Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/Y0Ps1pFYzuY-vqKXKu2vsxlpNVY.roa
File: Y0Ps1pFYzuY-vqKXKu2vsxlpNVY.roa (raw, json)
Hash identifier: MwCUbhNAgbXQJ6QspES/XcKlOkex8W2v3QpLHhYH5kg=
Subject key identifier: 63:43:EC:D6:91:58:CE:E6:3E:BE:A2:97:2A:ED:AF:B3:19:69:35:56
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0C99
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/Y0Ps1pFYzuY-vqKXKu2vsxlpNVY.roa
Signing time: Wed 04 Dec 2024 12:56:09 +0000
ROA not before: Wed 04 Dec 2024 12:56:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3225 (0xc99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 12:56:09 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6343ECD69158CEE63EBEA2972AEDAFB319693556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d6:f4:ca:85:5d:d8:be:dc:a4:5e:da:2a:5d:
c7:08:0c:c6:3c:07:1a:1a:b0:19:35:df:7e:67:41:
f2:57:5b:b3:fc:74:eb:b1:69:42:cb:fd:71:bb:15:
48:1c:93:00:3e:0b:6f:ee:c6:21:36:94:b6:e0:d1:
75:d1:06:67:fb:d5:4b:b0:3b:e4:6d:41:5b:35:ba:
4b:0e:5c:85:7c:2f:ed:40:9f:35:3d:c6:92:4f:8e:
4b:b5:83:c3:3f:81:c5:8e:1e:29:1a:26:54:7c:1b:
83:b0:f7:60:11:82:3b:c6:65:5b:b5:39:72:43:1e:
cc:16:3f:33:fe:dc:9e:c9:ad:03:38:17:63:33:18:
8c:a1:12:26:9c:9a:a4:53:2f:4a:53:21:5a:38:7a:
ed:2c:81:c2:30:08:54:c3:a0:54:99:e8:47:6d:6b:
a8:32:29:c4:4a:eb:18:ba:55:43:85:f3:a1:9b:53:
ae:4d:e4:fa:23:03:1a:77:e3:d5:2e:1b:6e:ec:ec:
c9:1b:96:8d:02:f7:f3:83:0f:fc:55:25:f1:7a:e5:
f7:b2:08:db:47:96:31:c5:2c:dc:91:77:1d:81:72:
90:09:33:c6:db:fa:60:1b:cf:89:70:65:4a:13:fd:
be:33:9d:ee:ac:50:6e:62:18:bd:15:42:cb:d0:03:
e2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:43:EC:D6:91:58:CE:E6:3E:BE:A2:97:2A:ED:AF:B3:19:69:35:56
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/Y0Ps1pFYzuY-vqKXKu2vsxlpNVY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
62:4a:ee:3a:59:dd:82:7d:26:3a:41:5f:55:5a:e0:3f:0c:e7:
ef:0b:fc:50:b7:3c:c1:ba:51:b4:1d:2f:80:6c:ed:cb:71:f8:
3a:48:c4:ee:4b:a8:2e:5f:12:0c:b1:39:e6:80:86:e8:ff:82:
36:f7:4c:e6:92:06:94:fb:9b:d6:65:ae:a3:46:d9:22:84:19:
e2:de:f8:6e:d3:b1:64:58:82:55:fd:9c:78:69:d4:21:c2:12:
4a:f8:e9:52:61:63:3e:5c:33:03:3b:a9:44:44:3a:31:2a:b7:
b3:db:50:3e:b6:42:e6:15:56:67:f0:f2:74:89:28:7f:a4:36:
6c:98:67:1a:27:41:55:85:c1:23:b5:c2:35:6b:88:74:99:1f:
bc:a8:c4:f7:18:de:d6:9b:bc:0b:c1:b5:60:da:6c:23:1b:b7:
e3:ba:2a:88:c1:8b:ed:ff:c2:e0:b0:a1:2a:f6:a5:b2:e8:ee:
27:63:66:54:ac:2d:39:51:96:20:5c:2a:76:36:e8:38:73:5a:
3a:49:23:80:35:f5:7a:ac:06:8e:ad:1f:ba:6f:d8:91:e3:8d:
fe:4a:f0:f3:a7:8b:d4:f4:d5:14:6c:66:99:e9:0f:c2:96:a8:
84:1b:d0:0d:f9:bb:30:32:9d:7d:10:a7:85:49:61:0e:e6:16:
5c:28:42:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 19 07:13:18 2025 by rpki-client