Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/d68WXEIgi2bL2cyF8Q4nifxb_1A.roa
File: d68WXEIgi2bL2cyF8Q4nifxb_1A.roa (raw, json)
Hash identifier: 8WfpvRZTjc6esoPER8oRgVoAFvD1Gnv++SXToERU9ug=
Subject key identifier: 77:AF:16:5C:42:20:8B:66:CB:D9:CC:85:F1:0E:27:89:FC:5B:FF:50
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1238
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/d68WXEIgi2bL2cyF8Q4nifxb_1A.roa
Signing time: Mon 10 Feb 2025 14:28:11 +0000
ROA not before: Mon 10 Feb 2025 14:28:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 60.244.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4664 (0x1238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=77AF165C42208B66CBD9CC85F10E2789FC5BFF50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5e:b4:9c:38:2b:aa:5d:9f:c3:fa:ac:ea:70:
b0:07:c5:f8:d9:b3:d9:9c:03:31:26:55:66:f5:0e:
47:c4:e9:74:9a:96:8e:7a:fa:04:8d:21:0a:ea:14:
20:39:65:2c:a8:f5:57:67:14:4c:f9:d2:26:ab:88:
28:a2:4c:51:24:10:b0:54:b6:fe:98:e6:9a:9b:c2:
28:9e:3f:02:13:78:13:e7:6c:5e:18:30:9c:7a:37:
d5:7e:e3:9f:6d:02:ec:9e:2e:37:19:68:ff:7a:f6:
6b:ec:06:83:4f:4a:de:5c:ca:5c:cb:81:6a:51:a3:
2a:ec:9d:c0:d3:3f:c3:2e:ad:85:d5:31:88:1b:d5:
d5:ed:67:fe:3c:a9:b6:22:4d:1b:eb:a5:42:fe:cf:
8d:57:47:63:b1:96:87:04:d0:68:ed:a0:38:ce:f4:
77:3a:f7:bd:bd:11:b9:a5:a3:42:2a:6e:e9:39:b5:
82:27:a5:6b:57:da:33:cf:35:73:4f:4f:ab:21:ec:
41:ca:1b:5f:ef:63:ad:f9:df:c9:57:a7:ca:d2:7e:
12:85:6e:5b:ea:c1:04:de:ae:f1:c2:07:c3:45:cb:
2f:c9:04:03:bd:2c:47:b1:30:bd:9d:9e:6f:1f:86:
01:f8:0c:3c:91:79:3f:0d:f4:67:94:2b:86:ed:f3:
de:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AF:16:5C:42:20:8B:66:CB:D9:CC:85:F1:0E:27:89:FC:5B:FF:50
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/d68WXEIgi2bL2cyF8Q4nifxb_1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1e:bd:23:c8:39:0d:d5:10:7e:73:37:06:ce:a6:21:12:dd:ff:
11:90:ca:87:ec:05:01:b8:e6:29:83:6a:e1:cb:eb:50:b6:c3:
ba:16:fd:df:e9:0e:65:a2:61:22:e7:ff:13:c3:42:db:33:74:
46:7b:5e:63:e0:fe:8c:b3:1a:0d:48:ed:69:02:ae:74:d5:9a:
d0:c8:51:7f:30:3d:9f:7d:63:c4:ac:a3:ef:13:cb:75:c9:04:
3f:41:69:10:82:e1:a0:b4:96:0e:e6:e8:94:1c:65:7f:08:0e:
9c:99:f7:02:cc:a2:3a:70:d2:5a:00:cd:88:84:7b:f4:86:34:
5f:1e:93:2e:74:06:01:bc:89:a3:ae:4e:3b:1c:d0:ea:8a:ff:
49:1f:ce:4e:dc:8c:b4:1a:86:d5:9b:1a:66:cb:8e:f9:fb:d3:
a4:6b:36:2b:88:f2:09:53:cb:76:d1:de:96:88:52:06:fb:3b:
a6:82:2c:57:d9:39:30:0e:05:52:62:d0:66:ce:e6:f7:81:09:
45:a6:f0:d3:ef:31:b7:fe:06:29:0e:01:d7:3b:ff:2f:03:d7:
a9:a2:0e:8e:ba:89:47:12:f2:39:63:fa:ee:98:33:00:91:f1:
32:0b:78:f7:22:26:b8:04:37:bb:11:ce:f6:35:f3:ac:c5:7b:
76:21:f5:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:18 2025 by rpki-client