Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Ah5m0E-eSyrRjW3RoIn3cELDKes.roa
File: Ah5m0E-eSyrRjW3RoIn3cELDKes.roa (raw, json)
Hash identifier: gyXgUaJiSs4YU372cQKWOAoTefMj+R5IPrQSNfq4B7c=
Subject key identifier: 02:1E:66:D0:4F:9E:4B:2A:D1:8D:6D:D1:A0:89:F7:70:42:C3:29:EB
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11AE
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Ah5m0E-eSyrRjW3RoIn3cELDKes.roa
Signing time: Mon 10 Feb 2025 14:27:37 +0000
ROA not before: Mon 10 Feb 2025 14:27:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4526 (0x11ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=021E66D04F9E4B2AD18D6DD1A089F77042C329EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:61:1a:78:f8:5e:2f:cf:d9:16:79:e7:a5:6e:
12:22:b8:5a:cd:74:41:52:20:92:12:ac:13:05:09:
9a:09:6d:c4:3f:a2:2b:77:58:39:35:99:a0:f8:d5:
a8:bb:f1:14:e0:f7:e5:82:3d:f3:fb:46:52:56:26:
70:e6:09:4c:9e:03:92:21:53:a8:c2:76:6d:45:ac:
83:3e:ef:8d:5c:39:f8:98:f4:a4:1b:af:74:b2:78:
3b:42:34:66:9a:4b:6d:b0:ef:43:b7:47:bb:5e:60:
c2:3a:98:1a:e9:df:26:f5:f0:95:4d:80:c7:f3:30:
c7:30:2b:4b:5b:96:50:3e:b8:74:84:47:e2:7e:65:
46:fc:e7:58:3d:27:c2:ae:c9:98:8b:98:53:12:1e:
26:9c:29:98:8c:e4:90:3b:e0:10:fb:e6:a9:10:ad:
92:27:d0:8b:d4:80:81:d2:0b:05:14:c9:4e:44:f0:
93:72:af:ef:fa:0c:33:cf:06:8d:16:8f:1d:e7:04:
2a:dc:da:64:44:9b:d4:52:23:c1:64:92:ec:26:0b:
de:f4:7c:7f:18:80:61:29:b0:a0:ac:c7:3f:40:d3:
88:41:80:ba:ba:8a:4a:c4:ed:17:27:e5:5f:33:67:
2f:27:7d:c9:11:d9:a9:41:71:cb:98:7f:4e:fc:27:
fc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1E:66:D0:4F:9E:4B:2A:D1:8D:6D:D1:A0:89:F7:70:42:C3:29:EB
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Ah5m0E-eSyrRjW3RoIn3cELDKes.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
85:46:2e:84:8a:5e:e1:78:fe:08:16:51:9a:3c:1a:45:1b:10:
b1:d0:54:a5:dc:2e:36:5a:da:75:2a:dc:6c:e7:50:38:3d:8f:
92:d5:d1:69:4a:47:11:08:60:c3:c0:ae:10:7a:79:96:0a:30:
2d:ab:58:04:cc:32:dd:44:7d:72:c8:fe:68:d9:56:79:32:c6:
82:e6:a5:0f:f7:2c:2b:6a:b8:a1:4e:80:60:17:1d:b9:69:ed:
4a:fd:d5:40:db:a3:34:c5:dc:5c:85:74:eb:cd:ef:55:6b:17:
58:2b:92:2d:de:df:be:e6:d1:79:54:04:ad:25:12:4e:e1:82:
8e:63:01:a8:9d:92:34:75:9c:e6:c3:68:5e:c0:61:99:59:10:
43:e7:7e:16:43:e7:ea:34:ce:89:89:e8:4c:d8:d5:99:37:1e:
53:43:fd:37:ec:43:06:44:73:bf:57:2c:30:63:c2:0e:95:08:
60:88:22:e8:fc:1e:0a:c3:07:b6:68:5f:0a:83:38:e2:e1:ff:
96:b6:ff:fe:f9:39:3c:b3:26:9b:cf:c0:cc:e5:b7:c8:81:29:
26:69:26:fc:6d:bb:43:83:cd:de:99:ed:12:d6:6f:1a:af:ef:
0c:3a:68:71:c3:e3:c0:0d:ab:19:93:7d:d7:92:08:62:71:d5:
04:20:8e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:12 2025 by rpki-client