Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa
File: dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa (raw, json)
Hash identifier: 8iGrgzv8wQb3J+ZMxTf9iAFBAK51k2VtLOmrQAXxcrc=
Subject key identifier: 75:00:3D:7C:3B:21:EC:E0:97:0D:92:0E:67:AE:A5:74:38:3B:46:ED
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 127D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa
Signing time: Mon 10 Feb 2025 14:28:28 +0000
ROA not before: Mon 10 Feb 2025 14:28:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131597
IP address blocks: 218.35.64.0/19 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4733 (0x127d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=75003D7C3B21ECE0970D920E67AEA574383B46ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:38:52:de:11:64:25:6e:50:12:8f:71:cd:cf:
f8:b1:a7:e4:54:7a:35:1a:2b:86:f6:05:d5:36:69:
79:63:22:01:28:60:ef:fd:93:dd:2b:62:c3:3e:da:
ff:75:7c:df:fc:4f:1e:bb:c8:c9:be:b9:dd:3f:4f:
45:13:62:af:58:e0:06:ce:0f:0b:f3:2f:35:e7:10:
4d:cd:34:2e:19:66:19:92:5f:cc:b4:d5:99:7d:88:
6f:f6:d9:a3:31:82:ba:f3:86:74:5f:09:d8:5c:c5:
c3:2c:00:e8:6a:84:58:a3:06:d5:9f:28:c1:b6:64:
42:d6:da:c1:ed:ab:61:31:35:de:63:68:ec:7b:5f:
c5:cf:c9:d1:9c:a9:3b:53:68:a3:9b:70:06:65:2a:
cb:3f:85:38:b0:84:5b:15:31:41:12:d7:e6:04:a2:
20:28:ac:14:98:05:c0:46:a6:1e:97:59:68:bd:df:
e1:6c:f5:39:8d:21:9e:66:f1:b5:97:4b:70:7f:d1:
84:15:6e:79:ae:a4:aa:d7:25:2d:98:40:f1:b0:6f:
73:87:2c:47:bf:b2:94:17:7a:ab:ff:13:ef:d6:39:
50:db:a6:f9:ec:99:2a:bd:d4:ae:91:c3:b3:84:4b:
4c:26:2c:dd:88:3f:7a:25:95:29:db:ce:40:32:9e:
6e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:00:3D:7C:3B:21:EC:E0:97:0D:92:0E:67:AE:A5:74:38:3B:46:ED
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dQA9fDsh7OCXDZIOZ66ldDg7Ru0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.64.0/19
Signature Algorithm: sha256WithRSAEncryption
c0:fd:42:d4:04:49:d7:61:40:6b:53:02:2f:8d:ed:30:ee:78:
1f:f2:26:46:12:61:26:94:0d:c3:aa:f6:95:86:87:bd:62:e3:
dc:60:6e:37:f2:73:5c:66:96:ca:ed:ef:59:13:b2:16:6f:50:
26:c9:4d:d6:14:05:69:dd:25:bf:7c:c8:7e:2c:d3:ee:19:10:
7b:10:06:ce:f5:32:bb:05:2b:ad:cd:af:2c:4f:30:1f:f0:61:
99:f0:cc:e8:64:37:ac:e8:31:81:a4:1b:fd:55:5c:98:48:90:
9c:8e:85:67:d2:72:55:a1:c9:57:75:dd:7f:eb:74:b5:ab:5c:
7e:0d:98:84:0c:76:3b:5a:d5:61:23:33:2b:f4:89:7c:d6:e3:
b5:a0:5d:bd:05:67:97:85:77:48:78:e5:4f:c3:39:25:fb:fc:
8e:7d:62:ca:4a:b8:a0:f4:88:c5:71:9e:c3:c7:2e:97:c4:c2:
12:4d:47:31:53:3d:72:2f:a1:58:11:6d:58:bd:3a:1a:53:f2:
92:50:07:d5:62:1a:77:ba:6c:3e:4f:8d:51:0d:a1:9b:c4:71:
12:f5:59:29:ce:a7:52:8b:df:1f:85:9b:b4:a8:69:a1:a6:c1:
b4:de:ba:90:f5:9d:27:94:75:41:58:93:55:7f:5c:68:dd:db:
50:86:af:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:44:13 2025 by rpki-client