Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fhJMOYEuAxXSwVbuhgu_9FE4BhA.roa
File: fhJMOYEuAxXSwVbuhgu_9FE4BhA.roa (raw, json)
Hash identifier: 9ZpWcZ0SBcCOO0fwsqDoLNkkyn6AsKe7mr9a14rbGX8=
Subject key identifier: 7E:12:4C:39:81:2E:03:15:D2:C1:56:EE:86:0B:BF:F4:51:38:06:10
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1234
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fhJMOYEuAxXSwVbuhgu_9FE4BhA.roa
Signing time: Mon 10 Feb 2025 14:28:09 +0000
ROA not before: Mon 10 Feb 2025 14:28:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9311
IP address blocks: 210.201.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4660 (0x1234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7E124C39812E0315D2C156EE860BBFF451380610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e5:ca:2c:c4:58:fd:c6:df:7a:16:ad:d4:5a:
5c:f6:38:72:7e:79:f6:67:73:d5:b2:1b:a4:9b:b5:
d3:bc:16:47:b0:68:57:b1:b4:b0:1b:df:43:44:c6:
e5:fa:5e:f6:b6:da:ea:c1:6b:7a:0a:3d:6a:26:41:
61:cd:b2:cd:1c:d9:90:a2:b2:42:d0:5b:42:ad:63:
f1:a9:d3:d3:e9:08:ae:47:3d:43:4a:31:90:02:65:
6c:d2:23:2d:56:2e:cd:90:18:59:74:fd:45:59:13:
6e:a7:4a:92:a8:8b:f5:f5:de:08:ab:fb:6c:2b:43:
9c:c5:d5:53:ec:d6:7d:8f:a9:08:d2:7f:b6:86:ec:
93:ca:7b:2e:93:ce:20:8c:02:69:36:bd:8d:b5:a2:
2d:1c:16:04:b7:36:c4:5b:12:2e:b1:8d:16:54:9e:
9d:ff:05:5c:93:fa:98:9f:42:f3:88:b1:64:89:6e:
13:99:f7:d4:ee:b6:85:17:8d:2b:c9:a5:73:07:95:
6f:af:95:af:85:f7:62:d8:48:59:31:a9:3c:91:a3:
ae:1e:4f:ae:4a:a1:aa:21:4c:02:33:a7:a8:41:c6:
a2:1d:3d:60:ac:1b:a5:e2:ce:0b:44:77:8f:a1:f3:
18:f0:63:97:1d:b6:ad:35:dc:b9:18:1b:c0:ae:59:
a3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:12:4C:39:81:2E:03:15:D2:C1:56:EE:86:0B:BF:F4:51:38:06:10
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fhJMOYEuAxXSwVbuhgu_9FE4BhA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.136.0/22
Signature Algorithm: sha256WithRSAEncryption
30:cb:6e:3d:14:27:6a:a7:e5:af:52:d8:1f:55:2c:fe:51:27:
ae:7b:b7:76:b6:69:57:96:a1:fa:ad:59:46:72:17:a6:0e:88:
72:e9:06:37:e2:b0:dc:27:c5:58:76:a2:09:49:a5:d3:1e:ac:
6d:b7:fa:64:da:ee:4f:d9:fe:ef:8c:34:2f:48:62:e3:df:89:
e1:f7:41:42:e0:a3:60:df:5f:74:16:95:48:20:ff:d4:14:be:
26:7d:c5:4d:cb:d9:9c:e3:c1:03:1f:b6:fc:aa:57:b5:86:df:
64:2d:0b:fe:b4:3a:46:a8:77:38:50:84:2a:6d:9b:22:bc:d5:
5f:aa:fd:d4:77:ad:a9:02:cc:84:b5:cf:92:71:1b:04:b8:3d:
1e:b4:29:84:a3:4c:55:6d:e2:ea:6e:67:69:52:3a:5b:27:4e:
7b:f5:ad:59:71:e3:d8:21:e1:7c:0d:3f:62:4f:b1:05:af:4c:
ec:a7:20:6d:46:7e:ca:d1:3e:8e:c2:38:3c:59:6b:ae:88:89:
2c:bd:f6:ba:a1:52:30:04:fc:c8:45:f3:12:49:fb:cf:d7:26:
d5:27:0d:fb:d2:2d:a7:f9:1f:34:5a:dd:b2:bd:01:5e:07:e4:
46:5e:06:7a:14:5c:32:a2:6e:32:92:7d:eb:06:a5:a5:15:a3:
ff:8d:f2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:09 2025 by rpki-client