Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/bVwdj2uMnGYy7OShUWmq2Kbq2WM.roa
File: bVwdj2uMnGYy7OShUWmq2Kbq2WM.roa (raw, json)
Hash identifier: WYS8fAmPHCva7Ang51C4GMyMk7ta6t2hT+AhozDORdk=
Subject key identifier: 6D:5C:1D:8F:6B:8C:9C:66:32:EC:E4:A1:51:69:AA:D8:A6:EA:D9:63
Certificate issuer: /CN=D264D19B9806023E476E039C05FDCE1376AC6C3C
Certificate serial: 99
Authority key identifier: D2:64:D1:9B:98:06:02:3E:47:6E:03:9C:05:FD:CE:13:76:AC:6C:3C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0mTRm5gGAj5HbgOcBf3OE3asbDw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/bVwdj2uMnGYy7OShUWmq2Kbq2WM.roa
Signing time: Mon 10 Feb 2025 14:25:15 +0000
ROA not before: Mon 10 Feb 2025 14:25:15 +0000
ROA not after: Sat 10 Jan 2026 15:30:29 +0000
asID: 134823
IP address blocks: 161.248.144.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153 (0x99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D264D19B9806023E476E039C05FDCE1376AC6C3C
Validity
Not Before: Feb 10 14:25:15 2025 GMT
Not After : Jan 10 15:30:29 2026 GMT
Subject: CN=6D5C1D8F6B8C9C6632ECE4A15169AAD8A6EAD963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:5a:13:a3:0c:2e:4e:b9:b7:52:9f:30:9b:
b1:51:1e:a4:4e:31:9c:80:b1:f6:c6:b6:8f:50:e8:
70:80:6d:1c:f6:df:92:02:de:c6:1e:ba:da:bc:de:
e8:88:91:91:39:3d:38:62:6e:67:ed:9f:4d:af:b8:
93:60:aa:90:ba:f8:16:d0:2b:69:d1:22:86:85:ce:
56:7c:5a:fe:1a:bd:a9:f2:2d:3b:17:50:e9:3b:a0:
3f:ef:8c:c1:cc:5f:b6:f8:bd:40:1e:52:21:17:64:
a4:d6:db:70:67:60:82:f4:b5:2e:87:42:9c:80:e9:
42:7c:e3:96:26:58:cb:bb:dd:0d:5e:40:af:99:e2:
0d:0f:99:6f:ab:5a:e2:9c:1a:5e:20:86:eb:f5:f9:
21:14:9c:a4:7a:de:59:2b:b7:f7:95:83:48:8a:10:
02:b9:a7:b1:70:5d:a5:df:fc:bd:e5:82:b0:8d:00:
42:5f:2c:29:8a:0c:4a:f8:47:df:be:1a:42:18:2a:
4e:1a:c2:23:ad:6d:f4:3b:ca:ad:cb:e8:f7:6c:d4:
99:6b:be:09:a2:17:6b:9c:17:9c:8e:58:a7:f8:ce:
f3:a7:f7:4a:62:3e:05:dc:42:d8:22:78:2f:cf:d0:
33:73:eb:0a:4c:52:a5:68:83:37:3d:8a:db:ee:e7:
ec:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:5C:1D:8F:6B:8C:9C:66:32:EC:E4:A1:51:69:AA:D8:A6:EA:D9:63
X509v3 Authority Key Identifier:
keyid:D2:64:D1:9B:98:06:02:3E:47:6E:03:9C:05:FD:CE:13:76:AC:6C:3C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/0mTRm5gGAj5HbgOcBf3OE3asbDw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0mTRm5gGAj5HbgOcBf3OE3asbDw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANGTIAN/bVwdj2uMnGYy7OShUWmq2Kbq2WM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.144.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:74:91:2b:4a:4e:16:6b:92:e5:90:8f:38:ac:89:b6:69:69:
a5:0d:38:38:22:d0:2a:24:e7:84:00:84:f4:1b:71:01:ae:79:
d2:00:77:e2:87:fd:37:c2:9f:f8:54:8a:62:06:b5:43:26:74:
00:7e:31:d9:26:dc:c8:e8:d5:d1:f6:4a:5c:11:b7:fe:c6:27:
4f:f3:d9:45:21:01:70:fa:bb:05:4f:54:d9:e3:8d:66:ec:e8:
25:39:0f:c9:da:86:db:40:0f:0d:90:6d:c0:62:b3:0a:8b:94:
68:ff:f0:ff:5a:6c:c0:4a:11:71:c7:be:23:13:06:79:9e:cc:
0a:87:7c:00:c8:be:e8:3a:81:79:e5:a6:5c:8f:8b:d5:3b:cb:
b1:b8:3a:6e:63:93:41:7e:cd:f9:ec:50:8d:0b:83:0a:19:ef:
8d:44:59:ee:bd:d7:24:95:fa:5c:e4:ad:16:79:f1:f9:44:fb:
c8:7b:03:82:ee:87:1d:26:45:cc:f0:30:7e:c8:42:fb:3f:f1:
8a:82:12:06:4e:d2:c7:ac:d8:04:e9:05:8a:cc:ed:52:86:01:
ac:1b:7e:1e:66:26:fa:2b:9c:80:4e:15:72:bd:35:e1:1f:02:
53:0d:5a:50:57:f8:de:82:ef:a5:10:54:41:0b:5f:08:46:60:
af:3b:d4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:34:52 2025 by rpki-client