Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/LCfkIFBVT-z3ktAUCWD8UbDpgJQ.roa
File: LCfkIFBVT-z3ktAUCWD8UbDpgJQ.roa (raw, json)
Hash identifier: ieyA4fKymaQipQhmbPShxTp6kh8Xdyn9q6O+LIHlEQY=
Subject key identifier: 2C:27:E4:20:50:55:4F:EC:F7:92:D0:14:09:60:FC:51:B0:E9:80:94
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11A7
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LCfkIFBVT-z3ktAUCWD8UbDpgJQ.roa
Signing time: Mon 10 Feb 2025 14:27:36 +0000
ROA not before: Mon 10 Feb 2025 14:27:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9674
IP address blocks: 27.52.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4519 (0x11a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2C27E42050554FECF792D0140960FC51B0E98094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f1:f1:9a:56:05:48:fe:e6:64:55:be:83:1c:
fa:94:41:e6:07:f8:a7:74:2f:56:7d:0e:21:58:a3:
bf:61:6f:e1:16:18:8a:e5:29:fc:cc:91:97:0f:8d:
3b:36:e1:f7:e2:22:89:82:99:89:b0:9f:ea:58:25:
c6:65:1e:38:6a:d1:75:5f:1d:0a:a0:4e:54:58:50:
dd:5f:50:f1:69:fd:95:1b:04:6a:28:5d:36:7c:84:
ca:1a:7d:af:9f:3e:26:66:45:08:12:eb:3b:15:8e:
a1:c0:b1:f6:d5:ce:ef:9a:a3:56:73:35:66:a8:4f:
af:53:24:c0:b9:ac:54:99:83:9a:35:82:70:ae:07:
ad:57:50:fa:be:8c:97:ff:2a:19:c7:b8:f2:9a:61:
25:eb:08:2a:82:d8:ec:a2:16:69:57:5d:e2:af:56:
53:c7:09:bf:a7:ca:76:7f:5a:67:b0:19:11:5d:4f:
8a:2f:9b:bb:21:8d:5f:f7:7d:ce:3a:3c:df:ad:2f:
29:2b:de:67:40:8f:67:a0:cd:7e:51:22:57:43:38:
8f:71:bb:f9:2f:30:db:14:3b:e1:77:10:3f:82:d7:
70:ea:97:07:87:4d:32:39:e1:24:93:ad:96:6f:98:
d0:1c:8a:bc:d9:18:17:c0:f7:ab:d1:42:c7:8a:5f:
eb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:27:E4:20:50:55:4F:EC:F7:92:D0:14:09:60:FC:51:B0:E9:80:94
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LCfkIFBVT-z3ktAUCWD8UbDpgJQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.52.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c0:ab:b7:c3:2f:4a:ab:c7:0a:ab:94:7f:0f:af:e7:2a:f9:bd:
9d:c0:39:29:2e:18:70:c2:0c:5b:fb:4b:b4:67:49:5b:58:f0:
34:91:01:f8:4d:f2:6f:f8:09:5b:93:b9:fa:48:f8:86:b9:1e:
9f:21:4d:25:83:11:29:07:7d:10:50:2d:91:77:25:05:a9:6a:
99:1a:dc:60:0a:f7:aa:93:06:ab:a1:8a:84:d6:16:f5:00:e3:
6d:31:53:bb:18:ed:16:45:eb:2c:3f:5a:67:fd:09:48:0b:20:
af:d9:c9:ea:00:32:3a:e1:c8:4d:ca:90:41:2a:de:4f:b0:b3:
58:87:c5:23:28:71:74:cb:49:92:6d:1f:37:ad:ed:b4:95:da:
08:f9:ae:60:d4:8b:49:7d:dc:44:02:48:63:05:2f:bb:28:5b:
90:e6:b2:b4:5c:47:01:55:a0:cc:72:80:24:13:1a:68:51:d7:
e2:0f:b8:c0:83:e0:26:86:5e:c9:75:d7:72:21:57:e9:86:55:
72:d7:6b:31:db:fd:cb:20:1e:bb:3e:92:06:cd:bf:fa:e4:4f:
d6:d3:f6:da:de:40:e4:09:d2:f2:06:94:aa:4d:54:ce:1a:ec:
8d:19:a3:b8:62:73:b9:74:91:f5:67:a4:87:95:5c:05:0b:06:
c2:b2:3b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:44:41 2025 by rpki-client