Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/zx6ruQyChj1b0Tv6xMKAc9wAXd0.roa
File: zx6ruQyChj1b0Tv6xMKAc9wAXd0.roa (raw, json)
Hash identifier: jNxDCrSwvuKuDW3/QuVfmSRopwujiFpap5jqmoGMS5E=
Subject key identifier: CF:1E:AB:B9:0C:82:86:3D:5B:D1:3B:FA:C4:C2:80:73:DC:00:5D:DD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1101
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zx6ruQyChj1b0Tv6xMKAc9wAXd0.roa
Signing time: Mon 10 Feb 2025 13:56:43 +0000
ROA not before: Mon 10 Feb 2025 13:56:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 203.217.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4353 (0x1101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Feb 10 13:56:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CF1EABB90C82863D5BD13BFAC4C28073DC005DDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:59:cc:8b:a8:0e:cd:25:62:73:e4:f6:71:f6:
9e:3e:10:69:90:52:fe:77:67:07:4a:6c:6c:49:56:
0c:fd:fa:d6:29:95:dd:37:21:71:83:ff:c1:d6:c3:
b3:32:81:f0:1f:20:84:75:b8:d5:6c:84:04:6e:93:
f5:c7:d7:45:8f:f5:6e:c9:d5:10:3a:49:77:96:ba:
03:c6:bf:79:1e:d9:f7:3c:c3:de:f5:19:ed:e6:a9:
44:41:d7:42:2e:05:ba:fd:c9:03:a6:0e:d4:b7:12:
b4:b5:a2:37:b3:f1:ee:34:ec:55:0b:b9:47:0d:7c:
c5:52:2b:b6:08:1b:f5:a2:2a:f3:d9:2e:8f:4a:dc:
4a:5c:ea:fe:c0:3d:00:8a:bf:42:85:99:0d:11:6d:
6a:8a:3b:0c:9d:41:f5:da:11:f9:27:5b:24:d7:c2:
30:08:18:07:78:80:2c:d4:13:f9:dc:e4:fd:05:cc:
0b:b2:16:c4:8a:b8:56:da:95:b8:7c:c9:ff:7d:53:
3e:92:c4:02:d5:20:ab:9f:a0:79:b3:39:c6:f7:08:
50:e5:ce:c3:19:0d:61:f5:19:f9:b5:53:ef:ab:98:
5a:72:d8:04:a8:02:f0:a4:ef:56:0c:56:7c:51:f0:
e6:2d:06:03:1f:3e:61:cb:fd:a0:e7:07:c2:f3:89:
9e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1E:AB:B9:0C:82:86:3D:5B:D1:3B:FA:C4:C2:80:73:DC:00:5D:DD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/zx6ruQyChj1b0Tv6xMKAc9wAXd0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.96.0/22
Signature Algorithm: sha256WithRSAEncryption
15:31:99:a3:1e:38:97:f5:b5:84:9a:2d:87:48:1c:a5:29:88:
fb:da:bf:be:22:31:ba:3c:41:4d:41:85:3f:b1:57:39:13:f7:
e1:b4:42:4b:6d:e9:17:73:0a:d0:c7:d3:f9:4d:f2:f3:ef:f3:
f3:51:7b:7c:12:80:86:55:13:18:0c:54:f7:a6:fd:1c:33:c1:
db:51:76:6a:6f:32:41:75:74:e7:1f:6d:bb:47:bf:08:7f:14:
9a:24:0a:47:7f:86:4c:f2:4e:bc:4b:6b:84:60:5a:2e:c3:83:
1e:2b:8b:8f:89:f2:6e:87:2a:df:8b:b2:cb:0a:a8:64:29:1d:
9d:16:41:52:64:14:01:cc:f2:ce:c5:ef:9e:fe:be:f9:43:a5:
9c:dd:f0:62:cc:c3:de:77:cc:fd:9a:d6:13:f7:32:ce:e7:85:
b1:12:81:1f:fe:5c:d3:b0:1c:86:15:af:8c:c0:7a:0c:f3:07:
62:7f:7d:84:47:fd:80:52:c0:ae:14:f5:b8:f9:a5:d8:f5:0c:
b2:45:20:f8:db:55:1e:4d:8d:f8:eb:99:1e:53:99:a3:3e:27:
b4:23:f4:6e:6a:7e:13:3c:60:3a:a1:52:25:1c:a4:7c:f1:15:
33:1c:fd:fa:b0:73:c3:8e:2a:b4:bd:8b:ba:a7:ee:8b:14:e9:
a2:69:83:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:59:21 2025 by rpki-client