Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/6hG3Ba9C90f74AHI0jO-eiMJpMI.roa
File: 6hG3Ba9C90f74AHI0jO-eiMJpMI.roa (raw, json)
Hash identifier: 1yUkc0Uvn9AyEAL2ANywGFy3Kv5EKUeogrUoh39BS+g=
Subject key identifier: EA:11:B7:05:AF:42:F7:47:FB:E0:01:C8:D2:33:BE:7A:23:09:A4:C2
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11D1
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6hG3Ba9C90f74AHI0jO-eiMJpMI.roa
Signing time: Mon 10 Feb 2025 14:27:46 +0000
ROA not before: Mon 10 Feb 2025 14:27:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 203.79.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4561 (0x11d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EA11B705AF42F747FBE001C8D233BE7A2309A4C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e4:9c:16:06:7c:8b:db:e5:0d:d9:1b:12:9e:
3b:f5:b5:3a:9a:d5:97:89:a3:8f:7e:1d:5c:9a:f0:
58:bb:87:b4:36:98:a7:73:87:82:b7:d3:0c:a0:4e:
a4:0a:bd:e8:65:b9:c2:50:44:a6:81:ac:38:73:db:
1d:02:4e:cc:4e:5a:33:83:48:05:18:96:e9:d3:e0:
18:47:4c:fa:7e:73:44:d6:ef:0e:9e:42:c3:54:e1:
26:05:0a:9f:4c:3e:b0:9a:c7:a6:92:26:f6:ca:24:
e6:32:d3:d3:54:f6:a1:23:18:96:d1:7d:52:99:67:
fd:c6:ec:6e:1c:99:eb:80:6e:84:91:bb:9e:80:74:
a7:fe:80:65:00:d7:7e:36:e4:fa:b0:b4:5d:81:2e:
86:84:55:6f:48:eb:70:a9:0f:56:66:50:3d:1b:5c:
dc:4a:bc:7b:91:55:57:2a:ad:a6:f3:14:f0:e1:90:
38:29:cf:2c:4f:9f:ed:a3:82:56:1f:fd:a5:e7:d2:
70:75:24:4e:ea:55:11:11:0e:ca:e3:c8:fb:76:52:
f1:c8:d0:38:18:a7:99:19:5b:ee:6b:99:ff:d1:e7:
04:95:1d:4d:be:44:8a:37:55:71:5c:a7:d4:a5:27:
ae:2e:21:84:65:f2:96:66:77:0f:33:bb:c1:78:4f:
e8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:11:B7:05:AF:42:F7:47:FB:E0:01:C8:D2:33:BE:7A:23:09:A4:C2
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6hG3Ba9C90f74AHI0jO-eiMJpMI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.196.0/22
Signature Algorithm: sha256WithRSAEncryption
91:53:d1:b5:ef:2d:eb:75:ac:f8:e7:96:62:94:69:ed:9a:57:
a6:b6:f3:95:1d:3f:fa:ed:04:58:fc:3b:2a:93:cc:d9:c9:bf:
ae:9b:cc:3c:97:59:72:32:b7:7c:dd:30:e4:d7:b1:72:41:83:
0d:9c:24:48:32:fb:25:cf:1d:b0:64:0f:f9:74:c0:59:a4:65:
af:c4:1c:f5:fe:37:68:10:93:5f:3c:a8:71:b8:13:0e:e3:d7:
b2:cd:b7:35:cf:3f:b1:f0:61:f3:69:17:10:c1:7b:61:db:99:
cb:82:13:41:b4:60:88:7b:ae:9c:67:2f:ee:c7:11:0c:95:e3:
84:81:47:64:2a:d4:7c:68:00:49:22:3f:35:f6:37:a8:60:00:
6e:6c:77:5f:21:3f:e9:68:17:7e:19:fe:a4:cd:2e:8d:c9:1b:
cb:c1:55:5f:bb:5e:87:a3:6f:29:c5:1b:86:03:0a:35:75:f8:
95:2f:b9:9a:61:e2:0c:6f:07:f9:42:39:d7:7b:db:3a:ee:95:
1e:c8:ab:df:26:cf:82:36:9a:19:56:3e:a5:d2:6f:59:2a:04:
6d:8d:f6:3f:76:85:2b:ea:e9:75:a9:cd:94:91:17:2b:19:3e:
e6:08:39:90:06:52:43:6a:37:c0:b1:88:65:e9:c3:33:7a:8f:
c0:87:15:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:48:53 2025 by rpki-client