Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ECNm61tAXnA8fLpYozesV2XpbHI.roa
File: ECNm61tAXnA8fLpYozesV2XpbHI.roa (raw, json)
Hash identifier: pnNCySwO6uKKihRtE8cmKOcJ6KkirpgKhdxWXKjaF4I=
Subject key identifier: 10:23:66:EB:5B:40:5E:70:3C:7C:BA:58:A3:37:AC:57:65:E9:6C:72
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10C2
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ECNm61tAXnA8fLpYozesV2XpbHI.roa
Signing time: Mon 10 Feb 2025 13:56:29 +0000
ROA not before: Mon 10 Feb 2025 13:56:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 182.155.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4290 (0x10c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=102366EB5B405E703C7CBA58A337AC5765E96C72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:09:bd:b8:a8:bc:4a:5b:75:98:1e:a3:b3:
bb:c0:c8:86:e7:d8:50:d4:0a:e8:16:a2:e3:71:0a:
14:7b:fc:6a:ed:5d:ee:62:49:e0:c0:84:cf:ed:62:
de:20:84:62:3f:b3:55:0a:8d:27:00:83:8f:46:d7:
73:68:2b:e0:20:2b:3d:46:71:36:07:b6:06:a8:a4:
0b:b5:4d:8e:4c:d8:30:9d:d5:c9:c8:d5:45:03:e7:
a8:81:92:9d:7a:8b:e9:8f:dc:a8:d7:d8:3e:c0:05:
54:84:e5:5e:89:0f:08:41:9e:92:b6:48:f3:34:ee:
12:56:ba:20:d8:79:2c:ed:f9:54:69:64:57:7a:8f:
49:9d:b7:d4:52:6b:66:4c:44:37:13:28:12:83:05:
a1:21:8a:c9:3e:f3:3c:7d:fa:92:9a:4a:8c:78:0b:
3f:1b:2f:94:f2:71:f4:89:17:63:00:8b:b1:91:80:
bd:34:a6:62:c1:af:c7:9c:99:5e:8c:dc:c1:64:ed:
94:b9:51:3a:06:2e:e7:30:79:ca:69:f8:0c:f9:2d:
16:90:aa:56:a1:e4:a1:05:39:aa:c7:de:72:fe:cf:
0c:61:3d:46:b2:78:d6:11:dc:4f:9d:e3:eb:60:6e:
b6:1f:04:ae:9c:a4:e0:5a:6b:f5:01:36:cb:d1:fb:
7d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:23:66:EB:5B:40:5E:70:3C:7C:BA:58:A3:37:AC:57:65:E9:6C:72
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ECNm61tAXnA8fLpYozesV2XpbHI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0e:23:11:08:ae:2f:d2:41:e3:e3:f4:4b:15:4c:12:e5:b6:da:
84:6d:7b:88:7e:46:4b:91:9c:08:23:8f:c7:25:57:79:00:82:
71:58:b4:a7:74:dd:31:70:95:d4:32:2f:0a:23:c0:a2:58:ad:
6c:55:88:2f:15:08:87:ea:65:2d:f7:b7:29:31:ea:89:28:59:
d2:89:2d:38:47:85:1c:17:7a:68:8d:ee:eb:81:3f:ff:fd:11:
bf:7c:ca:c7:59:0b:4d:fb:34:35:d7:08:51:ca:8c:20:5a:9f:
cf:94:37:c0:f9:48:b9:46:bf:3c:35:f8:b7:1d:6d:bb:f6:a0:
e8:b9:25:ce:21:58:46:a3:66:31:41:f7:33:0b:6a:a4:f2:45:
47:dc:ec:2b:c2:60:c0:50:aa:34:4b:9e:7d:a8:df:37:b9:98:
f4:51:86:a1:cb:06:36:d2:75:2e:d1:4c:22:48:4c:0e:f7:e1:
e6:3d:de:16:3a:2d:21:14:7a:7a:85:84:4e:7b:34:67:c7:30:
e8:95:f3:ab:79:d6:3c:89:7b:e5:12:a7:8c:dd:dc:58:f4:44:
f3:14:76:f5:36:51:cc:0e:b2:5d:40:eb:c2:44:de:6d:5a:67:
79:61:64:2f:50:53:09:4f:89:a4:11:c8:9b:a0:6a:ab:5c:00:
24:12:3e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:00:51 2025 by rpki-client