Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/YwCQfoQ7s3l211gdBvorygJDorI.roa
File: YwCQfoQ7s3l211gdBvorygJDorI.roa (raw, json)
Hash identifier: nlqn0sVOJGzwFCv0XGYbG41dG6Dd0VaChOni3tG/N6I=
Subject key identifier: 63:00:90:7E:84:3B:B3:79:76:D7:58:1D:06:FA:2B:CA:02:43:A2:B2
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10F0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/YwCQfoQ7s3l211gdBvorygJDorI.roa
Signing time: Mon 10 Feb 2025 13:56:37 +0000
ROA not before: Mon 10 Feb 2025 13:56:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 113.61.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4336 (0x10f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6300907E843BB37976D7581D06FA2BCA0243A2B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4b:10:52:8a:d8:6d:c4:7c:44:78:29:68:3d:
6c:39:ff:80:f4:1f:d2:94:49:33:f6:8a:67:88:23:
98:a7:0b:5a:bc:8c:3d:98:84:a0:52:40:a4:a1:35:
7f:f1:cb:68:04:ec:54:be:28:09:8e:ac:77:e5:18:
a6:49:e6:02:c1:0d:d7:5d:83:22:f8:83:ae:26:2a:
7b:e8:29:ab:9a:62:66:f6:60:9a:68:d0:00:22:60:
d7:48:9e:5f:bb:51:02:0c:f5:eb:44:56:74:4b:b7:
b4:52:e0:1a:47:b9:22:56:3d:aa:6f:0e:1a:88:c9:
d0:83:08:31:62:e4:83:95:b7:d2:4c:6c:85:9f:3c:
1c:a0:06:79:70:cb:bc:9d:87:ed:99:b2:67:ec:0c:
cf:a7:36:1f:a1:d3:48:0b:e1:7a:2f:4f:88:c1:79:
ca:09:ce:5a:47:9d:fa:e5:ce:2f:fd:8d:fb:5e:bf:
09:ca:83:d4:2c:85:ef:62:0e:00:a0:0e:bd:28:04:
ae:01:78:5a:19:09:15:d1:b5:b2:ae:6a:c0:a2:c7:
cc:e3:71:ee:59:3a:77:fe:41:d3:af:ed:fa:bc:32:
42:e0:65:70:46:2a:9f:f1:61:c7:f8:85:bd:5f:b7:
1d:9f:10:c5:dc:4c:9d:cc:fe:15:51:1f:cc:f9:8a:
72:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:00:90:7E:84:3B:B3:79:76:D7:58:1D:06:FA:2B:CA:02:43:A2:B2
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/YwCQfoQ7s3l211gdBvorygJDorI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:fa:25:a6:f8:c5:16:7b:2a:7c:20:a8:2a:2b:d8:67:2b:1a:
24:26:ae:ab:b7:97:89:44:3b:d8:24:70:ed:83:b2:8a:2f:49:
0c:ec:8c:7d:6f:50:80:4a:fd:b9:bf:8f:5f:8d:6a:0b:78:a0:
ff:d1:31:60:bc:2f:ce:8e:0f:d0:d7:1e:3a:16:cc:72:a5:da:
be:b7:53:7d:2c:d7:58:77:91:b9:9c:88:6d:10:5f:10:60:0d:
e9:b6:21:16:f7:ec:a0:4b:b8:77:10:ad:5d:d5:34:13:82:ee:
75:af:fe:89:fa:54:36:2d:d5:db:c1:b6:84:2f:2a:74:d1:e9:
78:4d:27:51:46:99:87:c4:25:a5:9e:b7:04:b2:eb:69:e9:76:
0c:e1:11:f5:34:19:89:8c:64:ff:d1:d3:f0:94:67:01:86:36:
ca:72:7e:bb:35:3d:4c:b5:d3:23:2c:55:51:99:84:ca:8b:25:
1e:5d:6c:e6:73:fe:80:37:72:cc:ee:c4:c6:70:ad:17:a0:4e:
76:e1:d0:5a:8e:5d:3d:3a:86:53:73:95:4f:91:9f:97:f5:19:
44:e4:e7:6c:35:f5:8c:12:32:2c:c5:71:4f:fb:0a:e8:af:b4:
0b:ec:0b:aa:fe:b8:7b:0c:21:64:cd:68:75:ec:da:06:8a:8c:
03:a8:99:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:07:39 2025 by rpki-client