Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/MkG8jncN4NMroYwcxwQ3EF7kd4A.roa
File: MkG8jncN4NMroYwcxwQ3EF7kd4A.roa (raw, json)
Hash identifier: IRyfWgFzTolN0iv00SEtvUUNIfZE4ATeA0cJB5JZfzA=
Subject key identifier: 32:41:BC:8E:77:0D:E0:D3:2B:A1:8C:1C:C7:04:37:10:5E:E4:77:80
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1190
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MkG8jncN4NMroYwcxwQ3EF7kd4A.roa
Signing time: Mon 10 Feb 2025 14:27:29 +0000
ROA not before: Mon 10 Feb 2025 14:27:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 210.202.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4496 (0x1190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3241BC8E770DE0D32BA18C1CC70437105EE47780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:93:4f:07:ad:64:81:df:5b:90:a1:30:c7:ca:
5b:a2:37:eb:61:c2:a9:ca:b3:45:4c:0f:9b:a8:96:
57:02:04:c5:89:ed:ff:a6:a5:fb:fd:fa:8b:b3:6e:
ba:e9:0d:0f:81:47:ac:e2:39:48:be:9f:95:e8:ca:
b4:70:d9:ee:22:d6:d7:a0:b0:d9:ee:df:1a:f6:50:
f1:ca:21:d4:64:f7:e1:86:35:ef:ca:96:71:b9:37:
16:a4:3f:24:0b:a3:1c:ed:07:a7:c7:b7:5e:41:1d:
a4:d9:e1:65:29:15:cd:39:18:2e:32:27:a7:fd:8f:
b7:e3:76:44:ff:52:ec:7c:72:ba:54:a2:af:63:fa:
0a:4f:3c:20:df:35:18:9e:79:44:b6:9c:45:5f:da:
d1:60:10:af:d6:12:80:77:83:bc:d5:96:2c:ec:04:
b3:13:af:41:b6:1b:d4:22:da:fa:23:7b:eb:e5:ee:
a6:31:a0:b5:02:bb:04:d0:1d:64:cb:39:9a:a0:0b:
cc:2f:09:2d:2c:0e:8a:5e:b1:3e:60:a9:7c:97:e4:
61:79:0b:b8:8b:ba:19:aa:f9:8c:ed:73:2c:ea:9a:
85:cd:87:52:79:ec:a6:9a:1e:53:48:d2:5e:71:5b:
3c:a6:9f:ef:d9:c9:01:01:40:c8:b8:1b:d4:f1:a3:
91:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:41:BC:8E:77:0D:E0:D3:2B:A1:8C:1C:C7:04:37:10:5E:E4:77:80
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MkG8jncN4NMroYwcxwQ3EF7kd4A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.96.0/20
Signature Algorithm: sha256WithRSAEncryption
18:f5:8c:6b:fa:51:ff:c5:7a:83:2b:c5:90:13:e5:5f:ef:ae:
57:8e:24:13:30:02:cd:92:80:7f:22:5f:5c:9e:85:25:b9:1a:
b8:4c:b5:15:4e:0e:c6:0c:79:1a:95:fc:e4:0b:e9:89:60:58:
30:49:13:aa:64:a9:ba:02:6e:32:20:66:bf:97:7d:7f:a5:e5:
64:92:ac:e9:f2:ba:60:b5:d8:fc:1a:ab:58:6a:51:e7:45:64:
d5:52:3f:45:43:bb:9c:62:09:74:50:f2:52:08:7a:41:6e:ab:
1a:8e:9f:c7:7a:6d:5c:e8:f3:6e:66:44:7a:89:7e:1c:42:d8:
ad:f0:e7:c9:61:94:b6:66:a5:0d:fa:88:f9:08:74:7e:b9:5c:
af:f2:b1:86:44:7c:b8:0c:f4:de:88:ff:d3:31:32:4f:6b:be:
23:84:73:aa:77:9d:8e:84:17:22:86:ce:98:06:c8:79:5c:20:
f8:dc:1c:54:18:22:30:fb:d5:34:ec:8a:3c:de:d1:59:41:b6:
bb:24:f3:52:99:7e:a2:a7:62:6b:35:95:f6:9f:22:6c:21:e2:
6e:2e:65:86:3f:fe:00:7f:63:de:8d:39:9b:85:ed:28:d8:40:
8f:72:98:e2:1c:55:41:9e:bc:99:50:33:01:2c:6d:7e:f5:72:
22:4e:cd:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:19:51 2025 by rpki-client