Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/HGgufsZm6fGKOqyXmlz7-_wr8ls.roa
File: HGgufsZm6fGKOqyXmlz7-_wr8ls.roa (raw, json)
Hash identifier: 09e3Xh9lqcN5h/t2xMAcD2pmF4KFIpbo8iXWmIbt5e4=
Subject key identifier: 1C:68:2E:7E:C6:66:E9:F1:8A:3A:AC:97:9A:5C:FB:FB:FC:2B:F2:5B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11D3
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/HGgufsZm6fGKOqyXmlz7-_wr8ls.roa
Signing time: Mon 10 Feb 2025 14:27:46 +0000
ROA not before: Mon 10 Feb 2025 14:27:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9674
IP address blocks: 27.51.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4563 (0x11d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1C682E7EC666E9F18A3AAC979A5CFBFBFC2BF25B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:07:7e:4e:cf:dd:9a:07:15:0a:a7:93:1f:f7:
42:6a:0e:4e:7b:4d:22:af:98:22:07:80:5b:fd:2d:
98:f2:4b:b8:e2:12:14:78:47:f1:c9:dc:9a:87:dd:
8d:8b:69:f6:74:27:c9:f9:21:e7:73:1a:e4:df:40:
85:67:a5:28:08:26:29:7b:fd:b8:c6:da:3e:aa:81:
62:5f:ef:9c:23:e0:a7:88:0f:4e:04:92:05:e4:22:
d9:c2:68:38:8d:af:b3:d3:d4:a2:5f:d0:7f:73:50:
80:ec:87:dc:72:6e:47:ad:1e:56:f6:49:a2:87:02:
56:bf:80:69:cf:b2:b2:60:06:9a:6a:c3:06:56:7c:
0a:48:b5:13:a4:93:eb:e2:99:48:50:2b:76:86:51:
36:fd:72:5f:cc:ff:50:da:a2:a2:81:03:ff:e2:73:
0b:82:fa:99:a5:01:3d:6e:36:49:6e:91:4f:ec:91:
dc:46:41:34:77:fb:46:ac:98:8a:3c:9a:ef:0e:db:
8b:00:68:48:1e:84:4a:09:17:d1:f0:1a:3d:64:53:
6c:b4:a5:0e:1f:ec:fd:f2:e1:8a:75:e2:98:47:a0:
79:1a:be:3d:b6:15:5a:47:22:66:a4:fc:f2:86:f4:
a9:eb:10:5c:f1:8e:04:6b:36:7e:87:f9:b2:05:65:
63:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:68:2E:7E:C6:66:E9:F1:8A:3A:AC:97:9A:5C:FB:FB:FC:2B:F2:5B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/HGgufsZm6fGKOqyXmlz7-_wr8ls.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.51.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:e9:4f:25:d9:cd:bd:07:b5:39:1c:55:b1:90:66:39:2b:8f:
aa:61:69:ed:40:0e:0d:9c:74:46:5f:81:71:d1:e8:85:e2:c2:
ae:db:17:f7:20:b4:69:5c:a5:cd:ee:20:11:da:62:cc:50:3c:
cc:31:f3:25:8b:45:ea:4c:58:53:86:c1:ff:bc:1b:4c:b3:bb:
1d:7e:46:e4:b8:25:2d:fb:7a:3e:55:c9:b8:ff:e6:27:28:9f:
de:5c:3f:f5:5d:42:42:76:40:48:ae:2e:ae:e7:88:52:2d:aa:
9f:b3:ae:f8:0b:c1:0e:67:90:24:fc:23:e5:39:f5:21:0d:d5:
e5:c9:20:a2:06:ae:c4:4c:4a:cc:62:cb:1b:86:b0:07:c5:15:
75:56:a9:b6:3f:b4:17:4b:ae:d4:6e:14:85:35:bc:f9:da:75:
df:48:cc:71:5c:fb:71:19:23:12:35:46:00:1d:c8:04:44:cb:
46:70:5a:af:b5:56:08:68:a6:81:ce:3f:0b:9d:9c:48:e6:00:
ef:eb:79:e3:2b:84:ef:0e:f2:88:63:a7:02:44:80:f0:37:06:
77:c1:0f:56:df:c4:2e:cd:7c:1f:4b:c6:42:9c:85:f9:e4:c1:
05:9a:80:a8:1b:5d:d4:30:c8:0a:22:48:14:65:ca:8b:d0:c7:
89:ac:88:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:51:52 2025 by rpki-client