Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/VwoygsUbzaNbjYw6mjG4f3sQ-GY.roa
File: VwoygsUbzaNbjYw6mjG4f3sQ-GY.roa (raw, json)
Hash identifier: 6gOYfH1yE3DlAI41b9n2xyEYp5/+TqZ1C7MtgM2a2j8=
Subject key identifier: 57:0A:32:82:C5:1B:CD:A3:5B:8D:8C:3A:9A:31:B8:7F:7B:10:F8:66
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11D6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VwoygsUbzaNbjYw6mjG4f3sQ-GY.roa
Signing time: Mon 10 Feb 2025 14:27:47 +0000
ROA not before: Mon 10 Feb 2025 14:27:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 210.200.16.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4566 (0x11d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=570A3282C51BCDA35B8D8C3A9A31B87F7B10F866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4f:3c:23:73:6d:8f:a0:64:58:11:56:ac:4c:
79:2c:d5:5c:33:3a:e1:5f:b1:36:8e:b6:db:22:81:
c7:ea:a2:92:ba:a6:60:b8:93:38:2f:c8:c8:46:b5:
9b:9a:b0:05:3c:3e:34:c1:65:d8:f4:bc:02:e0:4e:
fc:8e:23:79:21:2d:78:d5:9e:53:d4:00:3a:9e:34:
ab:15:b8:f2:6e:66:55:6e:e2:11:65:ba:64:c0:e4:
c3:f3:c9:81:85:16:1b:26:33:d6:d9:5d:80:2c:e2:
9c:3d:1e:ee:de:70:ce:71:91:0c:ef:14:6a:a7:8e:
5b:ae:f7:01:71:71:06:bd:a7:1e:1b:40:c8:fb:cc:
0d:7b:ea:ae:10:9d:c0:3a:6b:92:9f:0c:a1:df:4c:
48:6a:2f:f8:39:85:f1:c4:79:2b:53:c2:ca:48:ea:
fb:4e:fc:30:18:b1:65:73:27:cd:2c:83:06:fd:e5:
2b:9e:94:74:d2:9d:8e:26:e1:09:09:25:02:2d:e1:
64:60:6b:af:d6:d7:cf:a6:1f:ae:5e:10:f5:5b:6e:
b4:61:05:a6:78:75:87:ec:71:63:67:c1:5a:04:c6:
3a:52:05:8c:a1:a2:dd:01:14:54:51:ec:d3:5f:12:
b6:e7:fa:dc:3d:01:63:6c:2c:0d:c0:73:bf:2e:bf:
72:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0A:32:82:C5:1B:CD:A3:5B:8D:8C:3A:9A:31:B8:7F:7B:10:F8:66
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VwoygsUbzaNbjYw6mjG4f3sQ-GY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.16.0/20
Signature Algorithm: sha256WithRSAEncryption
11:b6:b3:25:2b:db:85:f7:a0:6f:65:38:71:22:ae:b0:f9:7e:
ac:67:4c:4f:82:b4:4e:51:8c:04:96:53:e5:9e:b9:57:f5:1c:
56:f4:43:b5:a5:eb:5b:47:39:57:e0:5d:2e:2e:43:04:cb:d2:
62:80:fa:b6:f5:44:f7:76:8d:e7:cf:1c:f2:2a:f5:1e:5d:7e:
68:11:6c:ed:4b:bf:76:8d:57:36:8a:d0:e8:3b:d1:5c:e3:b2:
e9:eb:46:13:bb:6a:bc:61:29:76:59:d9:bd:b1:2b:18:ed:cf:
8b:e0:f1:42:83:fe:c0:8f:00:ed:df:94:5f:86:c5:b6:60:61:
05:8a:79:b8:9b:9e:41:91:a6:b8:7d:08:e2:51:53:a9:f3:bd:
f1:89:9f:ff:72:89:44:84:24:4d:b2:d2:e8:1e:bf:2f:c1:92:
df:d8:39:33:8e:22:14:df:49:a9:ea:3b:67:4c:7e:99:8c:9a:
4c:33:48:ec:0c:a6:0f:b1:ab:c0:3f:a8:37:22:96:af:fd:d1:
60:60:b5:e4:d3:8b:dd:77:ee:06:93:36:27:72:3e:88:cf:bd:
3a:76:67:fd:db:36:59:cf:76:28:a8:e2:d3:5c:89:94:60:77:
27:9f:d8:85:46:b4:37:e2:b1:19:74:6e:1e:22:8d:d8:c6:7d:
33:c0:6d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:21 2025 by rpki-client