:57 +0000
ROA not before: Tue 11 Mar 2025 07:15:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63199
IP address blocks: 103.124.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3404 (0xd4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Mar 11 07:15:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A424CEDC48DC9414F60CCE9FBBD88B47BAE0A01E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e4:d2:90:47:fd:8a:17:07:16:ac:5c:ae:7f:
df:b6:90:17:8f:41:f0:4d:b4:07:97:8b:18:7e:00:
e1:f4:3d:ef:55:34:66:78:15:87:d0:59:d2:ba:80:
3c:9e:f9:2f:72:02:f2:39:d8:74:2d:59:b6:16:34:
37:cc:68:34:0b:ca:2b:f3:14:1e:12:79:78:7d:f1:
53:8f:d5:51:fc:77:84:22:c0:57:21:b4:0f:ee:e9:
f0:f5:f9:a3:d3:1c:9d:42:0d:e7:0e:76:9a:05:55:
67:f0:f2:7e:f4:37:be:8d:25:70:a3:04:8e:94:58:
a3:a6:8f:02:dc:97:53:e7:65:26:48:6d:1d:f3:54:
5c:34:50:47:8e:02:7a:51:d8:28:ac:5e:b3:46:79:
90:de:a7:96:12:4c:cf:9b:2a:28:b1:70:d9:74:88:
e6:e7:a3:11:9f:7e:9b:36:d5:59:0a:85:17:69:42:
7c:88:71:df:f6:bd:84:9d:72:17:ae:a1:6a:3a:56:
51:e3:14:1f:9d:c6:03:bf:b9:96:bf:5b:d0:b5:17:
e6:a5:e8:ce:f0:fe:00:85:90:3b:32:be:e4:79:51:
fb:7c:0f:83:3c:61:a3:47:46:c8:15:24:95:80:0f:
4b:e5:ec:7b:27:79:2a:09:3e:79:96:b6:f4:fa:0c:
a0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:24:CE:DC:48:DC:94:14:F6:0C:CE:9F:BB:D8:8B:47:BA:E0:A0:1E
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/pCTO3EjclBT2DM6fu9iLR7rgoB4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.150.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:a7:eb:d1:21:5c:90:42:d3:22:72:a7:51:70:45:9a:f6:fb:
0d:60:04:69:19:92:f7:2c:5f:43:e2:39:eb:cb:68:12:bc:c9:
ba:ce:65:c6:64:ae:65:e4:cb:5f:55:29:61:c8:45:56:82:3d:
b0:ee:d7:ef:1f:b8:52:b1:89:8d:dc:94:46:ba:85:f3:40:ef:
5f:7b:b8:46:9e:a4:09:6e:46:7e:b7:7f:79:77:76:5c:0c:fc:
92:15:7b:40:fb:90:59:40:41:82:8d:7c:21:66:b9:a7:c8:0e:
91:1e:74:7c:b9:f2:3f:99:9d:66:79:55:f6:7e:b5:99:54:5d:
e5:ed:a1:e5:d8:d4:e4:e9:c9:81:03:a8:50:76:44:10:a9:95:
34:5e:8b:d2:a4:83:9c:53:9c:6d:fe:72:60:16:8d:84:05:9d:
b6:0b:fe:d3:70:39:af:99:3a:b3:e3:b5:ad:d8:62:47:9c:7d:
5d:48:85:96:1b:88:4d:3e:d1:dc:2c:b6:91:2a:ea:27:9b:a3:
fb:db:b0:62:39:d7:d5:7e:35:4a:7a:91:ba:78:ed:d5:bd:42:
a6:8a:79:f1:25:67:e6:10:28:58:a9:b3:51:56:c9:ca:16:50:
6e:e3:e4:75:1f:ca:0b:ea:91:25:b9:08:2f:3d:7f:2f:25:6f:
e3:8a:3f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:44:35 2025 by rpki-client