Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/24az_geh5jKiBsjrmKlVBOLjf0k.roa
File: 24az_geh5jKiBsjrmKlVBOLjf0k.roa (raw, json)
Hash identifier: UydmDwr0Zoaqj4m/GqPpFR+M/n7eRv05N8KK1Zo3wy4=
Subject key identifier: DB:86:B3:FE:07:A1:E6:32:A2:06:C8:EB:98:A9:55:04:E2:E3:7F:49
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10CE
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/24az_geh5jKiBsjrmKlVBOLjf0k.roa
Signing time: Mon 10 Feb 2025 13:56:30 +0000
ROA not before: Mon 10 Feb 2025 13:56:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 182.155.128.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4302 (0x10ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DB86B3FE07A1E632A206C8EB98A95504E2E37F49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6f:49:ff:c3:73:1c:85:dc:a8:6f:9b:d9:f1:
0d:5f:1d:10:c2:73:7e:e6:02:7c:ae:23:3d:8b:7e:
75:97:b2:3a:a8:51:21:33:02:22:c4:02:85:d2:e8:
6b:5c:d4:da:05:8e:63:58:67:bf:f7:d8:42:cf:55:
32:c6:3e:3d:08:5d:0e:e5:bc:a7:78:67:e7:11:45:
56:8a:4f:90:34:ff:d9:c1:a4:e6:a2:27:b2:61:c4:
b6:82:5e:f1:02:72:b7:d0:38:f6:a9:ec:7e:49:59:
eb:2a:71:b7:d0:68:cd:4b:59:4e:0c:f1:85:78:69:
df:cb:38:ae:4a:69:d1:a7:51:76:78:85:fa:0b:a5:
6a:6c:ce:2c:83:b5:d0:f5:86:5f:c8:3d:3f:53:db:
c0:30:f0:8d:b5:c7:63:70:6f:06:d0:ec:18:c6:e4:
30:97:71:cc:9e:34:49:9f:50:ae:50:7a:67:f0:b9:
91:4a:3b:0a:9c:d6:77:8c:e5:91:90:ac:d7:5a:41:
39:56:d8:d2:2d:fd:c3:fa:66:73:0e:e0:87:94:8b:
76:f3:0e:db:82:c9:32:80:e3:b8:a5:7d:d3:f6:9e:
40:20:fd:a3:27:16:a7:49:cb:ce:03:de:77:18:ad:
bf:b4:3c:90:b7:38:03:cf:28:51:f4:52:c4:25:f1:
f8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:86:B3:FE:07:A1:E6:32:A2:06:C8:EB:98:A9:55:04:E2:E3:7F:49
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/24az_geh5jKiBsjrmKlVBOLjf0k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.128.0/18
Signature Algorithm: sha256WithRSAEncryption
10:51:6a:72:e0:d2:8e:71:85:83:bc:06:78:7a:98:d7:83:41:
ef:fb:8b:14:a3:b3:4e:15:53:91:af:89:00:9b:0b:6b:9b:3e:
dc:7c:c0:4f:4c:9b:e4:48:e1:a5:da:c7:2e:04:0c:53:bf:74:
51:cf:40:e0:30:7a:be:6d:35:b5:64:36:40:f2:5d:c0:b6:a6:
49:b2:9a:5d:f4:f4:3f:6d:c9:57:35:2c:39:7a:0f:ff:09:cf:
da:af:0c:20:cb:24:2a:e8:fc:00:7e:15:6d:41:1d:80:0c:70:
d1:e2:4b:4a:1e:fa:00:2c:ff:64:02:82:2a:40:f0:6f:47:39:
81:80:66:17:de:d7:b1:bd:f7:a7:7c:32:92:46:4a:ba:79:c5:
c6:8f:21:b4:bd:9b:08:00:a5:09:0d:7c:e0:f9:b5:c7:ca:cd:
d3:43:8d:f9:cd:65:77:0e:1a:7c:1a:05:ac:9d:a0:5a:f5:9b:
f7:53:4f:32:20:28:48:36:6b:2a:38:10:07:d0:b3:48:94:5c:
11:af:e6:8e:06:28:e3:05:17:cd:48:96:72:53:dc:fd:10:75:
b5:f1:8e:09:cf:d9:4f:94:8f:2a:f4:85:b8:42:a6:8b:80:bb:
e1:ff:61:c4:12:93:7d:e4:98:bf:24:18:d2:15:71:f7:dc:d1:
55:b4:17:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:36:05 2025 by rpki-client