Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/odO3yrxLqXov8SVLn2Z8yauth0A.roa
File: odO3yrxLqXov8SVLn2Z8yauth0A.roa (raw, json)
Hash identifier: 59mQNKgrDqDqaFxuMZQt7fmImA+yY/+1qYcoyt1vnkY=
Subject key identifier: A1:D3:B7:CA:BC:4B:A9:7A:2F:F1:25:4B:9F:66:7C:C9:AB:AD:87:40
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1111
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/odO3yrxLqXov8SVLn2Z8yauth0A.roa
Signing time: Mon 10 Feb 2025 13:56:47 +0000
ROA not before: Mon 10 Feb 2025 13:56:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 203.222.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4369 (0x1111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A1D3B7CABC4BA97A2FF1254B9F667CC9ABAD8740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0a:b8:5b:b1:a7:cd:55:3a:e8:63:ab:75:e1:
36:07:ef:7d:29:36:d0:8a:5e:d2:71:79:93:b4:4b:
bb:cf:c2:78:0d:90:37:89:ab:af:66:df:6d:00:9f:
78:5a:e6:34:92:07:f9:00:29:78:68:26:1e:09:8c:
be:3e:43:55:d0:c7:ce:ea:66:61:e6:9b:36:65:49:
29:80:a9:3a:4e:ec:9d:38:a2:88:8b:18:fb:70:5c:
1c:15:24:85:02:3e:41:33:e2:1d:66:fb:53:fd:4b:
98:23:3c:c7:31:19:93:1c:db:92:c1:d4:df:9d:c6:
ab:d6:a2:9e:1e:71:1b:50:2f:ae:2f:06:f6:34:77:
2c:05:a4:3e:e5:b3:d0:62:ed:2f:2e:f6:66:24:75:
b1:d7:55:9c:57:62:1e:79:b0:3d:c8:40:d6:a6:b3:
e0:95:ab:aa:9e:e4:ee:2b:09:11:dc:97:08:f0:f0:
7e:d0:cf:14:b9:c0:34:3f:33:47:6e:9e:f6:b6:96:
a7:5c:e3:e2:88:88:14:55:9e:f8:94:3f:47:42:83:
8b:df:e5:ec:d5:33:34:90:ae:f8:5d:97:53:5d:f7:
80:2b:ab:5a:20:25:52:64:df:df:72:c5:ad:c8:22:
22:04:83:bd:3b:ee:e6:70:0a:78:2b:60:98:f2:25:
60:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D3:B7:CA:BC:4B:A9:7A:2F:F1:25:4B:9F:66:7C:C9:AB:AD:87:40
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/odO3yrxLqXov8SVLn2Z8yauth0A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.24.0/21
Signature Algorithm: sha256WithRSAEncryption
32:d0:8f:fc:85:a1:bc:90:38:6b:97:a3:3e:25:4f:64:d5:34:
bd:2f:96:72:ae:70:80:9b:ef:19:99:a9:6f:24:80:49:5f:cf:
1b:86:dc:a4:00:59:75:17:90:57:ff:f0:a6:5d:c7:8f:dd:26:
1d:47:3a:36:d4:6e:2b:b5:95:f3:f0:67:7d:b5:d2:6f:75:4e:
a9:9c:6e:05:c0:e4:b8:36:eb:70:32:65:f2:2b:f0:91:e3:13:
7c:7d:07:e0:47:8c:36:1b:c4:dc:24:f1:c6:24:94:33:43:9e:
ed:2a:9d:ba:d6:c6:2f:e0:5c:e2:4e:fa:eb:0a:b3:50:22:2d:
eb:be:43:70:84:d9:66:ec:bd:72:68:ca:af:d2:43:ee:75:93:
13:3d:5e:04:be:b6:a1:1e:47:4d:ae:ef:b9:59:57:19:cc:ec:
28:e5:60:91:c5:2b:09:03:4d:c7:ef:df:ee:bd:16:fa:ae:9a:
77:d5:66:95:53:6c:58:a2:e3:52:4c:d4:2f:60:ac:57:37:27:
01:17:df:34:31:6a:af:47:01:13:1f:93:2b:77:98:ee:a8:a5:
61:8e:29:29:c5:ad:f8:fe:96:fb:03:f3:e7:39:89:8a:97:12:
b5:a2:d4:17:3f:4c:fd:0e:f5:3e:b7:2f:60:cb:f8:db:ec:f5:
94:ce:02:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:06:15 2025 by rpki-client