Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/9HPizeTXrkXvLLhKejozofilBGM.roa
File: 9HPizeTXrkXvLLhKejozofilBGM.roa (raw, json)
Hash identifier: jxiBttzsvks0Dhr8awWkmEh14Mub0dOibk0TcTdmFtk=
Subject key identifier: F4:73:E2:CD:E4:D7:AE:45:EF:2C:B8:4A:7A:3A:33:A1:F8:A5:04:63
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10D6
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9HPizeTXrkXvLLhKejozofilBGM.roa
Signing time: Mon 10 Feb 2025 13:56:32 +0000
ROA not before: Mon 10 Feb 2025 13:56:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 113.61.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4310 (0x10d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F473E2CDE4D7AE45EF2CB84A7A3A33A1F8A50463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:01:f4:f6:fc:35:c9:3a:f4:3f:0e:ec:45:56:
60:40:bb:02:97:9b:8e:c1:29:cd:e7:da:25:5f:6a:
68:ab:7f:30:9a:ed:3f:71:98:95:50:87:b1:fa:35:
b2:df:89:27:b0:84:3f:bc:6d:60:83:bf:c0:7e:2b:
3c:ac:b7:75:f5:78:28:25:d5:19:08:c5:66:79:fd:
29:87:66:ec:fc:40:3c:5a:19:37:17:f8:6c:17:3d:
30:04:61:95:84:eb:5e:91:56:72:6a:84:38:e4:b9:
f9:8d:94:0b:35:70:e6:64:03:1b:7d:7a:b3:57:1e:
ed:0e:48:bc:25:7c:b1:fe:17:85:c0:2b:05:e6:56:
c1:a8:18:fc:3c:42:52:44:26:07:27:8f:57:30:56:
a1:86:72:d5:e2:5f:40:63:94:26:c8:5c:6b:2d:7e:
10:31:bf:4e:ef:bd:19:6f:5d:29:aa:3d:e9:bd:e3:
5f:c2:0a:6f:1b:7a:df:e8:46:5d:c8:43:9c:71:1c:
08:b7:aa:31:8f:2c:4c:29:4d:fc:d0:1b:c5:49:bf:
6e:03:9f:19:d9:a9:65:02:14:3c:ba:94:ff:bd:48:
00:1a:db:7c:a8:4b:0a:ca:67:f1:cb:19:16:05:a5:
d0:57:f6:dc:d7:cc:21:35:d3:90:b0:df:1d:19:c9:
73:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:73:E2:CD:E4:D7:AE:45:EF:2C:B8:4A:7A:3A:33:A1:F8:A5:04:63
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/9HPizeTXrkXvLLhKejozofilBGM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.224.0/19
Signature Algorithm: sha256WithRSAEncryption
a1:ef:ac:7b:36:33:2c:3e:e4:21:12:83:0c:2b:f3:f9:65:fe:
c7:55:5a:4a:62:cd:df:c5:b2:ed:ba:55:3d:4b:b3:a8:11:83:
de:52:be:e9:a1:a2:55:59:93:85:27:1f:ec:12:c1:e3:17:db:
c7:17:fe:d1:78:7f:49:d7:d3:51:0d:e6:83:c0:85:05:6f:df:
c4:e5:00:ea:1c:39:b9:eb:07:87:71:20:e9:10:bb:b2:75:96:
41:ce:f3:68:86:17:3d:51:32:14:f8:f8:c7:26:a7:84:94:f2:
2a:aa:f3:b9:c5:ae:64:0f:45:a5:87:fb:c5:7e:a0:4e:5c:7a:
35:aa:bb:dd:dd:f5:fd:ed:18:73:6a:48:ac:20:92:c6:71:15:
75:78:4c:2f:62:18:2c:64:68:4e:36:a2:97:ca:d5:3b:ec:32:
89:32:88:14:fc:47:04:33:86:a2:a6:4c:a1:24:5f:f8:1e:2f:
ef:d2:38:de:2b:63:71:3b:3c:3c:2a:95:c6:f3:5c:18:aa:f4:
b4:13:5e:00:fb:c5:34:08:68:52:2f:db:c7:fc:4c:89:8f:14:
68:0f:cd:3d:12:66:15:48:f3:52:16:15:44:6d:78:6c:2a:ea:
82:5f:bc:3f:7f:dc:48:00:ac:94:19:8d:04:33:ea:24:85:15:
dc:05:9f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:07:34 2025 by rpki-client