Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WISTRON/4PWaK3-naPPpKMlC7XnZSi5d5rk.roa
File: 4PWaK3-naPPpKMlC7XnZSi5d5rk.roa (raw, json)
Hash identifier: 4O3+RBdGcbnoHIwkp4BuGY7rZCtpRlna7VhhTYPc6yc=
Subject key identifier: E0:F5:9A:2B:7F:A7:68:F3:E9:28:C9:42:ED:79:D9:4A:2E:5D:E6:B9
Certificate issuer: /CN=53CB7B17F4F7D250DC9BA2CDD61A742DBA37FC10
Certificate serial: 0C33
Authority key identifier: 53:CB:7B:17:F4:F7:D2:50:DC:9B:A2:CD:D6:1A:74:2D:BA:37:FC:10
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U8t7F_T30lDcm6LN1hp0Lbo3_BA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WISTRON/4PWaK3-naPPpKMlC7XnZSi5d5rk.roa
Signing time: Mon 10 Feb 2025 14:05:52 +0000
ROA not before: Mon 10 Feb 2025 14:05:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131599
IP address blocks: 103.200.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3123 (0xc33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53CB7B17F4F7D250DC9BA2CDD61A742DBA37FC10
Validity
Not Before: Feb 10 14:05:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E0F59A2B7FA768F3E928C942ED79D94A2E5DE6B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f4:aa:75:f1:a1:33:ca:ab:d1:d3:08:69:9e:
90:af:bb:c6:41:b7:71:7e:fa:31:fe:e6:13:ff:20:
09:68:66:96:07:d8:ab:9b:17:9c:52:54:a7:59:72:
ec:54:41:73:ae:67:b1:ef:f5:64:df:1b:f4:5d:10:
b0:a9:99:4f:74:e7:d3:e5:a9:c3:fe:fa:a5:57:ee:
67:47:70:c0:cf:09:52:94:16:b8:ca:71:7f:0b:cb:
f5:0c:da:d2:52:cc:3b:0b:19:cc:10:92:c2:6e:25:
1b:7f:aa:e7:f6:02:d3:82:85:cb:bc:4e:8b:fb:78:
16:03:b5:07:5c:06:06:ae:7a:44:5a:eb:5e:55:1d:
2e:47:3a:07:57:22:23:ef:5d:d6:ff:2d:f0:eb:80:
dc:bd:22:e8:4c:84:f9:77:55:bc:7e:83:ef:90:52:
54:52:d7:d1:27:dd:f0:53:e6:1f:a2:9c:14:b2:7f:
a5:2f:da:1d:60:77:d5:98:f7:d6:aa:99:f0:ba:9f:
95:74:67:c9:f1:a6:e0:34:fd:56:ef:8b:25:4c:9f:
af:e7:52:b6:7d:df:a6:20:26:71:d6:d6:fc:26:72:
42:32:46:a7:1e:d5:cb:73:10:3b:fa:bc:2f:47:f2:
7d:3d:47:d5:04:c8:7d:c9:d5:f3:2d:c2:f2:de:22:
13:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F5:9A:2B:7F:A7:68:F3:E9:28:C9:42:ED:79:D9:4A:2E:5D:E6:B9
X509v3 Authority Key Identifier:
keyid:53:CB:7B:17:F4:F7:D2:50:DC:9B:A2:CD:D6:1A:74:2D:BA:37:FC:10
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WISTRON/U8t7F_T30lDcm6LN1hp0Lbo3_BA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U8t7F_T30lDcm6LN1hp0Lbo3_BA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WISTRON/4PWaK3-naPPpKMlC7XnZSi5d5rk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.200.0.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:c8:2a:04:67:ea:8a:69:e9:09:cf:40:46:d3:e3:35:c3:66:
6a:81:bf:27:ff:01:b3:ac:e4:a1:81:c4:06:11:ee:e5:54:18:
67:0e:bf:bb:11:fa:a4:ee:9f:48:fb:2f:4b:3a:4c:78:9f:0e:
2b:00:5a:d7:1a:94:93:7d:92:fd:2b:ac:4f:97:0a:ef:25:83:
0d:38:6b:0c:95:01:ca:76:4a:5b:e7:4c:05:8e:7e:e3:1e:aa:
78:23:d5:0d:b4:7e:9b:2b:2f:d7:72:ae:95:12:c9:71:40:76:
0b:60:6a:aa:e4:3c:68:84:dc:fb:3a:95:03:e4:0d:1d:65:e7:
8b:da:4f:dd:c1:73:ef:95:0f:63:44:d7:54:ce:b6:b3:86:2e:
9a:f3:65:0b:16:5e:8a:26:e6:6a:ec:6f:11:86:61:12:87:ab:
7c:98:29:4e:94:11:16:e2:a9:72:eb:57:94:94:e4:fd:6f:23:
01:34:a8:8e:53:11:9d:c5:10:4a:be:39:b6:a2:12:20:ac:e7:
6b:66:88:9f:58:2c:1a:a0:f9:12:72:3b:7e:1a:d1:d1:27:f7:
55:29:cd:ef:2f:59:57:a7:b5:36:0f:27:0e:4b:3a:e8:5f:78:
66:99:80:9a:db:b1:14:6a:9e:27:ea:d2:a3:37:6a:61:50:1d:
7f:0c:33:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:13 2025 by rpki-client