Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aGJeAteMz_WmKOlDzR1i3-YLjWE.roa
File: aGJeAteMz_WmKOlDzR1i3-YLjWE.roa (raw, json)
Hash identifier: xx2Zh2+uxoQTjuxOCLjD0ykZiMlI7t2eu2JpXrzbzLQ=
Subject key identifier: 68:62:5E:02:D7:8C:CF:F5:A6:28:E9:43:CD:1D:62:DF:E6:0B:8D:61
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11AC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aGJeAteMz_WmKOlDzR1i3-YLjWE.roa
Signing time: Mon 10 Feb 2025 14:27:37 +0000
ROA not before: Mon 10 Feb 2025 14:27:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 60.244.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4524 (0x11ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=68625E02D78CCFF5A628E943CD1D62DFE60B8D61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:12:32:d9:1d:1d:93:b9:6f:10:c9:29:7c:0b:
12:4d:4a:49:ca:57:81:7d:dd:59:85:a9:fa:76:63:
0f:92:d6:a4:36:54:6c:28:66:d0:16:b3:b3:66:11:
c2:57:a5:b2:d5:35:da:4e:4d:72:37:d4:01:13:5b:
f2:02:21:3f:7a:91:20:b7:8b:0a:e8:f3:78:7d:dd:
8a:3b:0d:c3:9b:98:3e:62:5b:8d:ca:a1:51:7b:6c:
97:03:69:00:2b:79:4a:37:0a:63:62:2d:54:98:aa:
9f:36:2e:e1:fc:21:1b:86:ab:11:d1:5e:0a:fc:6d:
de:a2:a2:01:61:98:d6:1d:02:b0:c5:80:d6:87:0e:
17:fd:03:f2:26:34:a1:4e:9e:a7:b5:13:db:98:43:
43:fe:fc:18:96:1c:d4:d9:58:98:fb:31:6c:11:82:
97:70:0c:fc:60:e1:1a:df:8d:9c:10:f1:66:a2:7d:
41:4c:f8:af:6b:76:23:68:7c:fe:65:ec:1d:c7:5f:
73:7b:aa:9d:70:51:07:16:8e:ec:87:17:2a:9b:e1:
08:f6:50:dc:dc:37:33:f1:f5:e4:1a:41:47:4a:ec:
3a:59:8e:2c:78:d3:27:a8:84:05:2c:0b:24:f4:56:
b8:71:55:27:97:66:26:18:3c:61:f3:11:90:8b:91:
58:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:62:5E:02:D7:8C:CF:F5:A6:28:E9:43:CD:1D:62:DF:E6:0B:8D:61
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aGJeAteMz_WmKOlDzR1i3-YLjWE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.64.0/18
Signature Algorithm: sha256WithRSAEncryption
69:ef:58:32:f4:3e:36:b4:db:de:b0:46:ae:38:78:62:ec:f5:
35:72:04:57:77:b6:16:ff:74:cf:ff:37:0c:07:44:7d:15:9d:
f5:13:3c:58:50:39:8d:24:db:3a:47:9b:5f:55:b5:76:84:ce:
57:84:68:34:e7:bc:b6:c7:de:bb:e0:54:c0:bc:1e:64:d5:75:
df:87:23:fd:d6:d3:2b:20:b1:3c:cd:84:88:9f:91:a0:81:14:
92:20:78:79:24:82:39:fb:93:df:6a:31:cc:d7:e5:e1:58:b9:
7d:23:87:b6:e5:6f:37:f3:39:1b:49:54:64:bc:29:30:43:ca:
b8:ad:4f:9a:7b:96:c6:dd:c3:44:c0:4f:a0:b4:40:d3:07:be:
2e:ca:1e:86:16:d0:f0:54:4d:77:26:43:0b:25:8e:a1:7b:7a:
92:d4:41:7a:3a:d3:10:d9:b9:5d:09:4c:8c:63:ce:ff:1c:75:
11:c3:50:5c:f0:d9:a7:bf:a6:95:2c:16:19:ea:b5:9c:2b:e4:
c4:da:a6:a3:5f:b2:4b:5a:51:4e:a5:cf:ad:12:3d:83:9c:6f:
e5:62:72:37:80:a2:26:28:69:bc:dc:67:95:c5:22:92:b1:f3:
f7:10:06:98:60:79:08:0d:13:90:73:ea:ed:f3:1c:74:93:da:
32:3c:90:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:43:31 2025 by rpki-client