Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/4INnI75YjCTY5sN2hXdnDwu0Ds8.roa
File: 4INnI75YjCTY5sN2hXdnDwu0Ds8.roa (raw, json)
Hash identifier: lpfPN3nTieKrI+Ik5ovIRsKi/xmalAsTGfP+EVEcGZY=
Subject key identifier: E0:83:67:23:BE:58:8C:24:D8:E6:C3:76:85:77:67:0F:0B:B4:0E:CF
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10DF
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/4INnI75YjCTY5sN2hXdnDwu0Ds8.roa
Signing time: Mon 10 Feb 2025 13:56:34 +0000
ROA not before: Mon 10 Feb 2025 13:56:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 119.15.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4319 (0x10df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E0836723BE588C24D8E6C3768577670F0BB40ECF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2d:73:e1:37:87:a0:f1:2d:2b:90:f5:23:1b:
11:ba:8b:0b:87:17:f5:65:6e:dd:0a:7d:41:f8:11:
1c:82:bf:31:06:af:b4:97:ec:a4:d7:3a:03:34:51:
9b:e8:f2:19:cd:0c:cd:83:d6:62:e4:84:24:4b:c9:
14:4b:aa:ab:e2:80:c3:a8:2a:44:97:5f:3f:1f:70:
ac:c5:27:f6:87:1d:1c:94:57:86:85:16:77:c5:c9:
5e:9c:0f:c7:21:30:a5:36:e6:7c:ae:2b:c8:51:17:
6f:0e:c2:0c:12:a3:f4:a8:0d:e7:16:d0:fa:9f:24:
38:ae:91:c9:94:1d:fc:81:c6:76:ec:08:dc:1e:51:
17:44:56:77:16:de:6e:a7:49:9a:7d:78:cb:9f:10:
de:31:6e:30:48:dc:77:2e:84:6b:4e:d7:af:b1:9b:
99:a2:3b:0e:49:27:7a:11:83:81:fa:1a:c0:33:27:
81:dd:98:e6:d5:d2:58:8b:77:52:f1:ce:29:3e:ac:
ed:0f:78:55:6e:bf:7b:e6:51:aa:27:e5:ba:e4:a6:
58:e0:69:f4:d8:cc:0e:23:1f:4a:2c:fd:da:e6:9a:
cd:d5:35:da:4a:a3:27:c8:8e:a5:f7:0a:bd:b0:a2:
52:c0:77:b0:30:6e:73:7e:36:82:ef:b3:d8:8a:9f:
d3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:83:67:23:BE:58:8C:24:D8:E6:C3:76:85:77:67:0F:0B:B4:0E:CF
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/4INnI75YjCTY5sN2hXdnDwu0Ds8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.200.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:4f:b7:c0:82:b7:e4:c5:3e:bc:55:5f:3d:1e:be:0a:c2:d1:
f5:f1:e8:48:92:63:9f:e4:ab:33:a8:4a:cc:ab:7f:08:4c:46:
1f:46:3a:94:69:04:70:3a:a6:1f:82:95:1b:a8:d7:30:95:f8:
f7:b6:79:92:ed:ad:95:c1:2d:0e:4c:6d:5e:9a:ca:4c:57:1e:
bf:cb:b2:31:c4:c0:1f:1b:7e:4e:d8:99:0b:ad:e9:30:7f:dd:
e1:65:32:5b:bd:bd:b2:4b:bf:52:cc:61:46:13:ca:18:19:69:
1f:73:26:5b:59:da:c4:3a:65:f9:73:81:0c:ff:0a:e3:2a:c6:
0d:e0:9a:d0:b1:09:06:1d:86:1c:6b:91:e9:de:d6:fc:f1:b7:
df:e0:aa:cd:0c:88:60:85:ce:65:1d:e6:e1:11:e3:de:c4:e4:
8c:d1:92:04:9a:91:0d:a5:f5:9c:c9:a4:5e:11:ec:77:4d:71:
2b:40:63:95:cf:47:d0:1b:c2:c1:b4:6c:fc:7c:19:e7:ea:0d:
a7:f1:b0:6a:b1:3f:b3:77:28:f5:63:e3:93:da:24:5b:3c:64:
ba:fa:de:f0:c0:1e:14:54:4e:5d:e4:df:f0:e5:0e:2f:74:b1:
38:02:b8:e9:7e:c6:14:2d:ec:ee:b7:1d:6d:c2:bd:3d:50:11:
0a:ba:d1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:26 2025 by rpki-client