Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/yS4_SneLXqPzs4x-2oren59ijVc.roa
File: yS4_SneLXqPzs4x-2oren59ijVc.roa (raw, json)
Hash identifier: 7Hl8isssHScAezWXY9If8ESS+8F+1XOeD03KcQ3v7aQ=
Subject key identifier: C9:2E:3F:4A:77:8B:5E:A3:F3:B3:8C:7E:DA:8A:DE:9F:9F:62:8D:57
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 10EF
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yS4_SneLXqPzs4x-2oren59ijVc.roa
Signing time: Mon 10 Feb 2025 13:56:37 +0000
ROA not before: Mon 10 Feb 2025 13:56:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 27.96.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4335 (0x10ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C92E3F4A778B5EA3F3B38C7EDA8ADE9F9F628D57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6d:ab:b9:3a:bc:47:5c:8e:b4:84:93:5b:fe:
a6:82:02:e2:76:0a:df:17:73:59:48:91:17:9c:47:
a4:87:ed:2d:83:48:40:c2:ee:8a:56:1a:2c:18:dd:
d5:95:5d:3c:57:2e:53:e0:88:b2:39:4b:22:3b:e2:
77:04:a5:05:70:91:a2:f3:bc:fe:ca:d5:50:2c:47:
2c:76:4b:0d:ec:e4:8c:fc:3d:5d:f3:b1:b8:9d:52:
45:33:7a:0c:2f:92:cc:cf:31:0c:2c:f3:8f:e2:ec:
9b:47:14:c3:41:dd:8e:0c:f4:37:36:fb:02:51:e3:
57:9f:2e:cd:c6:38:57:93:f4:b3:46:7c:b5:19:5b:
23:d1:5c:41:68:27:df:36:1f:53:b3:a1:8f:7b:8f:
71:00:0e:48:ba:b1:50:b2:32:5d:84:eb:4f:aa:58:
0d:61:71:c6:b9:02:85:59:72:1a:50:88:82:8b:0d:
04:f6:6a:14:e4:84:37:77:45:91:b6:27:29:c9:95:
8f:15:74:a6:ba:6d:7c:df:bb:cb:41:b4:1a:80:5b:
be:3b:71:13:42:fb:1f:eb:71:6e:7b:19:fa:35:bb:
fb:66:e3:bf:9f:2f:bd:a9:91:6d:9e:6f:15:60:95:
97:a0:10:ab:6c:6e:12:ea:6a:83:4a:9e:89:38:83:
7c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2E:3F:4A:77:8B:5E:A3:F3:B3:8C:7E:DA:8A:DE:9F:9F:62:8D:57
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/yS4_SneLXqPzs4x-2oren59ijVc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/20
Signature Algorithm: sha256WithRSAEncryption
31:ce:aa:fd:f7:2a:65:9f:19:16:f5:d8:35:ff:e8:af:e2:3a:
2d:7b:7b:a6:0c:d0:0c:9e:93:99:e6:2c:f4:0a:28:95:0d:66:
c4:ef:f3:09:34:1c:41:d8:aa:e3:92:5b:f4:e2:fc:b2:d3:b1:
5f:29:7b:a3:53:ce:4e:88:bc:54:25:d7:ed:bd:ce:f9:27:56:
cf:36:62:8b:86:a5:59:ef:aa:49:99:6b:09:39:36:6a:0e:f1:
72:23:4f:3e:f5:13:7f:d5:51:6a:03:72:66:fd:3b:ce:7d:a9:
c6:39:de:6a:1b:7b:d7:78:c1:bc:38:c9:7c:31:5a:18:ed:f2:
b6:52:e4:80:ec:63:2a:01:a4:15:0e:86:a1:02:57:a4:c4:a6:
81:c1:12:00:ea:4c:95:7c:f2:17:ba:65:5a:1e:fc:d5:08:05:
6f:e7:ae:c5:79:56:4f:9a:f6:fd:6c:cc:4d:be:d1:c6:bf:12:
00:b1:8a:c7:95:ef:f2:68:e4:ea:de:06:49:e5:cf:aa:36:b6:
2d:94:f8:bb:be:e8:26:4e:c3:fd:32:1c:b1:5d:70:9c:34:26:
8d:41:e5:4e:5b:55:22:2d:93:21:11:97:39:10:1d:0f:a6:42:
66:53:15:c9:d5:a3:fd:b1:dd:f5:3a:2b:a8:e9:da:50:2b:73:
2f:2a:11:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:06:06 2025 by rpki-client