Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/QU-5F_M9Op2rGOKJpf0nJSBz6E4.roa
File: QU-5F_M9Op2rGOKJpf0nJSBz6E4.roa (raw, json)
Hash identifier: 6pkv+cUSA92RHX7gwiZbDcRfjXYsWzGs0oqUjkNrbMw=
Subject key identifier: 41:4F:B9:17:F3:3D:3A:9D:AB:18:E2:89:A5:FD:27:25:20:73:E8:4E
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10D9
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QU-5F_M9Op2rGOKJpf0nJSBz6E4.roa
Signing time: Mon 10 Feb 2025 13:56:33 +0000
ROA not before: Mon 10 Feb 2025 13:56:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 27.96.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4313 (0x10d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=414FB917F33D3A9DAB18E289A5FD27252073E84E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5e:09:30:2e:00:53:2c:20:bd:70:18:e3:15:
58:8b:3e:0d:79:cb:5e:57:33:ea:fa:04:3e:2b:86:
11:54:8c:2c:31:6f:46:92:62:00:99:a1:5a:d4:c2:
99:ba:59:c2:ae:c3:93:3b:e5:2d:3c:9d:1f:01:ba:
13:38:2e:1b:82:d6:4a:06:21:6f:d9:69:32:92:dd:
74:54:5e:df:fe:a7:33:a5:fa:73:97:04:fb:71:bc:
9d:55:78:4d:90:d8:00:83:f3:44:34:ce:4f:4e:a4:
05:36:ab:f0:07:12:25:87:c8:59:eb:cd:f0:19:00:
b8:df:de:91:33:04:54:59:26:7d:2b:23:51:6b:6f:
1d:a6:11:0d:de:dc:2d:44:1b:0b:6e:86:47:45:94:
84:85:d4:00:32:a3:2e:35:21:a8:05:60:79:d8:38:
0e:b8:0f:de:f1:2f:d0:35:1e:54:b3:08:d6:10:c7:
a4:45:4a:5b:2e:08:d0:58:3c:95:d0:6d:fb:02:9e:
1a:a6:d6:3f:92:d6:8c:30:90:c8:f1:e5:b6:38:bc:
b2:a9:23:ff:75:c1:ed:ae:1d:82:1d:4d:33:d0:6b:
3f:e2:6f:e9:bb:ff:ef:41:38:35:9f:87:af:a8:0a:
f3:45:ef:7c:1b:59:14:13:64:b0:c0:01:33:d1:84:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4F:B9:17:F3:3D:3A:9D:AB:18:E2:89:A5:FD:27:25:20:73:E8:4E
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/QU-5F_M9Op2rGOKJpf0nJSBz6E4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.240.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:2b:73:57:9b:de:80:7e:25:b2:bd:a7:f5:f7:ca:72:37:c7:
c5:71:8b:99:6c:57:8f:8b:05:2c:96:f6:de:75:a7:ef:b6:e4:
e7:b0:24:22:9f:70:72:df:04:41:5c:87:6d:c1:1d:60:7b:1f:
ec:cf:bf:dc:2a:ad:71:10:04:fe:aa:08:a3:98:49:60:ec:dc:
76:03:74:d4:b5:e6:50:9f:6a:38:5c:f0:fc:af:aa:d5:15:20:
20:0c:78:27:f9:6d:61:82:36:82:9e:b5:8e:f7:c4:50:cc:68:
a9:4b:88:60:bd:80:72:94:62:5f:f0:33:16:76:66:7b:1a:95:
a1:df:17:4a:91:26:93:fd:a7:89:33:8b:1f:2f:61:a1:01:41:
ec:eb:97:cc:5a:00:fa:4b:b0:44:b9:ca:34:bf:60:09:a3:25:
e0:d4:2b:50:c4:dd:40:88:2b:21:67:24:2c:09:bc:1e:b4:23:
f7:05:6d:33:03:b6:05:48:d2:e4:33:03:9f:da:31:33:a9:98:
ad:9a:ae:84:e8:5f:44:51:29:cc:df:12:bc:a7:a1:37:04:b7:
14:68:5b:bb:40:3e:a8:b9:17:1c:6d:3d:e7:e4:53:9a:9a:02:
77:77:fd:18:24:4f:ea:7c:27:2c:e5:19:bf:4c:49:70:1f:67:
18:1b:3a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:10:11 2025 by rpki-client