Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ofFRqIK65pkGXOYgaOhIQAClV0c.roa
File: ofFRqIK65pkGXOYgaOhIQAClV0c.roa (raw, json)
Hash identifier: IAPSy+fnFSOHPuIbp07wADxlU/WYIIN7gjA9ywct014=
Subject key identifier: A1:F1:51:A8:82:BA:E6:99:06:5C:E6:20:68:E8:48:40:00:A5:57:47
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1118
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ofFRqIK65pkGXOYgaOhIQAClV0c.roa
Signing time: Mon 10 Feb 2025 13:56:49 +0000
ROA not before: Mon 10 Feb 2025 13:56:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 113.61.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4376 (0x1118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A1F151A882BAE699065CE62068E8484000A55747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:41:3c:46:db:76:ac:31:05:c9:b0:f1:f6:5d:
ae:1a:2b:54:89:21:d4:59:dd:18:ab:1a:9c:8e:84:
ac:59:84:df:8e:57:7c:dc:52:fb:3e:0c:da:bf:20:
33:bb:51:13:7f:12:fe:0a:2e:e2:b7:4e:16:84:81:
8d:8f:fa:0f:e2:ae:3e:04:80:20:f3:35:92:07:ad:
7b:a7:a3:f7:1c:14:c1:a1:1f:17:54:40:a7:3f:78:
a8:93:39:de:7c:5a:af:f2:90:3c:5c:f4:67:9d:08:
ba:2a:24:f9:87:29:c6:a1:1d:9c:3d:6b:1c:28:68:
bf:86:53:17:9f:2b:cf:22:9e:fc:bd:4c:0d:14:d7:
22:9c:84:51:5e:89:b8:df:53:d7:37:78:cd:3e:f9:
df:d2:92:85:3b:5d:d2:d7:90:fb:95:99:9d:32:4c:
16:ea:84:f8:13:d4:e3:3a:0d:50:f5:d3:7a:a1:ba:
77:89:c6:e6:47:9c:c6:52:17:b1:cf:e9:22:d9:23:
57:59:35:0b:34:be:59:e5:e7:f1:45:3b:75:37:95:
90:53:73:2f:1f:c8:df:e6:9a:d8:91:c6:65:99:d4:
b2:ad:b0:5c:8f:49:c5:21:6d:eb:28:22:ba:9b:e8:
ad:a5:13:5e:26:be:f0:4a:81:aa:75:51:05:3a:49:
d7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F1:51:A8:82:BA:E6:99:06:5C:E6:20:68:E8:48:40:00:A5:57:47
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ofFRqIK65pkGXOYgaOhIQAClV0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.224.0/20
Signature Algorithm: sha256WithRSAEncryption
89:4b:84:7e:38:a9:c5:1c:e5:a5:5b:fc:d6:0f:eb:cb:29:6f:
56:91:f5:c1:4e:6b:64:eb:ed:81:27:b4:10:10:8b:48:76:f9:
6b:53:6f:35:9d:eb:26:97:d1:48:af:68:0e:3b:5e:9b:e9:ab:
de:9f:0e:8f:89:86:b5:5b:fa:2d:fe:c7:5f:29:76:8e:08:a2:
fe:fc:b9:34:37:9e:68:e5:e0:48:3a:0b:b2:27:b1:aa:79:be:
46:0e:f9:6a:c7:2f:bb:bd:06:4b:8c:e9:d1:20:9c:ed:a4:74:
a3:5b:30:93:62:f2:25:bf:86:f4:35:c3:89:e9:d3:6a:35:26:
a8:d4:15:7c:a5:80:e9:07:b0:64:91:e0:c0:60:61:00:7a:24:
bf:60:aa:58:a0:46:5f:f7:c2:60:c7:fe:d3:43:97:bd:c7:16:
c1:da:b0:fb:75:ef:5a:94:d9:ea:71:9a:92:f4:79:6a:d7:57:
53:19:1a:db:d5:29:88:21:3f:cf:06:05:e3:c4:c4:3c:13:a1:
42:6b:07:2f:4e:ab:dd:c4:94:34:c7:be:d1:ac:5d:d2:12:b5:
8b:5c:15:58:d8:9f:c4:d1:33:f3:26:6f:c6:e3:b7:0b:c3:87:
f3:d2:77:da:af:99:e4:ba:37:e1:78:5d:80:d4:06:17:f5:f8:
98:da:47:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:10:34 2025 by rpki-client