Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/A81zuJQgpZ_0YhLS_zbcIab40Ro.roa
File: A81zuJQgpZ_0YhLS_zbcIab40Ro.roa (raw, json)
Hash identifier: iSzu5PjFbY1biQ88tBRVZnRr7EGKuIJIbyH4Co+83ew=
Subject key identifier: 03:CD:73:B8:94:20:A5:9F:F4:62:12:D2:FF:36:DC:21:A6:F8:D1:1A
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0C61
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/A81zuJQgpZ_0YhLS_zbcIab40Ro.roa
Signing time: Mon 10 Feb 2025 13:55:48 +0000
ROA not before: Mon 10 Feb 2025 13:55:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 133955
IP address blocks: 223.165.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3169 (0xc61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 10 13:55:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=03CD73B89420A59FF46212D2FF36DC21A6F8D11A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dc:e8:1a:73:92:b4:47:30:a6:c1:c3:24:ef:
46:86:d6:82:77:02:a5:6d:83:60:0d:1b:92:bd:cd:
78:52:8e:b5:7c:83:bb:56:bf:b1:2d:96:f0:5f:47:
a9:2d:60:e0:8b:81:be:4b:15:36:9d:70:85:62:79:
ea:ea:b3:92:1e:c5:06:f4:c3:bb:80:be:bf:1f:0c:
25:0b:2d:7f:cd:4d:d2:c5:d9:c8:a6:9a:9d:18:86:
99:55:08:3a:db:b1:c9:51:6b:25:fc:e3:e0:fd:c2:
f3:ca:24:2c:58:1f:50:48:61:24:9b:e0:64:54:ee:
92:ea:0f:59:07:a3:27:b2:f8:23:6d:f8:24:b3:6a:
c6:61:97:9e:bb:e0:7d:2b:94:04:93:4c:b3:49:83:
10:66:b9:8f:ab:d2:38:07:55:6b:37:fe:36:51:6e:
2d:fd:ce:37:0b:9b:f1:66:5d:6e:80:4f:43:50:2c:
ba:a4:10:25:16:cd:9f:ba:72:08:9a:b2:67:60:36:
3b:00:e1:95:a6:0b:83:2b:e8:2d:76:f4:67:0f:6f:
a4:2c:c6:cc:3c:7b:77:b7:ad:d6:eb:17:fa:d7:e2:
8e:29:85:29:b9:b7:cb:8c:58:84:20:f4:1c:ce:b9:
99:e3:71:81:31:9e:de:ec:af:82:dd:4d:fb:60:21:
94:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CD:73:B8:94:20:A5:9F:F4:62:12:D2:FF:36:DC:21:A6:F8:D1:1A
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/A81zuJQgpZ_0YhLS_zbcIab40Ro.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.13.0/24
Signature Algorithm: sha256WithRSAEncryption
23:38:16:58:df:42:79:a2:5a:54:35:29:72:4c:f0:e6:14:1c:
2b:17:20:fe:39:bb:e2:66:b0:ae:12:bf:ce:ef:38:14:cf:40:
b3:b7:02:54:2c:b7:44:70:49:6b:66:dc:31:66:3e:d7:23:20:
dc:cc:4e:00:6f:e7:e7:9e:e3:41:70:1e:c2:95:ae:5a:df:ee:
22:66:a7:64:fa:23:08:22:bf:50:83:fe:c5:d5:9d:f3:a0:6a:
df:ef:5f:a1:f4:10:5b:75:7b:0e:8a:c0:24:cf:70:e0:b4:92:
bd:be:db:59:ab:0f:4d:17:d8:e2:55:65:3e:f3:8f:24:1e:46:
2e:ef:a2:66:e7:69:94:7e:dd:85:76:d8:e8:66:8e:f4:ca:e7:
d2:4e:51:e3:28:e1:58:85:5e:ee:68:b8:90:bd:a3:4e:1b:3a:
e5:8b:63:24:38:eb:a8:9f:52:0c:0f:f7:44:d8:07:f6:66:b7:
04:06:f3:7b:a6:55:7f:b1:7d:a3:6e:1b:25:59:4c:05:0e:fa:
97:97:f1:9e:a5:8a:61:9f:32:21:ec:d1:ef:0c:8f:06:39:ca:
16:a9:55:d1:9e:ee:5b:25:db:ee:8c:2f:dd:11:a8:0c:69:06:
9b:87:ca:67:13:c7:53:b2:60:9a:a9:1d:49:3c:e9:b5:3d:24:
e1:f7:9f:88
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:25:28 2025 by rpki-client