Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1v0BbofYBUoqVxpK5rdjIEIReyI.roa
File: 1v0BbofYBUoqVxpK5rdjIEIReyI.roa (raw, json)
Hash identifier: FVz6jBmk/7Z+yJM+Gprr1cK0u7u4FafWOMcCp71WUAQ=
Subject key identifier: D6:FD:01:6E:87:D8:05:4A:2A:57:1A:4A:E6:B7:63:20:42:11:7B:22
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11B4
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1v0BbofYBUoqVxpK5rdjIEIReyI.roa
Signing time: Mon 10 Feb 2025 14:27:38 +0000
ROA not before: Mon 10 Feb 2025 14:27:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.58.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4532 (0x11b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D6FD016E87D8054A2A571A4AE6B7632042117B22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:8c:76:ae:73:13:2e:cc:84:9a:20:9b:b4:fb:
f0:41:3d:1f:95:c1:b3:e8:ee:3e:d8:a1:29:de:45:
f1:e5:0e:72:c4:a0:0e:89:98:8b:70:08:02:d5:88:
be:44:a6:ce:4a:1a:02:2e:85:2a:37:65:9b:4d:5e:
c6:f2:12:98:b7:51:a6:36:9b:a4:bd:78:40:15:b2:
60:90:3f:46:ff:c8:ed:54:6d:cb:71:49:9d:eb:0e:
13:9a:65:4a:ef:1c:ac:aa:73:01:c7:0b:6a:c6:75:
ea:1f:56:89:45:65:92:35:cd:cf:73:d7:c8:7c:fd:
7f:3f:cc:08:82:61:9b:6c:dc:fd:af:9e:c8:d4:fc:
69:79:63:0d:e8:29:b1:76:8e:54:35:26:cc:a2:8e:
48:3b:59:d9:14:48:7f:ca:a5:aa:f0:51:77:cc:07:
1d:3e:0a:41:6f:a7:9f:7b:57:fc:90:a5:fd:e4:0e:
2c:bc:57:ab:56:4d:c5:91:16:12:2a:b3:e1:c1:4f:
bb:05:e4:a6:02:e6:6d:fa:30:a2:af:fb:d8:21:03:
2c:b1:bb:b5:f8:79:3e:b6:48:1c:6b:af:64:c6:0d:
84:22:00:6d:f4:80:14:03:c8:35:f4:56:f3:a5:81:
38:22:70:03:97:34:f1:91:72:0f:0f:d8:09:52:1c:
c5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FD:01:6E:87:D8:05:4A:2A:57:1A:4A:E6:B7:63:20:42:11:7B:22
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1v0BbofYBUoqVxpK5rdjIEIReyI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5a:3e:3e:18:74:aa:14:0f:f4:6c:65:5d:22:9c:cb:5c:b5:5a:
31:5a:d9:2b:59:56:18:c8:46:0d:70:fc:18:8d:51:1e:89:d9:
75:55:41:b9:61:29:b9:04:2f:87:25:61:4b:0e:42:eb:4e:52:
6d:9f:6b:c2:dd:22:33:ef:a4:17:b9:d0:83:53:33:c1:3e:44:
17:a8:1c:d8:ea:4c:33:42:70:f4:31:f2:49:c9:59:ae:3b:8c:
35:6e:99:31:32:eb:c1:83:c4:c2:8c:43:0e:a8:80:82:50:c9:
46:91:8e:24:f2:0c:f0:55:49:32:db:49:ae:56:d0:42:e8:f5:
3e:c4:28:a3:97:95:db:5e:e4:8a:71:8d:72:9d:68:ba:b5:81:
ef:93:71:54:28:0b:c0:21:bd:6f:cc:c9:c7:49:3f:c5:7c:60:
54:6f:1e:81:db:2f:69:5b:60:22:f9:c3:83:0e:61:b3:d4:c2:
0e:03:a0:d4:61:b1:64:c3:14:d9:9f:e5:a2:04:a1:f5:63:e1:
c1:7a:c6:f3:0a:37:37:b3:bd:3d:a6:53:6e:df:cb:b1:79:bd:
01:c5:bc:ad:2e:37:ea:30:37:fb:c2:a6:7e:f8:bf:18:b5:30:
7a:bc:ed:5c:ae:9c:d2:33:84:6b:42:f9:39:4a:33:32:d4:47:
a0:6a:01:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:34:29 2025 by rpki-client