Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/hEz43O_lX17JLUmrooUURvfL7As.roa
File: hEz43O_lX17JLUmrooUURvfL7As.roa (raw, json)
Hash identifier: fJHPvNSrFQAeCpwjowN0NSPAPBsEIDrmaa9xg2MBtCk=
Subject key identifier: 84:4C:F8:DC:EF:E5:5F:5E:C9:2D:49:AB:A2:85:14:46:F7:CB:EC:0B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10E7
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hEz43O_lX17JLUmrooUURvfL7As.roa
Signing time: Mon 10 Feb 2025 13:56:36 +0000
ROA not before: Mon 10 Feb 2025 13:56:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 113.61.160.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4327 (0x10e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=844CF8DCEFE55F5EC92D49ABA2851446F7CBEC0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8d:22:29:28:6f:62:45:ed:df:48:98:ff:33:
09:cd:0a:78:31:79:6c:b4:b9:8f:14:1c:c2:8e:13:
94:77:23:46:21:bc:eb:a9:14:16:8e:4a:95:d0:1e:
f6:53:c0:89:0f:4a:33:f9:1e:71:fc:b4:8d:03:9a:
ce:d0:b2:17:f7:64:ef:57:8e:bf:3f:93:72:21:af:
75:69:71:a7:66:45:4b:92:00:3c:4e:33:04:58:6c:
62:f5:9d:68:85:b6:25:74:73:40:00:4c:65:41:42:
ed:c3:c9:6f:1f:a1:a4:71:28:d9:b1:21:17:6c:84:
cb:04:0d:15:a7:b2:6e:c5:14:0f:2e:75:87:2b:3f:
12:fa:26:b4:8d:a6:4f:e9:9d:94:15:16:f7:f3:69:
27:60:ba:5b:50:2b:95:fc:e5:ab:14:fb:84:dd:41:
1b:74:5e:e5:54:08:7a:96:13:3e:a5:5c:e5:76:5a:
3f:65:0e:03:8b:ef:41:24:20:9e:6a:d2:fd:d7:63:
29:ba:76:ba:8c:c9:92:1b:79:18:18:86:3f:48:16:
4a:11:23:b4:14:52:d7:14:65:72:84:ae:ce:3d:db:
85:56:ed:92:de:10:e3:bc:2c:aa:9a:80:95:a8:3d:
75:f8:15:dd:38:1e:f4:b4:8b:81:14:06:22:f7:24:
d0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4C:F8:DC:EF:E5:5F:5E:C9:2D:49:AB:A2:85:14:46:F7:CB:EC:0B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/hEz43O_lX17JLUmrooUURvfL7As.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.160.0/19
Signature Algorithm: sha256WithRSAEncryption
56:fb:1c:bb:e4:6c:fd:1d:60:c7:f2:a9:1c:a9:98:0d:98:f4:
c3:ae:f8:9f:c2:0a:c2:8f:21:ef:67:fe:46:60:15:cd:7b:5b:
54:3a:26:6b:71:10:f1:50:56:d1:8b:c8:b9:4d:2f:f3:d9:f6:
7e:49:9e:3f:9c:a8:da:ed:04:b3:73:10:71:59:c4:1a:9c:30:
d7:74:d3:3b:cd:3e:3e:1d:4f:86:02:be:2e:7d:fc:bb:fe:91:
96:b6:a1:1f:ac:8a:dd:fc:2c:e3:5c:96:8e:e1:ec:4d:30:7d:
a4:ca:64:c9:7d:a4:fc:4e:28:1f:89:a9:b5:b6:5e:b3:6d:cb:
ca:86:f2:8b:61:ef:42:96:20:4e:62:27:e1:6a:bc:1b:6c:3b:
09:0c:33:49:56:cd:9b:85:af:94:3e:ad:fa:2f:b0:8d:91:9b:
19:d7:a6:61:2d:53:da:20:52:76:75:bc:6d:0d:c1:3c:76:d4:
c6:5a:15:6b:f4:46:99:03:0e:8d:91:c8:a9:3f:e9:94:55:5c:
cf:e9:d8:d9:6f:98:ea:a6:7b:cb:73:34:b0:34:6f:d6:7e:e7:
a4:ca:70:0a:1c:a5:5d:6c:f4:f0:0b:20:2a:78:2f:6f:f9:8b:
28:fa:67:06:09:f1:07:66:e1:82:d1:1a:81:13:ce:f9:84:33:
ba:e9:4e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:09:59 2025 by rpki-client