Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/gAGDD9Ksdlu_Q5Er090j7M7feho.roa
File: gAGDD9Ksdlu_Q5Er090j7M7feho.roa (raw, json)
Hash identifier: Osp2y54Vs6oX4frMVPSUQYQiV3W3NDlu+jkWvNclGQ4=
Subject key identifier: 80:01:83:0F:D2:AC:76:5B:BF:43:91:2B:D3:DD:23:EC:CE:DF:7A:1A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1217
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gAGDD9Ksdlu_Q5Er090j7M7feho.roa
Signing time: Mon 10 Feb 2025 14:28:03 +0000
ROA not before: Mon 10 Feb 2025 14:28:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 210.202.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4631 (0x1217)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8001830FD2AC765BBF43912BD3DD23ECCEDF7A1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:50:25:b7:97:87:a7:97:6b:a4:a2:64:7e:5c:
44:dd:86:18:29:87:4d:dc:1d:90:bb:09:37:b6:c0:
30:ed:cf:26:78:a5:b1:89:43:6a:35:81:68:7b:fa:
70:3c:72:cb:16:6d:3a:32:69:a4:a5:c6:cd:c4:d3:
53:0a:39:81:75:35:3c:01:1a:be:f0:8a:9c:f0:51:
c3:89:88:44:9b:f8:d3:c6:4d:06:0e:31:9b:c8:a2:
6a:e8:ee:66:43:45:3d:e7:fc:8f:64:d5:8e:1d:f3:
6e:72:93:1e:66:a8:4a:cb:b9:88:95:af:5f:9f:cf:
1a:00:aa:59:dd:92:dd:11:07:b1:28:ae:11:05:6c:
b0:cf:98:49:c3:73:ad:12:ba:60:0a:77:ff:5e:6e:
89:56:f4:5c:ff:7d:7d:f9:34:86:10:14:e2:70:4e:
fa:25:c4:09:9c:0d:69:ad:89:f9:c8:bd:56:12:6c:
a5:16:6c:b8:b8:90:6f:6c:46:2e:00:e6:b8:db:f3:
6e:ff:8b:19:c3:f3:17:b5:42:20:01:84:10:1a:47:
66:9b:e2:10:0b:41:69:7d:21:60:11:d4:55:8c:92:
0a:37:e3:1e:5d:9a:32:72:86:ee:e9:28:c0:89:94:
92:71:11:18:a3:3d:b3:1c:0a:3b:93:89:2c:5e:4c:
fa:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:01:83:0F:D2:AC:76:5B:BF:43:91:2B:D3:DD:23:EC:CE:DF:7A:1A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gAGDD9Ksdlu_Q5Er090j7M7feho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.48.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:b1:a4:41:e9:fb:4f:1d:f8:a3:1d:80:24:36:84:38:0a:13:
49:72:91:ec:fc:cc:ec:1d:14:fb:1e:53:f9:38:8a:75:ee:88:
f9:7b:e9:bc:9f:73:45:19:70:50:6b:14:77:05:1d:dc:25:f2:
40:8c:4c:c3:5e:93:b0:62:ab:04:93:78:56:ec:a3:7d:ff:e8:
f9:4c:3c:cd:3f:be:3b:35:82:e6:47:a6:c4:fd:e7:c3:9f:fd:
14:d7:e2:ce:37:d0:74:c1:74:c2:51:6e:84:cd:bc:d4:27:e1:
ef:2c:ea:5e:d6:da:8f:13:b0:0f:cc:be:84:ab:cd:96:0c:5e:
13:89:30:1f:6a:41:41:0a:61:72:ff:1a:d4:b3:d5:06:d5:d7:
ac:a9:1d:f8:7f:a2:6f:0c:8b:f4:c1:2d:e0:6e:85:05:83:cc:
84:0c:e0:4b:17:fe:48:94:2e:32:aa:a2:f0:64:c8:14:33:92:
3e:9a:5f:eb:5f:ed:4b:5e:ee:d4:27:61:34:5b:20:1d:70:8e:
fb:b3:a8:d4:9e:41:63:9b:20:94:95:12:4d:7b:14:51:4e:e1:
88:82:26:41:a1:73:dd:93:99:76:ab:a0:42:28:b0:18:58:ee:
c6:45:fe:c4:ac:1a:2b:35:c2:37:1d:85:69:e8:88:f2:e2:da:
f8:6b:4b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:29 2025 by rpki-client