Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_swgWdovZuJcFAf6FM0RI6N9Mlk.roa
File: _swgWdovZuJcFAf6FM0RI6N9Mlk.roa (raw, json)
Hash identifier: POQKlMeYdspHSz3NZ+O0WoZcqXj/mfMbXtexmrW6bKA=
Subject key identifier: FE:CC:20:59:DA:2F:66:E2:5C:14:07:FA:14:CD:11:23:A3:7D:32:59
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1236
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_swgWdovZuJcFAf6FM0RI6N9Mlk.roa
Signing time: Mon 10 Feb 2025 14:28:10 +0000
ROA not before: Mon 10 Feb 2025 14:28:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 203.201.32.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4662 (0x1236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FECC2059DA2F66E25C1407FA14CD1123A37D3259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:97:6a:75:f1:c5:a7:b8:06:00:21:83:37:8b:
20:e5:f9:c0:71:52:01:82:b7:54:2e:61:84:f5:79:
56:71:0b:9f:9b:a4:47:cf:4e:6d:27:d0:6d:e3:02:
3a:44:3c:12:e4:99:ae:cc:0e:5c:fc:34:4e:27:bd:
1b:67:a9:fc:6e:b9:59:0c:6f:87:f4:7c:20:d1:53:
27:fe:fe:d9:17:8a:db:ad:29:30:c2:50:c0:29:a9:
7e:7f:a6:e5:ed:1f:f3:b8:5c:63:1b:28:61:51:be:
03:69:23:58:e4:f5:0f:e7:89:41:d9:a9:38:50:81:
de:7c:6d:4c:43:e0:e1:c5:2e:42:c6:a5:4e:4f:85:
35:b2:d6:1e:31:57:90:e7:79:18:24:56:c3:58:2a:
23:9d:2f:92:27:a3:96:9f:b4:c5:c9:c6:89:3b:81:
0a:70:91:b7:e0:76:26:9a:17:db:96:f1:fa:c7:a6:
c8:4d:39:8a:d9:d8:2f:87:64:34:4e:0a:31:54:cf:
b8:d0:fe:de:b4:e6:f1:64:83:31:5e:73:35:2c:db:
71:d8:55:8c:10:5c:a0:bf:d7:e1:cb:48:22:c2:9f:
17:86:a1:af:3e:4c:9d:ac:c3:1b:93:78:55:35:53:
02:85:c2:5f:1a:21:dd:35:cd:76:7d:23:df:70:46:
f6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:CC:20:59:DA:2F:66:E2:5C:14:07:FA:14:CD:11:23:A3:7D:32:59
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_swgWdovZuJcFAf6FM0RI6N9Mlk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.201.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:86:62:21:23:69:90:9f:83:fc:8f:c1:ab:47:63:f7:c4:cc:
78:9f:52:da:5f:40:74:55:23:ff:89:98:60:2d:e0:93:c4:6f:
0f:19:90:57:03:6a:c4:96:5e:3f:d4:3e:bb:03:5f:fa:83:1f:
43:f8:b9:12:cb:71:c8:fb:26:d3:f8:01:4d:53:f8:55:7b:2d:
ec:f0:d2:cf:01:68:b5:b2:ee:a1:99:74:54:d8:c5:fc:2f:57:
8a:5f:14:57:1b:1c:04:e5:45:5c:c0:6a:11:da:be:2c:9d:97:
77:e7:b0:c3:57:ca:05:11:c6:78:bb:fb:95:0f:7c:a6:3c:71:
7b:96:36:cb:f6:e7:17:ca:c5:bf:b6:8f:88:5a:bc:7a:85:83:
76:4b:15:66:e7:07:bf:8d:db:77:b5:ca:5f:4b:03:e6:a7:86:
4e:15:24:8c:54:eb:bc:69:f8:6e:a2:7a:a1:c9:88:50:a2:06:
70:15:af:94:d5:3f:44:4b:4f:ef:17:3b:2a:60:07:6f:be:31:
37:fd:b5:d2:57:83:3c:ed:c4:63:50:ed:a0:71:7d:a1:d9:b7:
24:4b:ef:16:92:bd:b0:f5:b0:db:fa:24:60:ff:22:22:35:ad:
fb:78:e3:bc:1c:31:04:11:5f:7f:aa:60:93:63:d9:02:6b:e2:
fc:0d:68:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:19:50 2025 by rpki-client