Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/azGAz1c5qfz49tEKXOSJj-OcvX8.roa
File: azGAz1c5qfz49tEKXOSJj-OcvX8.roa (raw, json)
Hash identifier: 955E5eIuRGRIna5i7SnUNFc5x4Gsbo7dCR1yfoXRCmg=
Subject key identifier: 6B:31:80:CF:57:39:A9:FC:F8:F6:D1:0A:5C:E4:89:8F:E3:9C:BD:7F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 123D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/azGAz1c5qfz49tEKXOSJj-OcvX8.roa
Signing time: Mon 10 Feb 2025 14:28:12 +0000
ROA not before: Mon 10 Feb 2025 14:28:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 124.218.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4669 (0x123d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B3180CF5739A9FCF8F6D10A5CE4898FE39CBD7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2f:97:3e:39:e4:f7:e9:82:9b:0b:a3:d1:c6:
b7:a0:bc:40:b1:6b:67:a9:bf:d8:e1:d2:8a:e3:7a:
36:58:71:aa:20:16:37:b9:3d:1f:d7:97:6b:96:27:
9a:c7:9f:4e:75:87:9e:7e:d4:5c:80:ff:3c:72:1b:
fe:41:3c:9f:d3:fb:29:df:eb:b1:88:ff:51:07:db:
3d:54:0b:a0:fe:5e:05:74:44:07:eb:ea:90:ea:be:
96:5c:64:8a:75:f8:22:2f:ac:14:4f:34:28:aa:05:
dd:e7:3e:7c:a8:e6:73:ea:86:e9:c9:c8:eb:fb:f3:
36:3e:c4:9e:c2:3f:9d:dd:13:21:ff:d4:42:8e:d0:
9e:c1:3c:9f:3e:c9:98:65:60:f8:27:b3:c3:be:df:
45:81:c9:d7:ee:00:6b:45:20:7a:3e:df:df:bb:1b:
de:ab:7d:65:1b:e0:12:bf:91:4a:e1:06:8a:9e:21:
3e:74:36:f0:08:9a:96:c8:97:fa:3f:13:67:c2:a5:
34:28:b5:c9:a7:89:26:38:75:0a:54:cb:18:b6:91:
62:e4:fd:44:8d:42:5e:ba:08:22:7b:a6:9b:41:63:
e9:e5:77:15:1f:5e:27:a1:b1:87:59:51:0f:d8:93:
f0:7e:06:a7:4c:12:c7:2c:4e:b7:70:fd:77:e5:0a:
83:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:31:80:CF:57:39:A9:FC:F8:F6:D1:0A:5C:E4:89:8F:E3:9C:BD:7F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/azGAz1c5qfz49tEKXOSJj-OcvX8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.100.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:ab:0e:8d:85:d2:0e:9e:e4:6d:b0:15:33:54:c0:57:b7:42:
9d:f4:0c:2a:00:e0:f8:8f:86:68:b2:53:95:b9:86:59:5b:0b:
72:87:0e:9a:8d:03:22:85:91:74:f3:9a:8c:db:ce:93:df:9d:
4d:9c:ff:52:9c:de:97:4e:05:25:df:cd:00:ed:f1:68:34:4d:
23:21:ab:98:3e:86:1c:4a:41:c7:c3:c6:2a:fb:5f:b3:80:24:
d5:c7:4a:1a:ae:ae:7f:fd:4d:e3:ef:f1:5f:1e:1f:e4:39:1e:
30:7c:18:23:e0:59:4c:cf:e0:09:c5:43:7d:1c:d6:fa:7f:bc:
62:71:c2:77:5c:51:ea:79:98:fe:ef:ae:9d:cd:6b:67:b2:ba:
10:d2:80:bd:22:c4:14:ae:e6:d7:83:89:77:7a:3c:c9:46:a0:
69:09:e8:fd:6d:08:54:74:ee:ad:5a:44:c8:84:e3:39:84:e4:
9c:6f:cf:73:54:35:c0:52:3b:6b:a0:de:4a:b8:e4:6e:d8:9c:
6e:2b:70:ac:94:a8:0c:dd:d4:05:72:d8:15:53:6b:05:94:a8:
d3:53:68:15:b0:cf:b0:5d:28:1d:9b:b4:1f:64:31:a4:d0:ed:
9a:ba:46:39:6d:f6:6d:a1:82:31:d5:6b:51:8e:ae:25:00:26:
88:72:c7:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:56:43 2025 by rpki-client