Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/D-GqXF3h-e_IgmeisXn4J4YrJ1k.roa
File: D-GqXF3h-e_IgmeisXn4J4YrJ1k.roa (raw, json)
Hash identifier: mp+7P+g096UKeUtSRqD5VHZ+snKlUaUIDmFqXyK+fLs=
Subject key identifier: 0F:E1:AA:5C:5D:E1:F9:EF:C8:82:67:A2:B1:79:F8:27:86:2B:27:59
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1201
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/D-GqXF3h-e_IgmeisXn4J4YrJ1k.roa
Signing time: Mon 10 Feb 2025 14:27:57 +0000
ROA not before: Mon 10 Feb 2025 14:27:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 124.219.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4609 (0x1201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0FE1AA5C5DE1F9EFC88267A2B179F827862B2759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9c:4a:a3:48:11:d4:26:66:e8:81:bc:b3:f4:
9e:6a:71:d6:c3:78:f4:a0:87:0d:6a:ba:cb:95:9a:
c6:a3:51:2a:6f:b1:c9:bd:7b:03:e4:3a:c1:1f:0a:
37:55:2c:ad:e6:4c:64:d0:87:b7:c3:a5:41:e9:91:
ae:b4:b7:a0:df:d3:fe:18:50:5e:47:da:cf:61:15:
17:6b:c8:70:e3:12:0c:1b:9b:7f:32:a1:88:20:49:
01:29:17:fd:c0:dc:e8:de:e5:f5:79:a6:a7:68:2b:
0c:c4:fe:15:ad:2d:25:9a:b7:d5:51:ae:fd:97:a1:
91:43:21:7f:99:2a:8a:ed:ce:fb:5d:07:0d:b8:d0:
06:ba:3a:4f:5a:05:a1:68:b3:76:03:5c:77:cd:9f:
40:87:df:e7:61:5e:3b:f8:f1:ff:59:2d:ef:44:ed:
8c:a0:d0:f6:a9:ab:32:ce:2b:a3:3c:52:5e:46:03:
ca:bd:50:be:4c:89:5a:e2:13:fa:54:9e:5d:10:58:
aa:14:9e:38:33:75:40:81:2b:5a:9b:59:39:7b:5e:
8e:25:72:6a:26:9f:21:9c:3b:5d:69:a6:e5:3e:fe:
38:f1:c2:0d:61:5d:86:5f:df:ec:c9:a2:9b:f6:5d:
54:42:74:7b:5b:2e:28:1b:b7:65:c3:42:1d:13:f1:
09:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E1:AA:5C:5D:E1:F9:EF:C8:82:67:A2:B1:79:F8:27:86:2B:27:59
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/D-GqXF3h-e_IgmeisXn4J4YrJ1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
b5:0e:7d:d4:3c:b5:3e:8c:9c:39:42:78:df:d8:fe:9c:cb:a3:
1a:b9:58:bc:64:4d:3a:c4:7f:f9:f1:57:7e:d9:53:15:5d:11:
28:f6:82:bb:cd:fe:c7:66:c2:a9:a1:34:b4:22:8d:dc:0c:c8:
2c:ab:01:fc:a3:aa:f2:0d:86:61:87:ea:18:e4:73:b3:8b:52:
a7:26:a2:d5:cd:57:79:73:bf:d0:9f:cc:df:ca:9c:3b:23:3f:
9e:a6:01:0c:6b:65:ca:a8:d5:ae:c2:84:68:fb:fa:94:0e:18:
af:d3:43:16:cd:af:3f:80:aa:ef:91:35:9f:62:e4:31:16:d8:
3e:f1:e7:f9:d0:94:de:f6:83:2a:c8:29:d1:56:c5:9a:b3:6e:
c5:6a:d5:e4:e6:79:c4:77:a2:46:ba:59:6b:ee:c0:15:bb:a7:
9b:18:bf:a4:0d:46:ba:f9:a0:8d:0c:aa:9b:ed:49:13:2f:f9:
48:bd:c6:b4:a6:38:0e:a8:2f:22:b4:d0:ea:d2:1e:7d:9c:20:
0c:2a:ac:50:3a:fc:76:a9:dc:cc:37:b8:74:88:75:65:49:4b:
d6:75:d9:bf:1b:fd:67:f0:e5:ec:74:a9:83:40:8d:c7:99:3e:
4b:9d:ef:ec:61:f6:e5:7e:3e:3b:76:e1:6a:48:1a:5c:39:06:
e3:38:ec:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:21 2025 by rpki-client