Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/762eN1WQQFxVtVDMze9WoSsKiDc.roa
File: 762eN1WQQFxVtVDMze9WoSsKiDc.roa (raw, json)
Hash identifier: eCqEtwGFmcQ7GsyjWDYRWIV4MxaUH4d9DlJ5MAnm8dc=
Subject key identifier: EF:AD:9E:37:55:90:40:5C:55:B5:50:CC:CD:EF:56:A1:2B:0A:88:37
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1241
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/762eN1WQQFxVtVDMze9WoSsKiDc.roa
Signing time: Mon 10 Feb 2025 14:28:13 +0000
ROA not before: Mon 10 Feb 2025 14:28:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4673 (0x1241)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EFAD9E375590405C55B550CCCDEF56A12B0A8837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:24:5f:b6:7d:f8:bf:33:8f:3d:81:d3:68:21:
3b:c5:e1:18:08:e3:d0:c5:d7:a7:57:83:85:43:65:
46:bb:f1:e1:f6:09:c7:37:ab:43:60:04:34:16:bd:
e4:44:24:a4:55:44:47:07:e5:0e:8a:8a:ac:5c:fb:
b1:bd:28:20:de:b0:32:1f:ba:98:15:f2:86:d7:90:
f5:d5:42:e6:6e:e6:85:ba:1e:e5:a2:2f:8e:24:7f:
46:8f:af:5a:7c:b7:3b:96:79:d3:e8:7f:3c:ce:e8:
79:7f:00:d0:a1:16:c9:47:5d:9a:31:0b:67:3a:5f:
43:5e:73:11:e5:ab:37:27:ef:28:91:83:58:90:77:
1a:27:b5:d0:f8:ea:7d:e0:cd:4b:09:4d:1c:22:7c:
1c:38:9d:0c:aa:f1:b4:12:17:a4:04:45:ab:e9:32:
65:d4:3b:17:3b:99:62:39:a7:90:94:82:bd:2a:04:
35:a4:4e:60:ce:f9:d5:1a:5f:fe:da:78:f2:a6:11:
a7:64:92:70:8c:dc:96:c5:8e:e8:39:1b:a6:a6:43:
b8:08:27:cf:d4:41:39:5b:98:3b:4c:c9:8f:84:ad:
22:06:31:a0:ee:bb:88:74:4d:aa:41:93:c9:a1:90:
c2:17:0d:f2:b8:5e:1f:99:ba:55:df:53:78:85:b7:
37:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:AD:9E:37:55:90:40:5C:55:B5:50:CC:CD:EF:56:A1:2B:0A:88:37
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/762eN1WQQFxVtVDMze9WoSsKiDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:66:6a:2c:c6:49:a1:fb:42:9d:37:57:74:f2:a2:a9:ca:a3:
c4:b7:f6:37:4c:e5:fb:02:1a:2f:99:f2:e6:43:82:0d:07:9d:
7f:d5:36:13:7a:95:ba:b6:de:6c:c9:b5:91:a5:75:00:9c:8a:
6c:35:49:47:08:9b:39:7a:e0:7a:7e:19:53:96:63:8a:fb:70:
ed:e5:96:7e:54:a7:41:56:92:30:81:16:ff:f8:24:fc:84:56:
d5:aa:d1:7f:27:81:13:a3:5a:64:b2:26:bd:74:3a:66:a1:39:
a1:c0:c2:3d:8b:fb:61:b7:18:e5:47:ca:f7:a1:7f:db:2e:dc:
13:41:61:b5:bc:a4:90:69:d5:68:6e:1f:60:86:98:62:0f:9f:
02:c4:da:62:99:1c:4f:12:10:c2:ad:87:d0:aa:37:ef:2d:f5:
10:b9:5f:d2:e6:b6:9e:6f:f0:e1:77:90:07:47:f0:d8:ec:bd:
5e:6c:8e:0c:fb:4e:38:10:5a:e3:85:8d:80:40:db:ca:ed:ec:
36:db:fc:5c:e7:1d:d6:d6:36:59:a9:73:51:0c:47:bc:9f:c0:
83:3a:fe:0f:65:dd:20:de:2a:5f:8c:67:1f:7a:80:51:33:d4:
e0:fd:41:47:9d:c4:19:0b:bd:0e:08:11:d3:c8:2c:2a:e2:25:
73:cf:b7:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:51:56 2025 by rpki-client