Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/pYZ7FEJoXUJU3PdMROMXyuiqFss.roa
File: pYZ7FEJoXUJU3PdMROMXyuiqFss.roa (raw, json)
Hash identifier: oYJeB53k8PFgq+dEqZkBFFpjD3H4kCBDKIYIPimZBTk=
Subject key identifier: A5:86:7B:14:42:68:5D:42:54:DC:F7:4C:44:E3:17:CA:E8:AA:16:CB
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10E0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pYZ7FEJoXUJU3PdMROMXyuiqFss.roa
Signing time: Mon 10 Feb 2025 13:56:34 +0000
ROA not before: Mon 10 Feb 2025 13:56:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 27.96.252.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4320 (0x10e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A5867B1442685D4254DCF74C44E317CAE8AA16CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5b:bf:5a:e6:0a:d3:77:18:eb:07:3b:9e:65:
c7:df:d0:44:4a:23:a2:b3:c9:f2:75:48:4e:d1:29:
d8:9a:5f:01:a3:72:cb:4c:a8:f3:30:61:db:81:54:
c9:ec:a6:a3:69:8a:40:c1:c1:d8:70:1e:f8:73:cd:
7d:ee:f5:a6:87:22:6d:58:98:d7:5e:5f:a4:fc:9d:
29:5a:21:6a:2c:2c:ba:96:2f:15:59:7b:23:3b:14:
46:a2:27:01:96:cd:a5:1d:70:d5:9a:18:02:40:c5:
0d:02:e4:55:85:0c:4a:03:30:c2:f6:f4:b8:4f:bd:
d7:3f:17:8b:2a:eb:da:2d:85:e6:f2:01:25:01:52:
a0:fd:ba:5c:c2:c5:e5:38:4f:5a:0e:d9:fb:e0:d0:
42:71:22:94:02:c3:71:b8:8d:93:38:da:44:f0:56:
e0:a5:b6:18:58:4b:84:d4:7b:99:43:79:85:f2:7f:
12:3a:c4:a3:65:74:81:0a:61:36:f5:6f:65:72:ea:
6d:73:df:0a:c1:0e:cf:f6:24:d0:00:10:b3:36:0c:
fe:9d:9a:3a:98:43:57:d3:23:72:bf:ab:6b:c1:d2:
18:8e:25:3a:84:ea:8d:a4:97:32:c3:d7:a4:e1:9b:
17:15:b8:65:01:a0:bf:a4:a4:9a:56:db:ea:0c:eb:
31:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:86:7B:14:42:68:5D:42:54:DC:F7:4C:44:E3:17:CA:E8:AA:16:CB
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pYZ7FEJoXUJU3PdMROMXyuiqFss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.252.0/22
Signature Algorithm: sha256WithRSAEncryption
71:80:38:02:dd:b1:55:cc:c1:cc:b2:35:ec:21:40:83:82:d5:
f8:a5:c5:11:b5:a2:1b:c4:00:05:38:04:42:c6:3b:af:24:a0:
17:23:ec:f9:7d:e6:af:b8:0d:8d:17:9e:06:51:f8:8e:51:29:
9a:29:b6:f9:30:c1:ed:83:03:9d:93:7f:00:7b:92:e6:b0:2b:
b4:33:99:2e:62:a4:4a:5e:d0:dc:70:34:0a:43:bf:bc:07:34:
5c:f1:79:6e:78:e2:9d:1c:77:16:17:85:77:cc:7c:a0:07:88:
73:9c:04:7a:2d:15:76:38:c1:d2:8d:15:02:a6:56:30:ac:b1:
73:69:02:af:a6:92:b9:75:4e:b4:bd:18:81:90:a2:8d:b9:50:
5f:ed:36:62:c7:06:51:65:77:d5:4d:ac:63:93:4f:28:3c:33:
78:59:dc:17:6a:89:17:63:d9:0f:cd:76:aa:66:a7:ab:6d:c7:
dc:c1:e3:3d:3b:53:5c:2a:e6:4b:08:43:e3:d4:c5:51:f0:18:
5d:3d:52:5c:f1:e4:e6:42:75:f9:45:3c:cf:63:f6:f8:15:d5:
b3:68:85:61:55:d4:48:12:a3:a4:3c:e7:48:b3:15:90:7d:35:
a2:4f:89:d7:b5:7f:38:d8:f0:38:aa:e0:bd:6a:b3:f0:db:cd:
84:bb:58:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:02:28 2025 by rpki-client