Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/JVwxfSHkbPEs6SP4Qge_MDyo2WY.roa
File: JVwxfSHkbPEs6SP4Qge_MDyo2WY.roa (raw, json)
Hash identifier: o7FB/f1ef2oVTn8Aunaqg6GNl6x4NEbtmgjW3bv2YJg=
Subject key identifier: 25:5C:31:7D:21:E4:6C:F1:2C:E9:23:F8:42:07:BF:30:3C:A8:D9:66
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 120D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/JVwxfSHkbPEs6SP4Qge_MDyo2WY.roa
Signing time: Mon 10 Feb 2025 14:28:00 +0000
ROA not before: Mon 10 Feb 2025 14:28:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131591
IP address blocks: 101.136.0.0/14 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4621 (0x120d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=255C317D21E46CF12CE923F84207BF303CA8D966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:57:b3:da:f2:85:4e:f3:83:93:a8:ff:04:ae:
88:ce:c2:3a:ab:d6:f2:7a:7a:00:b7:6d:d1:f9:88:
f9:97:24:2f:28:2b:d9:3f:64:57:fe:2e:74:fb:6d:
cb:5b:ea:5b:e4:22:0d:64:ad:f5:6e:3b:da:ba:3f:
2d:46:e0:9d:86:a8:42:c3:e9:95:68:98:f7:2a:86:
f5:58:65:ef:af:b4:ad:dc:e8:74:86:75:ed:dc:5c:
c3:e0:c8:03:14:9d:d5:d9:a4:1a:ee:10:24:9d:34:
71:c4:6e:70:b4:69:62:b4:80:ae:4a:4a:b9:f9:8e:
ab:21:96:ac:1c:7c:41:5e:f9:eb:98:21:15:83:3a:
f3:e0:77:eb:f8:7b:ae:73:3a:dc:34:b0:bb:20:8d:
f1:9a:bc:7e:81:c3:59:d0:6d:ce:e7:0d:6c:be:59:
25:bb:5b:fe:ef:cb:28:ed:d1:91:1f:2c:89:5b:6e:
e6:0a:f0:9a:81:55:2e:35:1e:9b:c5:f3:7a:bd:8e:
d7:f8:30:1a:a9:27:e3:8b:2a:14:b7:59:68:8d:0a:
3c:f8:10:73:2d:a4:98:07:08:f6:9d:a9:22:ba:07:
3c:a8:8a:78:44:e2:e3:c0:6e:4e:5b:51:e0:44:00:
9b:78:aa:f4:60:d8:9c:30:80:8b:ce:18:c8:4a:86:
4c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5C:31:7D:21:E4:6C:F1:2C:E9:23:F8:42:07:BF:30:3C:A8:D9:66
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/JVwxfSHkbPEs6SP4Qge_MDyo2WY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a5:24:11:c5:32:12:5a:03:a7:ac:e5:ec:73:d7:e9:a4:42:06:
18:d3:76:56:c1:3e:18:8c:9c:0f:dc:f0:67:c6:97:5f:a3:48:
d2:00:39:2d:0e:71:8a:69:01:4e:b1:e8:9f:ae:b3:0d:c1:a7:
74:9c:ee:4b:a9:38:bb:38:cb:d7:2b:99:15:56:9a:f7:2b:c4:
4e:b0:00:fa:aa:61:37:a0:ae:f3:aa:c7:d2:01:46:9d:03:a7:
59:4b:df:94:3b:8c:71:1d:e0:3b:da:9c:2d:4d:38:1e:a9:d4:
9c:6d:24:6e:bb:2f:a8:b8:d4:58:e9:8f:0b:78:85:0a:d5:88:
df:57:a1:9a:f3:64:8a:3b:d5:5a:31:c7:49:ad:fa:79:7d:18:
d6:16:44:27:7e:51:63:c8:45:44:6b:3c:3c:2a:a8:40:1f:03:
4d:c3:43:ad:cc:d9:50:37:51:2f:32:3c:30:b6:e8:a7:c8:7f:
4a:24:28:11:95:66:53:5b:4e:c6:4b:0c:4a:30:39:84:9f:2b:
70:92:63:d2:de:72:c0:52:19:7c:50:b3:f8:13:9d:18:c1:32:
b1:11:91:e6:a9:f1:72:54:cd:7f:17:b3:d1:77:e9:ee:30:72:
a1:0a:a7:21:6b:30:ec:f9:bc:43:56:65:5a:29:a2:c3:cc:d0:
59:68:9a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:56:36 2025 by rpki-client