Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/3Wqfg03si-1IgP1Iuw1N2xFNaIw.roa
File: 3Wqfg03si-1IgP1Iuw1N2xFNaIw.roa (raw, json)
Hash identifier: TZJ/NZdUPl/Fml3tKKBIKVDDJKY0spbQNpVB+uAGP3Y=
Subject key identifier: DD:6A:9F:83:4D:EC:8B:ED:48:80:FD:48:BB:0D:4D:DB:11:4D:68:8C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10FA
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/3Wqfg03si-1IgP1Iuw1N2xFNaIw.roa
Signing time: Mon 10 Feb 2025 13:56:40 +0000
ROA not before: Mon 10 Feb 2025 13:56:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 113.61.128.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4346 (0x10fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DD6A9F834DEC8BED4880FD48BB0D4DDB114D688C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c6:d1:b5:70:45:da:77:05:6a:1b:d3:e0:6f:
66:d5:72:9f:5b:c1:81:36:ab:b6:79:11:6a:99:7a:
f7:9c:23:b0:00:25:40:84:65:4b:09:e8:56:ac:05:
df:ab:83:ba:e8:51:96:cb:58:93:6c:fb:aa:9e:95:
35:a5:5c:47:70:22:c8:89:2d:a5:a2:37:50:1c:49:
45:ae:d1:e5:52:d9:d3:3b:7f:c6:5e:af:f4:28:48:
87:97:4e:62:25:1a:3f:55:27:5c:42:69:60:66:ce:
43:9c:c8:72:a3:3a:9d:ee:80:2b:a0:78:b6:8c:76:
1c:7e:b8:2b:c9:94:60:fa:f2:07:99:92:c0:23:a4:
e7:62:16:0e:53:3a:81:aa:51:9f:a0:23:5c:88:00:
3a:2e:3e:1d:5b:b0:eb:e3:2a:fc:17:ac:00:22:05:
52:ec:89:ff:a2:5a:40:6f:ed:f4:ad:39:9f:41:5d:
98:a0:68:a1:84:87:62:cf:1f:1f:f9:5b:20:8a:93:
5f:39:95:93:0a:d7:44:32:5b:e4:6b:77:c1:9d:3f:
fd:49:b0:18:15:b2:f6:95:69:13:2d:ec:f9:39:7f:
6b:8d:c0:ea:32:bd:57:9e:c3:b7:cd:6f:bb:75:d7:
a4:79:fd:3d:65:b3:2d:10:76:92:67:fe:94:be:51:
d7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6A:9F:83:4D:EC:8B:ED:48:80:FD:48:BB:0D:4D:DB:11:4D:68:8C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/3Wqfg03si-1IgP1Iuw1N2xFNaIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/20
Signature Algorithm: sha256WithRSAEncryption
31:62:1c:e6:24:b4:1a:75:f0:b0:4f:e1:59:69:31:dd:71:96:
64:e9:8b:34:2a:4d:46:75:1a:41:a0:f2:2d:72:7f:fa:9d:44:
29:13:e6:25:26:e9:13:c3:21:47:f9:af:6c:d2:51:e6:bb:a1:
59:3d:62:0a:df:65:74:e9:43:a0:6c:e4:90:24:ba:ff:c4:e0:
f4:2a:87:35:8f:19:e7:fd:1e:5c:6b:83:e2:b1:a9:01:1d:3c:
44:da:96:9a:a7:cf:8b:db:5a:bf:b1:63:b2:83:18:44:b2:a9:
1a:82:e6:ae:0d:45:23:bd:f2:6c:11:30:5f:ab:4c:c8:62:5b:
2f:28:74:35:f3:78:f2:dd:e8:1a:ce:b2:ec:e4:1b:61:cf:ca:
06:59:8b:a4:b0:7f:21:bd:8c:09:fd:65:41:42:70:01:3d:3d:
3a:9e:f0:06:30:70:0f:6f:90:1f:a9:4c:fc:b6:d1:67:68:3e:
85:4d:ed:df:d1:be:32:75:c7:71:41:a6:f6:02:e0:70:8c:80:
f6:b2:79:9b:06:16:ab:1e:68:60:47:95:e1:49:18:e0:84:08:
9d:5e:5e:35:61:96:44:1e:40:28:19:da:15:a7:e2:5d:ec:e2:
aa:f0:d6:ae:b5:ee:e4:fb:0d:34:44:a7:19:61:0b:5b:49:47:
54:09:4e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:07:59 2025 by rpki-client