Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/SGfNXrI1-hvSuel9KrMQ_ZDDxVA.roa
File: SGfNXrI1-hvSuel9KrMQ_ZDDxVA.roa (raw, json)
Hash identifier: TpWoePWxlXZgm59GlXY0rxu/FiFNW8qghhItaDiidZY=
Subject key identifier: 48:67:CD:5E:B2:35:FA:1B:D2:B9:E9:7D:2A:B3:10:FD:90:C3:C5:50
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1208
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SGfNXrI1-hvSuel9KrMQ_ZDDxVA.roa
Signing time: Mon 10 Feb 2025 14:27:59 +0000
ROA not before: Mon 10 Feb 2025 14:27:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 210.203.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4616 (0x1208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4867CD5EB235FA1BD2B9E97D2AB310FD90C3C550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:84:12:4a:39:98:e5:b5:da:5e:24:1a:05:e7:
a7:78:53:0e:bf:07:35:bf:64:26:eb:56:fa:b6:f6:
ff:53:e4:44:d9:2e:59:e0:cf:96:82:ef:29:3e:b9:
75:04:51:d1:18:e8:0e:af:41:0b:c8:99:71:fe:76:
77:90:5f:76:b0:10:15:7e:96:37:dd:18:6e:b9:e3:
84:9c:a3:59:c9:1b:f6:6e:ac:b5:55:9b:da:c5:2b:
2c:74:43:7a:d3:c3:52:a5:aa:43:50:9d:af:e3:47:
45:83:af:18:9d:ed:1b:48:c2:c2:15:c6:80:bb:3b:
49:3b:22:12:ba:a0:63:0d:c7:61:f1:e6:37:99:59:
c4:82:da:de:96:72:58:f1:58:e9:8d:99:6a:f3:19:
bb:ac:e9:a4:87:22:a6:b1:55:0b:3f:9e:d8:30:7c:
04:e9:80:fd:04:e8:d6:69:0b:f4:db:f7:7b:07:dd:
cc:e7:61:36:c3:c1:eb:a1:d1:17:a1:24:36:ba:41:
15:5c:e8:af:27:4d:51:5f:60:99:8d:91:5b:17:65:
ae:4d:8f:0e:a0:cc:af:bf:f1:bc:bf:25:c4:99:99:
2c:db:c6:6e:0a:a9:14:88:32:ab:71:5f:6e:1a:cb:
ec:91:d2:77:97:78:c8:ea:94:27:64:3c:3f:12:a0:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:67:CD:5E:B2:35:FA:1B:D2:B9:E9:7D:2A:B3:10:FD:90:C3:C5:50
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SGfNXrI1-hvSuel9KrMQ_ZDDxVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.64.0/18
Signature Algorithm: sha256WithRSAEncryption
02:fc:14:d9:fd:2f:67:3c:8a:f9:07:dc:97:04:ce:00:08:55:
b8:21:35:a5:56:a8:05:40:fc:19:c7:de:6d:81:ff:5a:82:05:
85:22:03:93:3e:ee:d7:60:f0:4b:22:71:ba:5f:10:24:d1:88:
de:73:b7:83:9e:e0:4d:40:c8:23:cc:47:8a:3b:bc:29:46:c1:
24:75:af:7b:50:bc:e7:e0:96:4a:41:3a:f8:33:04:22:bf:41:
f8:43:7e:87:4d:6e:18:c6:af:ef:29:41:8e:f5:68:f8:cc:f6:
52:65:02:7b:ae:9d:16:01:7f:8f:52:56:6d:38:ef:c7:da:30:
32:f3:4e:c8:b7:f1:bc:e8:9c:82:f2:5a:a6:3a:19:60:be:ab:
f8:88:f9:cc:0b:65:eb:71:b2:b3:4e:5d:e6:0f:df:8a:6d:f9:
d9:21:aa:d0:00:4b:cc:c8:7b:2c:49:4d:60:4d:4e:ad:8b:7e:
5f:2f:47:01:b7:6b:cc:f1:72:3b:73:f6:a6:d6:07:4a:70:17:
22:9d:c3:99:68:69:b9:f8:a7:d5:97:79:1e:fe:b1:0f:e7:a4:
05:02:81:f3:60:f2:0c:70:4e:42:6d:fc:67:61:de:5d:d6:68:
20:22:61:d8:90:1f:a9:00:6f:44:01:40:1e:ec:ca:df:7e:8e:
5c:98:80:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:19 2025 by rpki-client