Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/GdbQj6cA-H4RV76VlP_lVLLUj0I.roa
File: GdbQj6cA-H4RV76VlP_lVLLUj0I.roa (raw, json)
Hash identifier: 6jkF6mKtngsdftVzKAluRPAO4OT4VLqqn0HI6uk4GWA=
Subject key identifier: 19:D6:D0:8F:A7:00:F8:7E:11:57:BE:95:94:FF:E5:54:B2:D4:8F:42
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0C9F
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/GdbQj6cA-H4RV76VlP_lVLLUj0I.roa
Signing time: Wed 04 Dec 2024 14:26:12 +0000
ROA not before: Wed 04 Dec 2024 14:26:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3231 (0xc9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 14:26:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=19D6D08FA700F87E1157BE9594FFE554B2D48F42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e0:01:9d:eb:ae:c4:d9:a5:ab:1c:59:a4:34:
8a:57:e4:e3:9b:63:fb:15:c1:5a:cc:f3:73:99:7c:
bb:6a:b8:e2:dc:2a:a9:0b:b1:7d:51:2c:58:35:b9:
30:b7:86:42:ba:52:d0:86:fb:34:e3:ff:a3:ef:6d:
31:a8:c0:25:d7:72:0c:25:c3:1a:34:ca:c0:fb:db:
1d:46:1c:94:c3:45:2b:28:eb:da:f9:79:ae:84:f4:
c0:68:a9:8c:f6:65:42:1c:65:40:af:b2:4b:af:ed:
5c:98:c5:de:f9:fc:c5:a4:c1:51:b0:16:b7:5e:c7:
2e:76:9d:0e:06:f9:3c:a9:f9:97:73:53:f6:5b:a1:
5b:8d:12:ac:89:e3:c4:ec:47:02:cc:98:4d:44:cd:
88:44:5e:47:7b:4d:00:66:13:ed:9c:83:d0:78:7a:
96:bb:06:69:61:6c:59:b3:50:08:64:c8:a2:d2:c0:
a9:be:3e:cc:8a:ff:ab:4f:75:69:10:09:21:9f:a1:
a3:04:39:8e:7d:c2:a1:bc:20:e4:78:ff:82:4e:f4:
e1:b3:c2:19:0f:61:00:3a:7f:6c:a4:1d:97:6b:75:
23:45:c0:a4:12:0a:d7:94:44:c4:6f:67:bd:5d:99:
40:2b:40:39:4f:76:c0:8f:b7:db:2e:88:3e:46:73:
76:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D6:D0:8F:A7:00:F8:7E:11:57:BE:95:94:FF:E5:54:B2:D4:8F:42
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/GdbQj6cA-H4RV76VlP_lVLLUj0I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
02:cb:25:14:dd:3b:31:a3:30:03:ac:d7:a1:99:21:d9:ca:60:
f0:31:b4:d1:50:30:52:8c:e9:5a:b7:ba:04:ba:6d:92:71:79:
50:9c:a1:ed:a8:03:84:90:e2:f6:fd:2d:86:e4:3c:a3:38:03:
35:c1:ca:6e:3a:47:74:0d:bb:24:59:35:72:66:66:85:46:0a:
9e:64:da:c1:c1:85:eb:71:fd:39:ea:f0:13:3f:85:7f:0c:33:
c2:8f:c5:3e:54:d3:23:47:73:18:db:2a:c9:f6:41:5f:00:69:
ae:11:d3:3e:ae:c3:76:30:6b:93:71:0e:4a:b4:a6:88:fc:4b:
4e:38:46:51:60:05:4b:44:2c:c3:3f:32:fb:65:51:de:a6:7d:
ee:ef:d8:55:69:81:8b:d7:6c:4c:92:d6:1b:4c:a1:88:5d:44:
d1:a3:70:85:c7:da:9f:05:24:03:b7:01:4b:98:f2:76:f1:37:
78:b6:ac:b1:d1:1d:be:04:37:6b:05:3c:23:61:e0:08:2f:86:
06:17:6c:25:32:69:33:67:6d:cb:1e:02:8a:53:ac:10:75:0b:
77:5b:e2:f7:e2:8b:d0:c6:89:61:f2:73:ba:31:96:d6:81:8d:
4f:3c:92:2f:0a:35:d9:e8:97:a2:ab:b6:a7:cf:7a:88:76:c0:
b5:b1:4e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 16:07:35 2025 by rpki-client