Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/M6FTiW7hzWCxQPv1uPj2RXFy-KY.roa
File: M6FTiW7hzWCxQPv1uPj2RXFy-KY.roa (raw, json)
Hash identifier: HwSQieeSARWK4n8CBXELIjGnq2FpJbqzxiU1h4ScpVw=
Subject key identifier: 33:A1:53:89:6E:E1:CD:60:B1:40:FB:F5:B8:F8:F6:45:71:72:F8:A6
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11D9
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/M6FTiW7hzWCxQPv1uPj2RXFy-KY.roa
Signing time: Mon 10 Feb 2025 14:27:48 +0000
ROA not before: Mon 10 Feb 2025 14:27:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9311
IP address blocks: 210.200.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4569 (0x11d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=33A153896EE1CD60B140FBF5B8F8F6457172F8A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:39:c2:dc:ef:4f:0d:67:e9:4b:8c:1b:35:69:
cf:c0:d9:b2:05:7c:c1:08:ec:ea:3a:95:9b:80:8a:
ce:83:c7:70:41:32:a4:73:f8:31:e7:37:fa:f9:17:
09:fe:a1:bb:ec:0d:21:bd:4c:e9:a8:b0:e4:9b:6c:
a2:29:ef:8a:0a:64:4d:4a:e0:7f:da:33:f2:40:f7:
f9:04:bb:f6:f7:96:5c:b8:60:0e:f0:7d:24:57:c3:
95:85:e2:b6:8f:d7:d8:9f:77:70:74:24:fd:3a:43:
2c:fa:05:60:d5:75:3e:42:9a:94:e0:a3:ad:fd:90:
1d:4f:30:c0:54:43:ef:88:5e:ce:23:e7:22:7f:ea:
0c:4f:38:08:8d:6a:45:96:e6:f1:e4:94:ad:fe:0c:
9e:c6:5c:62:f6:2b:cb:8a:aa:94:a4:63:df:92:39:
d8:28:79:06:a1:43:86:3d:85:df:11:b1:11:e1:0c:
08:c5:c9:db:aa:9e:82:03:f4:e0:b5:8c:40:88:98:
16:35:0d:a9:9a:73:bd:32:0d:b8:d1:86:50:1a:f2:
f8:4d:7a:6a:ee:02:5f:46:c3:fd:c9:0c:7d:4c:43:
25:b5:7e:6e:12:89:91:48:e0:c5:bc:66:b0:27:2d:
06:fc:fb:40:c4:6a:cb:31:2b:13:56:dc:87:81:c9:
94:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A1:53:89:6E:E1:CD:60:B1:40:FB:F5:B8:F8:F6:45:71:72:F8:A6
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/M6FTiW7hzWCxQPv1uPj2RXFy-KY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.106.0/24
Signature Algorithm: sha256WithRSAEncryption
61:9f:c7:00:09:09:ba:f5:e1:af:b7:b6:ec:15:bd:e2:76:47:
97:b6:bb:b9:ac:49:70:e7:9e:44:fa:1b:7d:bc:de:d5:1e:76:
01:4c:9b:01:9b:16:3f:78:71:a0:26:9c:97:31:a4:a2:af:76:
dd:7c:6c:de:4c:45:53:7f:93:6b:93:cf:e3:4a:83:a4:2d:37:
84:fd:0d:48:24:7d:9c:48:3d:5a:08:40:88:81:51:32:c1:a8:
0a:9a:32:d2:13:3d:e6:a7:5b:b9:de:43:ea:84:4a:66:30:2a:
a8:4c:ce:3f:6b:cb:74:1a:8c:c1:41:96:09:79:7b:57:79:cf:
0a:e0:3f:1d:f2:ab:64:df:70:cc:ee:1e:0a:26:1b:24:56:bb:
e4:38:be:87:34:4c:85:61:68:c2:16:30:8b:d9:cb:8d:d3:6a:
39:77:7b:b7:e4:91:19:70:8a:01:73:a8:ed:92:bb:1d:37:d3:
2b:0f:05:89:41:f3:b6:8c:0e:9f:ef:01:b4:4b:70:d5:16:42:
8a:ad:aa:32:74:99:eb:80:3a:16:01:f5:22:6d:8b:d6:e7:c0:
0c:3b:8a:04:fe:ad:38:b5:e7:ba:ad:90:f5:34:c4:f2:04:1e:
92:35:5a:71:06:e6:01:d1:f4:9e:a8:69:f6:fb:30:75:9b:6e:
50:80:dc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:42:48 2025 by rpki-client