Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/sAFnBY-CFuNaKfucHGwJ6ilZDIg.roa
File: sAFnBY-CFuNaKfucHGwJ6ilZDIg.roa (raw, json)
Hash identifier: ghi8z7hbimdKOa17oRi+ZWL5Wv6/GsL4nWU+n8KFZ40=
Subject key identifier: B0:01:67:05:8F:82:16:E3:5A:29:FB:9C:1C:6C:09:EA:29:59:0C:88
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10C0
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sAFnBY-CFuNaKfucHGwJ6ilZDIg.roa
Signing time: Mon 10 Feb 2025 13:56:28 +0000
ROA not before: Mon 10 Feb 2025 13:56:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 111.67.48.0/20 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4288 (0x10c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B00167058F8216E35A29FB9C1C6C09EA29590C88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:16:a9:16:a9:ec:6c:5b:8a:97:00:7f:3c:6f:
81:1b:43:63:62:3b:da:54:d6:04:5d:67:d1:be:f9:
b9:50:f2:48:02:ae:31:17:38:fd:48:ed:af:3c:dc:
51:f7:b8:db:ff:cc:5d:eb:c0:e6:ba:b5:bc:c2:6f:
ec:94:e8:a4:9d:a6:88:4b:f3:dc:b1:89:82:8f:18:
1b:66:99:9e:7e:6f:b6:75:7d:56:c2:b9:17:61:13:
6b:b4:b5:05:80:c9:45:49:5d:69:bb:fd:0c:e1:db:
d2:8d:5c:d3:c6:1b:22:3c:4e:03:06:eb:8a:f8:21:
06:6a:2d:ea:93:d6:a2:20:92:24:82:2c:4b:57:98:
cd:98:9e:eb:59:85:5f:71:37:fd:b9:50:80:98:4b:
39:97:26:fc:0e:bc:70:04:e7:33:27:1c:9b:0e:11:
0c:2f:fc:cb:d1:d2:30:ee:e0:4f:75:a2:ee:ca:17:
fc:45:3e:69:33:b3:fb:b6:63:9f:12:a3:ff:2e:05:
48:31:e0:d5:33:12:bf:18:70:0c:b2:c8:0d:07:42:
86:34:8d:4c:00:f6:75:62:6d:b0:9b:d8:ce:0a:36:
d2:42:7f:37:b4:33:19:1f:f4:a0:20:5e:9d:eb:2b:
2e:97:82:93:af:96:03:33:05:e5:67:bf:eb:77:ee:
30:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:01:67:05:8F:82:16:E3:5A:29:FB:9C:1C:6C:09:EA:29:59:0C:88
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sAFnBY-CFuNaKfucHGwJ6ilZDIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.67.48.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:e8:6c:e3:77:75:15:24:c7:64:65:e5:7b:16:ae:e4:0f:47:
cb:75:ec:3c:d7:9b:53:cd:d0:c0:c9:73:42:f3:e5:1e:39:b2:
5c:69:8f:35:b7:96:e9:06:c0:1c:1f:e0:2e:eb:3c:65:e2:2c:
9a:00:de:95:d0:e9:aa:9f:53:74:6e:ad:37:af:92:d9:97:b8:
7b:fc:c5:f8:95:d2:9e:41:a6:26:e5:de:b8:82:77:cd:61:20:
67:a1:15:26:eb:f9:a7:0b:42:55:17:6a:75:c5:e9:a6:7f:b7:
c4:e7:85:b5:e8:97:0a:86:46:27:a3:f3:38:ed:f2:83:17:30:
29:fc:69:60:bc:e2:c5:e9:26:8a:bb:26:46:2c:d2:e5:0d:4d:
9b:cf:a8:6a:fb:4c:89:c3:7f:47:5a:22:55:31:a5:9d:0a:5d:
0e:0e:cd:c0:d7:57:51:e9:60:9d:c0:11:83:8f:92:61:f6:f3:
7e:27:8e:48:f5:4f:4f:1d:c9:c1:0e:ad:e6:84:ab:00:b6:93:
c7:50:ad:1c:5c:70:ea:7a:ae:3f:40:29:47:21:3b:09:57:6e:
27:c0:27:7a:bb:71:fd:2e:24:90:f5:52:74:d0:9b:0a:f0:ed:
74:a9:ad:cd:ce:21:e9:36:25:1d:a7:8a:2e:b2:22:bd:f4:29:
35:26:ad:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:06:13 2025 by rpki-client