Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/qGM7x5zEu0Q8cAB-V6gExqlDmWo.roa
File: qGM7x5zEu0Q8cAB-V6gExqlDmWo.roa (raw, json)
Hash identifier: c5Uryd0h2baGa8bt+AU7rnXCxL86gWoAJElROnawKvk=
Subject key identifier: A8:63:3B:C7:9C:C4:BB:44:3C:70:00:7E:57:A8:04:C6:A9:43:99:6A
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11C2
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qGM7x5zEu0Q8cAB-V6gExqlDmWo.roa
Signing time: Mon 10 Feb 2025 14:27:41 +0000
ROA not before: Mon 10 Feb 2025 14:27:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 203.79.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4546 (0x11c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A8633BC79CC4BB443C70007E57A804C6A943996A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:bb:49:4b:b7:47:63:b3:c8:10:5c:09:72:
7a:93:e2:04:52:4b:d2:95:73:7a:94:59:40:47:99:
be:ff:2a:1e:0e:cc:1a:46:f3:f0:8b:85:c2:86:eb:
9b:16:09:f8:f0:2f:00:98:c8:3c:91:a7:8b:c7:7e:
8f:46:83:6a:58:fe:94:b9:a1:b3:2a:63:c1:a5:7c:
eb:fa:66:20:c0:f2:f4:d7:3b:f0:53:df:3e:bf:bf:
d6:a0:55:d3:7f:56:2f:a8:e5:a9:06:61:1b:6b:3e:
f7:eb:02:f2:5d:3e:14:b8:d1:26:ed:21:5a:8d:87:
22:fb:34:4e:bc:3a:78:c8:2a:06:2b:af:b1:89:cf:
93:7d:a9:be:42:40:97:a0:99:90:d8:f8:57:21:f7:
fb:3e:13:73:64:e4:f0:1c:f2:61:5f:3b:08:30:74:
11:3c:53:98:be:00:1e:c1:bf:3e:5a:ee:8a:7f:44:
45:29:a3:43:bd:e8:1c:02:1e:28:dd:9d:3b:70:32:
7c:24:d6:ea:80:68:b0:36:ca:71:ff:f7:68:29:a0:
fd:d0:b7:6d:c0:b5:be:9f:15:46:b6:ca:20:c8:37:
1a:2b:9f:28:ed:eb:74:96:de:5e:54:27:8b:4c:6e:
12:d3:6e:11:9c:fb:b8:d9:de:99:fa:43:db:3e:f6:
45:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:63:3B:C7:9C:C4:BB:44:3C:70:00:7E:57:A8:04:C6:A9:43:99:6A
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qGM7x5zEu0Q8cAB-V6gExqlDmWo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/18
Signature Algorithm: sha256WithRSAEncryption
c7:bd:b3:87:cf:30:b7:b1:11:c4:b1:6d:a3:17:24:ee:d9:3f:
46:6b:43:91:bf:00:28:2a:fd:cd:4b:9f:ac:bc:9a:43:89:49:
d4:10:c1:38:f5:0b:83:45:a4:cb:d3:7c:a3:b3:22:34:08:44:
de:b7:b5:27:88:12:7b:e6:18:74:17:28:6d:04:39:77:7c:43:
fa:00:f2:d0:45:ac:6d:89:1d:5a:27:e0:4e:2b:20:b8:cf:ec:
e8:e7:06:b1:16:45:a0:ff:79:56:41:ed:03:c3:c9:7b:50:ac:
e4:c7:42:bc:73:ee:6d:5f:a8:90:e9:50:1e:93:56:c8:e4:4b:
a2:24:b9:81:d7:e5:f9:74:08:63:e7:57:86:36:74:5a:5f:c2:
86:c4:84:be:70:ab:c0:73:16:d6:91:36:0b:21:28:05:f7:2a:
0a:26:6f:f4:76:a4:07:d3:74:51:15:c8:47:a1:cc:f1:8a:3a:
4c:ce:b8:87:63:53:fe:41:be:88:de:33:ee:99:69:74:7c:10:
d7:32:95:46:36:72:bb:cc:b4:4e:3c:f7:33:88:06:fb:e6:25:
1c:43:b9:c0:55:17:c3:a4:e2:9c:81:38:c6:f5:65:6b:cc:ac:
c9:24:93:c2:71:e1:a4:bf:ff:49:91:37:79:ab:e1:b3:93:6e:
22:b9:62:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:11 2025 by rpki-client