Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/a8gqUmolwitdIbdobUVnPtimEh0.roa
File: a8gqUmolwitdIbdobUVnPtimEh0.roa (raw, json)
Hash identifier: RsREZwJlikKlEZE/IcLqB/4qImc4yhcvEvy2vStma7k=
Subject key identifier: 6B:C8:2A:52:6A:25:C2:2B:5D:21:B7:68:6D:45:67:3E:D8:A6:12:1D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1265
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/a8gqUmolwitdIbdobUVnPtimEh0.roa
Signing time: Mon 10 Feb 2025 14:28:22 +0000
ROA not before: Mon 10 Feb 2025 14:28:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 203.79.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4709 (0x1265)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6BC82A526A25C22B5D21B7686D45673ED8A6121D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0b:16:88:24:41:59:4c:cf:4d:89:b0:35:5d:
e0:7a:ad:7a:86:49:64:ac:22:c9:70:7e:dc:8a:02:
f6:4d:e8:48:f1:71:de:a2:fd:08:b3:1f:ac:8d:80:
06:16:6d:fc:aa:ee:2d:91:db:30:86:17:a5:a0:8f:
34:9d:58:93:fd:72:3c:b6:1f:da:9c:25:d9:82:fe:
92:4f:14:b5:81:89:3d:0c:8d:9e:c6:08:3c:04:e2:
a8:1c:d6:fe:86:7d:bf:f4:65:2b:f1:80:ee:a6:52:
ad:42:88:60:ae:5e:a3:32:f2:76:d3:69:66:75:eb:
33:71:61:d5:a1:1f:26:cf:1e:9d:eb:f6:bb:f6:5c:
a0:c6:0d:24:a7:c5:2d:f3:ef:d1:b2:93:e2:54:62:
2a:8a:25:c6:85:a1:74:d5:04:c3:db:c0:0f:68:3d:
f1:f3:71:41:d5:61:00:20:e0:79:d6:90:8f:53:6b:
b7:5a:6d:5c:a8:c5:15:33:4e:61:08:61:c6:ae:cb:
7f:2b:a8:32:48:eb:ae:0c:22:73:8c:19:35:94:b4:
50:d5:17:20:46:63:91:2a:24:6a:f3:fe:60:d0:02:
0e:9d:61:5b:44:a1:7f:e0:b6:3f:67:31:cc:2e:c8:
ad:4e:18:dd:49:7d:89:e6:39:20:5d:9f:76:e8:c4:
60:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C8:2A:52:6A:25:C2:2B:5D:21:B7:68:6D:45:67:3E:D8:A6:12:1D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/a8gqUmolwitdIbdobUVnPtimEh0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.232.0/21
Signature Algorithm: sha256WithRSAEncryption
80:53:fc:72:bb:44:cd:d8:9f:06:57:8e:93:43:47:d3:f8:bc:
73:ef:2f:e3:9a:8b:a8:30:44:0d:d9:22:c5:1d:b5:bc:a0:13:
c8:5f:e6:b9:65:33:5a:a7:39:0e:99:0e:f3:fd:9b:2b:9a:3a:
e8:74:94:ad:1e:f9:2f:18:b9:be:80:de:71:71:6d:ec:ae:13:
70:07:7a:3b:47:71:d1:91:3e:a7:2b:ad:a3:ef:03:6e:5a:58:
18:2b:2a:ca:b6:36:f7:b7:eb:4f:13:7c:32:df:f8:1b:b3:14:
33:dd:78:73:f4:38:3b:fb:ef:39:dd:20:5a:db:95:f8:61:86:
a5:38:af:63:ff:82:c7:e6:19:52:4f:14:25:9e:2d:ae:6e:83:
74:ec:7d:47:16:3e:99:d8:f6:29:81:fc:db:d0:e0:23:f6:3d:
b0:9d:4c:6c:6c:9f:27:f7:e6:11:b4:a3:78:81:b4:be:a4:9c:
84:64:8d:1e:4a:3d:0c:f3:d1:86:bb:24:39:c4:0b:4f:c2:2b:
ac:c3:5e:8b:59:40:8d:89:c6:13:2c:3d:ef:14:06:d3:64:9c:
c6:92:4b:e8:10:18:55:9a:0d:42:65:91:ba:19:95:06:82:91:
14:8c:28:f2:98:cd:22:c4:1d:41:26:d0:ec:7d:a8:0c:ee:aa:
97:75:bf:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:42:29 2025 by rpki-client