Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/_jPSwawiqUepriX6nia6gnUNu6M.roa
File: _jPSwawiqUepriX6nia6gnUNu6M.roa (raw, json)
Hash identifier: yKjTUu4uWpT/rFQKwGF47hP2alR4NpXG/1O0Ch/RslQ=
Subject key identifier: FE:33:D2:C1:AC:22:A9:47:A9:AE:25:FA:9E:26:BA:82:75:0D:BB:A3
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10D3
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_jPSwawiqUepriX6nia6gnUNu6M.roa
Signing time: Mon 10 Feb 2025 13:56:31 +0000
ROA not before: Mon 10 Feb 2025 13:56:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 27.96.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4307 (0x10d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FE33D2C1AC22A947A9AE25FA9E26BA82750DBBA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fc:27:98:db:71:5a:c1:67:15:a9:40:db:36:
9d:cd:a6:3a:71:4b:00:7b:2b:51:3f:08:f4:b6:b1:
11:60:d2:ff:90:d9:d5:c4:c6:2f:10:16:ca:19:1d:
c7:53:97:34:a2:b1:6f:91:dd:28:6a:78:de:5b:33:
c6:fc:3a:2e:e9:2b:13:64:d7:d8:c6:7a:b8:db:80:
af:fd:63:46:c8:13:04:6f:5b:61:68:95:cb:b6:42:
41:0e:5d:cd:c9:ca:93:5f:e0:7a:c1:a1:73:3f:04:
2a:a1:e6:4c:d4:4a:cf:0a:a0:98:dc:15:16:6c:d8:
67:6a:78:ae:ea:4e:61:4b:8c:46:ec:d5:ad:85:b7:
3b:86:76:9f:1a:d5:7f:a3:ac:8e:d5:bb:fc:49:e6:
e9:ba:b6:0a:f8:20:10:77:23:51:c6:1a:85:63:92:
53:0e:9e:62:78:43:40:b6:a6:03:aa:99:32:c1:9f:
7d:ed:0f:b2:47:09:e5:70:bd:70:9d:12:c0:db:fc:
41:7d:58:ea:37:44:f2:03:f9:df:ba:fe:10:34:ee:
f7:ac:02:09:79:76:a1:46:ef:70:52:22:22:3e:7f:
30:8f:7a:d5:6f:6e:9c:bf:56:76:9d:be:47:0c:a3:
02:65:32:89:6a:99:84:c6:3c:60:58:a5:e1:ca:40:
88:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:33:D2:C1:AC:22:A9:47:A9:AE:25:FA:9E:26:BA:82:75:0D:BB:A3
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/_jPSwawiqUepriX6nia6gnUNu6M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.244.0/22
Signature Algorithm: sha256WithRSAEncryption
24:ec:11:67:d6:4c:67:86:35:b7:48:f9:96:b9:ad:bc:d6:cb:
d9:05:81:49:10:d6:e8:53:c1:35:c7:6f:6f:6f:c8:ac:d9:f6:
9a:c4:6b:f0:b1:f4:b1:48:8a:3f:bf:49:9e:36:b5:19:32:f6:
23:51:d5:2a:19:30:cd:db:c1:e5:44:de:ba:01:b7:52:15:b2:
4c:7c:90:d8:ca:89:2e:4a:84:92:14:98:69:72:fa:c5:69:b6:
61:07:c2:d5:da:bb:86:b9:d4:6b:4d:2e:be:97:55:f8:12:44:
3a:c0:73:88:45:21:b5:49:a9:b8:7e:3f:06:84:14:40:b5:cd:
04:82:02:ba:bb:b1:11:66:1f:75:c0:3f:fd:ca:45:3c:00:82:
52:78:bf:d2:8f:20:a0:e3:89:93:a1:06:2b:c3:94:fc:b6:12:
1c:e3:e5:7d:c5:d9:17:19:57:b8:82:b1:f6:f3:25:5e:d6:4f:
a0:73:c3:fa:de:f5:cc:52:f0:81:55:ff:dc:b9:82:f0:a1:db:
99:da:62:65:74:6f:3e:ab:22:07:8a:c1:e7:d2:aa:89:54:0e:
0b:c2:95:ac:cf:04:e2:41:0d:2f:a1:c9:b5:38:9e:7e:52:a7:
9f:2c:a7:cd:d9:96:ef:f3:21:a3:1e:15:75:15:c8:72:cc:03:
9c:b6:0e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:09:54 2025 by rpki-client