Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8rss_rl8NIyYx67QDP8tymQiT8M.roa
File: 8rss_rl8NIyYx67QDP8tymQiT8M.roa (raw, json)
Hash identifier: Hx4P+O5nYmEWRP/c2UGGqDPXB+Aq07AbbKHrcp6P+MI=
Subject key identifier: F2:BB:2C:FE:B9:7C:34:8C:98:C7:AE:D0:0C:FF:2D:CA:64:22:4F:C3
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1195
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8rss_rl8NIyYx67QDP8tymQiT8M.roa
Signing time: Mon 10 Feb 2025 14:27:30 +0000
ROA not before: Mon 10 Feb 2025 14:27:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 222.250.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4501 (0x1195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F2BB2CFEB97C348C98C7AED00CFF2DCA64224FC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:67:bd:0f:be:37:ca:61:ce:17:75:92:20:b8:
b6:2d:18:4d:1b:75:39:ef:cf:94:22:58:a0:06:68:
7d:60:d2:ab:ce:3c:f7:37:2a:07:c8:db:9e:74:dd:
c9:07:75:41:a0:c3:60:f6:0f:be:5a:75:bd:1b:65:
32:17:b9:f7:92:c0:db:fb:9a:57:0c:62:56:10:29:
f4:a1:17:c3:c0:8e:fe:55:ac:83:04:e5:01:5a:d4:
71:22:43:5b:3e:70:ca:1f:88:c2:18:04:6b:9c:05:
6e:aa:27:e6:29:91:68:22:50:5e:f6:62:88:74:9a:
50:be:ba:21:91:c3:41:4d:52:14:a1:a5:48:93:f7:
7c:b8:35:c3:34:39:0a:ac:b3:c5:03:c8:b0:77:2f:
b3:26:16:cc:57:48:d5:99:4e:87:2d:fc:3b:21:20:
a4:e8:91:52:67:a1:7e:10:95:c3:c3:c3:07:c1:58:
37:6c:bc:44:b4:7f:17:d8:05:cf:50:1d:e2:e8:f7:
4d:8b:57:d1:40:09:06:9c:72:d5:05:66:b1:75:ec:
f1:de:55:c6:59:b7:11:91:b7:42:b8:98:b1:96:51:
bd:37:9b:69:6b:56:29:a9:5e:c0:42:9b:3e:7c:9f:
ce:6b:e9:bd:38:4f:e2:ea:22:06:f7:3d:98:fa:7f:
3a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BB:2C:FE:B9:7C:34:8C:98:C7:AE:D0:0C:FF:2D:CA:64:22:4F:C3
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8rss_rl8NIyYx67QDP8tymQiT8M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.250.64.0/18
Signature Algorithm: sha256WithRSAEncryption
87:7e:68:3d:5d:5e:74:f0:bd:b3:ac:8a:36:be:c7:6e:bf:e0:
38:81:0b:6f:dc:e3:bb:75:9c:6a:3c:c1:2c:a9:47:7f:a4:91:
4a:5b:22:7e:e7:aa:6b:ae:88:26:1f:76:2c:12:a5:fa:5d:be:
60:58:ff:52:b0:3a:78:e1:98:e9:a3:4c:41:d1:78:c0:15:cf:
6b:55:56:fa:ee:d3:a9:63:4a:82:4e:72:6a:5d:58:87:54:44:
db:27:a9:50:27:eb:22:fc:3a:a4:7e:d3:d8:e9:a9:43:00:24:
31:6e:7f:c3:49:f9:db:96:a4:36:86:b0:52:dd:a8:11:1d:d1:
3f:4c:12:12:a6:0e:c0:7d:2c:07:f5:e8:aa:15:3a:dc:8c:27:
7b:85:ca:2b:76:94:aa:7d:a7:2e:7a:d8:25:d0:c7:9a:55:32:
32:b7:61:4d:b5:16:25:3e:80:85:a0:e4:1f:59:1b:07:97:9c:
77:48:af:e7:4b:0c:b8:7c:51:d4:4e:90:2f:99:68:b8:97:5f:
2f:a1:b1:ee:81:58:b3:3c:d9:bf:24:94:2b:3c:4f:2e:9d:8b:
00:ae:27:ac:98:c9:35:c4:ab:45:7d:e6:7a:ce:b9:e6:21:60:
9b:13:c4:2f:ce:82:40:a1:94:9b:2e:f6:25:02:59:11:ce:b4:
f4:0b:d9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:42:39 2025 by rpki-client