Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa
File: N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa (raw, json)
Hash identifier: LNL4K0fiFiPEZlxI+WYVHIoDX7LyDvEoXi0yna7mZ7U=
Subject key identifier: 37:58:B6:07:A8:04:80:13:9A:D0:90:46:0F:56:B6:A9:CB:E9:FB:53
Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Certificate serial: 0E00
Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa
Signing time: Mon 26 Aug 2024 05:34:55 +0000
ROA not before: Mon 26 Aug 2024 05:34:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 103.138.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3584 (0xe00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Validity
Not Before: Aug 26 05:34:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3758B607A80480139AD090460F56B6A9CBE9FB53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d4:6a:cd:d7:f2:7e:7f:b1:a1:88:fd:31:8d:
41:f0:3c:cf:ee:d4:e3:87:cf:2e:cb:f2:4c:30:ce:
52:26:86:cd:15:37:23:57:83:3f:ae:26:af:b6:b0:
fc:bd:7b:6f:ea:7a:e8:2c:2e:c3:0e:f3:69:6b:88:
00:9f:80:d8:89:4a:b4:8a:79:f8:bd:28:5a:e6:66:
b0:49:1c:57:c7:77:a3:b0:67:81:c8:a4:2c:ce:b4:
09:1f:c3:87:74:fc:65:ef:10:cf:59:a6:44:f0:e9:
d2:60:25:55:f6:62:c7:73:fe:4b:36:be:60:16:db:
6e:91:70:2c:54:82:93:cb:48:a0:20:7a:71:45:d8:
1a:14:15:20:dc:a4:d8:f0:a4:bc:e2:83:86:81:c6:
a4:ec:63:d0:2f:bb:4c:0b:23:a6:5d:36:28:6c:0b:
87:61:8c:57:36:d0:8d:69:7e:d4:3d:41:04:a0:d5:
bf:70:31:c0:79:7d:0f:9b:c5:ad:fa:c4:36:f9:b1:
1d:7d:64:53:c7:69:ab:80:c2:e8:48:ee:1c:f1:da:
1c:29:19:4d:ab:c2:7a:a3:5f:2c:db:c8:27:49:2a:
39:95:fc:1d:42:85:c0:bc:c2:b8:a0:fa:98:ae:ad:
1e:8d:4c:77:d0:91:37:84:83:1d:a7:4c:5b:97:ac:
3f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:58:B6:07:A8:04:80:13:9A:D0:90:46:0F:56:B6:A9:CB:E9:FB:53
X509v3 Authority Key Identifier:
keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.106.0/24
Signature Algorithm: sha256WithRSAEncryption
21:73:2b:0a:1b:68:8c:84:7f:01:fe:24:bf:37:c9:a0:12:c8:
4e:94:46:31:24:a4:99:8a:8c:51:05:91:94:fe:8f:2e:ea:46:
a1:d7:20:32:5a:ba:3f:09:cc:21:bc:c5:2a:94:cb:f9:67:00:
eb:93:17:8e:73:7d:08:86:4e:47:dd:7c:66:b7:0c:a3:6b:dc:
e5:12:f7:40:ce:72:31:b6:a9:8a:25:3c:56:7d:ac:49:23:d1:
f9:4e:32:08:ea:d4:61:ef:e8:24:c8:68:40:34:d0:4a:6f:3a:
d3:21:a5:7b:ed:f9:1b:56:0f:6b:59:73:42:a8:2a:9c:ee:a0:
55:e1:65:53:a7:2e:de:71:33:72:4b:dd:61:40:d8:6b:11:fc:
13:3a:33:d9:20:11:76:78:30:8c:8d:dd:b9:93:74:7e:8e:6f:
9a:8a:ee:cf:ad:e6:cc:36:7a:8f:19:63:86:9c:30:86:99:76:
cb:b8:91:31:2b:fd:19:dc:7a:98:40:89:fd:69:ae:b2:fc:ee:
b1:51:9b:6d:26:a8:2f:7d:86:cc:65:07:47:7c:cc:40:bc:e1:
8d:6a:7f:92:53:9d:d1:6a:0e:85:37:24:53:71:ba:13:ac:24:
eb:87:fc:ba:cc:88:64:fe:4f:39:75:f0:d6:f0:67:9f:9b:19:
fe:e3:84:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:20:41 2025 by rpki-client