Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/kqNKObyxcYsdHU9C2ATKY7xmw_g.roa
File: kqNKObyxcYsdHU9C2ATKY7xmw_g.roa (raw, json)
Hash identifier: yGJvNp9bx+UcO5fy8xY4jYUKZBpemj9rU624hri7MQ0=
Subject key identifier: 92:A3:4A:39:BC:B1:71:8B:1D:1D:4F:42:D8:04:CA:63:BC:66:C3:F8
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11FC
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kqNKObyxcYsdHU9C2ATKY7xmw_g.roa
Signing time: Mon 10 Feb 2025 14:27:55 +0000
ROA not before: Mon 10 Feb 2025 14:27:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 222.156.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4604 (0x11fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=92A34A39BCB1718B1D1D4F42D804CA63BC66C3F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:2b:d1:d0:7d:3a:1c:c2:75:4a:3c:92:74:
1d:7c:08:83:06:47:5e:93:b8:0c:26:91:d5:08:90:
c5:3a:0e:07:ba:8a:86:71:f2:bb:ee:74:3c:c1:14:
b1:27:cd:96:17:75:99:54:68:4b:cd:7e:a6:6c:99:
9e:a1:bc:aa:f0:88:b1:16:67:61:66:d2:f6:38:9a:
41:8d:62:25:18:7f:e9:83:48:5b:7a:4c:0b:84:6d:
33:76:88:9d:b6:2e:f7:e0:d2:ef:e9:2f:e1:a3:5a:
d1:19:68:5c:73:5e:36:73:0b:e3:c2:03:f5:30:34:
5a:48:f7:5c:d3:1c:a0:e5:3d:1a:69:3c:1d:17:af:
10:ab:48:0e:61:91:3d:06:2f:a6:ff:61:21:78:d3:
33:5f:f9:44:3a:7b:91:b3:91:dd:1d:39:86:7e:ca:
4b:16:32:07:da:49:c7:62:16:be:e5:6a:ff:d0:75:
e7:6c:3f:d7:37:53:d3:8d:06:7a:1d:a8:09:ae:b0:
d2:36:5b:bc:cd:68:27:a7:11:a3:a8:ec:ca:0f:7d:
6d:a6:a1:2b:7d:d0:2a:9c:88:18:46:bc:c7:aa:83:
e7:51:d0:85:3f:76:a9:dc:c3:58:ec:f5:a8:b8:ac:
40:b3:dd:84:38:0f:89:ab:35:5c:f5:89:5e:6a:2b:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A3:4A:39:BC:B1:71:8B:1D:1D:4F:42:D8:04:CA:63:BC:66:C3:F8
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kqNKObyxcYsdHU9C2ATKY7xmw_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:12:94:a6:35:84:19:22:7b:c1:24:e1:c6:67:2c:9c:08:71:
ac:ad:48:b3:12:ee:1f:db:0e:c9:b4:e6:6a:da:ce:a0:79:ec:
b3:9e:ea:5d:34:47:24:60:67:c4:64:3e:17:ba:59:2c:a1:45:
b5:31:a4:6f:d2:f3:0c:9b:3a:60:bd:a7:bd:93:9e:d2:50:63:
de:c9:78:05:4c:6c:84:b5:1d:39:02:8d:3c:14:4d:9e:ab:2f:
2e:a5:4b:c1:dd:19:31:c7:2c:a6:2e:8d:d0:ef:4c:db:e0:5a:
6a:c5:b2:75:7a:aa:62:59:0d:79:76:63:4c:99:a2:f2:09:92:
4f:d6:73:13:3d:85:75:c8:ba:97:8d:0a:82:e8:ce:9f:6c:3c:
e1:c3:03:70:3e:c5:4d:9e:d0:e3:d3:1a:4a:2a:04:2f:d8:12:
02:c6:13:8b:83:0c:f3:f2:7e:fc:01:6d:24:aa:c0:61:a7:72:
c3:d8:1f:64:f5:09:74:5e:b2:cf:04:c7:d6:ef:4f:20:de:a8:
38:a0:13:93:d0:47:05:d8:44:67:1f:5e:bc:b6:ae:d5:97:bc:
bb:f0:b1:cc:61:7b:7c:c2:f2:ce:34:a9:5b:b8:a8:e0:92:02:
fb:54:e2:f2:ec:80:c0:4a:31:10:32:c0:f4:1e:47:5a:c9:2a:
d8:22:3b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:29 2025 by rpki-client