Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/0Lyc46-VUs7onpCwVduMC9IP3EM.roa
File: 0Lyc46-VUs7onpCwVduMC9IP3EM.roa (raw, json)
Hash identifier: nFFCSZgRGa27KM4cjlHAnDFc3phd9zTRAqu4RcglPhA=
Subject key identifier: D0:BC:9C:E3:AF:95:52:CE:E8:9E:90:B0:55:DB:8C:0B:D2:0F:DC:43
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 121F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/0Lyc46-VUs7onpCwVduMC9IP3EM.roa
Signing time: Mon 10 Feb 2025 14:28:05 +0000
ROA not before: Mon 10 Feb 2025 14:28:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 124.218.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4639 (0x121f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D0BC9CE3AF9552CEE89E90B055DB8C0BD20FDC43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:38:6b:97:b7:51:55:51:42:29:a2:75:48:32:
e6:d6:cf:4c:8a:80:23:79:d0:40:ee:ef:37:a0:e6:
0a:60:31:ca:77:d8:71:31:ee:b0:67:3e:84:61:64:
da:27:f4:0d:2c:d0:b2:7e:25:f4:c6:e0:06:7e:da:
e0:70:fd:fe:cd:45:89:70:b7:a1:bd:9b:f5:af:15:
9b:ea:3e:45:ec:81:b1:9b:54:bb:b2:0a:8c:e0:72:
4c:20:cc:6b:26:6f:33:c0:be:71:e5:05:3b:db:67:
bd:55:39:6e:38:9a:f5:db:56:77:ac:76:53:66:b1:
23:33:ca:71:5f:d9:e0:c4:dc:09:96:d1:d8:1c:ba:
5f:b6:7c:ec:dd:79:3b:f8:ed:ac:03:ac:12:89:3f:
56:c2:fb:b8:3b:fc:26:9c:b0:61:9e:c2:e1:c3:97:
9b:22:bb:0c:e6:d8:23:1f:5c:ad:95:4b:52:a5:ef:
af:48:07:f3:2c:29:b7:3c:c7:15:c4:cd:e2:39:1b:
89:32:f3:f4:23:de:a4:c8:03:13:db:57:6c:02:f0:
79:00:93:e7:e2:59:78:1c:2b:8f:4b:df:66:ce:50:
74:b2:a5:8c:a5:52:cf:a8:5e:a0:62:44:e4:95:61:
1f:c8:37:c6:e3:fa:21:dc:79:e7:84:78:43:29:ea:
0d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BC:9C:E3:AF:95:52:CE:E8:9E:90:B0:55:DB:8C:0B:D2:0F:DC:43
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/0Lyc46-VUs7onpCwVduMC9IP3EM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a9:8b:9a:c7:73:d0:02:a6:08:36:3a:be:2f:b3:5f:15:e9:35:
b6:52:3c:bf:6e:54:40:60:79:93:9a:1b:98:a5:df:4c:ca:8e:
de:a4:c3:71:ea:cb:23:d4:4b:de:10:61:56:e3:af:14:65:8a:
4f:8a:00:37:70:fb:c8:b6:f6:d4:fe:24:b5:a6:40:25:b8:ea:
35:11:74:72:54:50:fd:5d:d7:aa:27:55:44:64:e3:1c:24:bf:
c5:00:20:60:b1:d9:07:e5:13:b9:34:54:55:83:51:8d:79:21:
d6:1d:87:bc:e5:e0:87:f6:9f:17:37:eb:a9:ea:5a:95:64:ae:
87:4c:01:b5:d9:f6:11:9a:b2:9b:09:de:c5:1a:6f:6e:42:52:
27:1c:94:e0:1b:4d:01:6c:6c:45:c6:e8:80:e8:89:30:ea:aa:
21:65:f1:de:ea:de:d0:f5:d8:b3:c4:72:8e:76:66:57:60:10:
a9:99:a2:bf:66:05:93:ed:a6:0e:ae:f1:03:7b:fb:18:f3:13:
b9:48:30:84:86:25:1d:61:de:2f:f6:94:24:fd:2b:75:2d:96:
48:ad:d1:0d:71:3b:a1:29:ba:25:92:d3:b2:ae:fd:26:9c:bd:
25:90:5c:35:f5:f5:c6:ac:1f:ea:bc:44:fc:f5:dc:c0:ce:3a:
c0:27:6f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:42:22 2025 by rpki-client