Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/qM1Cnx6j26DZje5I3youdKBvsQc.roa
File: qM1Cnx6j26DZje5I3youdKBvsQc.roa (raw, json)
Hash identifier: f7BTvfZMBjvkfu1laC//DeWlkfhSm8+BSIHwUcLXiCE=
Subject key identifier: A8:CD:42:9F:1E:A3:DB:A0:D9:8D:EE:48:DF:2A:2E:74:A0:6F:B1:07
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11AB
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qM1Cnx6j26DZje5I3youdKBvsQc.roa
Signing time: Mon 10 Feb 2025 14:27:36 +0000
ROA not before: Mon 10 Feb 2025 14:27:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 124.218.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4523 (0x11ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A8CD429F1EA3DBA0D98DEE48DF2A2E74A06FB107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:67:56:96:80:eb:85:40:28:cc:b3:19:36:50:
02:59:ef:0b:12:4e:62:44:0c:0a:79:e3:7d:95:f9:
e5:f3:21:1d:83:e0:a8:87:66:49:3f:b7:b2:2b:43:
c5:2e:4b:11:33:67:71:b0:2e:1e:26:f0:20:77:3b:
83:17:be:ca:4f:ac:4f:cf:26:ad:5e:62:2c:95:a6:
c4:ad:69:fc:ea:2f:d2:5e:ce:43:73:49:8d:e4:68:
c8:8c:97:c2:d2:24:a6:f5:37:d4:61:a7:45:14:7f:
d6:a9:71:f9:c3:5b:c7:6c:e8:d6:2b:15:63:c3:6a:
82:48:b1:52:33:c0:37:26:54:ab:b9:17:85:41:ec:
c0:18:6a:29:83:a2:7e:95:92:73:12:10:5b:0d:64:
8e:c4:c2:5e:d9:ba:7d:df:2f:c7:7e:ff:9f:de:0a:
ed:20:d5:6c:2f:da:fc:62:79:00:8d:ea:54:c5:19:
a3:66:84:7d:dc:96:9e:50:35:18:ce:1b:35:d0:d2:
b1:51:bc:9d:7b:71:66:62:4d:df:17:7f:ab:96:b1:
42:75:a3:07:6f:9b:4a:5b:6b:f3:98:30:e5:37:cd:
fb:1e:92:e0:fa:91:0b:22:db:af:96:e3:84:b2:d0:
ae:8e:08:d0:52:ac:46:a1:f6:7e:23:06:c5:7a:56:
5b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CD:42:9F:1E:A3:DB:A0:D9:8D:EE:48:DF:2A:2E:74:A0:6F:B1:07
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qM1Cnx6j26DZje5I3youdKBvsQc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.192.0/19
Signature Algorithm: sha256WithRSAEncryption
32:5f:87:94:5d:aa:28:b3:76:4e:6d:cf:7a:e4:9e:8c:81:f5:
10:df:5f:78:d8:37:fc:51:00:cd:62:f1:15:eb:60:aa:08:5b:
23:de:5b:2d:2a:01:49:9f:43:67:4e:fc:15:d7:d2:98:b3:65:
c6:20:34:a1:63:1d:23:62:5e:2e:30:81:e3:c0:06:d3:11:7b:
5b:50:47:10:9c:a2:64:33:20:69:41:35:8e:60:4b:8a:2e:dc:
42:b8:33:b2:54:5e:b8:88:87:6c:7b:28:01:99:2c:67:f8:37:
23:c0:6e:03:77:fd:53:85:33:2d:ea:0b:c9:25:6c:0c:1e:15:
ef:af:20:ec:78:55:4d:62:cd:b4:6a:71:6e:f9:a5:66:38:8a:
5b:cd:e1:cd:17:17:2e:73:f3:88:e1:22:8b:28:98:c7:51:96:
74:d3:29:9d:a1:73:5b:d3:10:4a:ea:f6:c5:0e:92:8c:3d:de:
92:71:8c:37:47:5f:ed:2f:d4:6f:a9:4c:73:df:38:84:a6:a5:
1d:de:18:71:6e:b9:2e:d8:e5:26:ce:83:1a:99:86:a7:20:21:
2c:90:57:34:79:5f:8f:6c:eb:37:8b:d1:15:28:e0:1f:0f:5b:
2d:76:93:38:a6:8b:74:2c:8d:81:47:a5:c9:ce:80:dd:01:36:
16:b3:77:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:27 2025 by rpki-client