Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/tfySralcmSZWr_HMzXls25EhppE.roa
File: tfySralcmSZWr_HMzXls25EhppE.roa (raw, json)
Hash identifier: Y0X21GgRNZxx/ER5YKM50LlcCwJg3zd9qFz6WtvPtqM=
Subject key identifier: B5:FC:92:AD:A9:5C:99:26:56:AF:F1:CC:CD:79:6C:DB:91:21:A6:91
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1260
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tfySralcmSZWr_HMzXls25EhppE.roa
Signing time: Mon 10 Feb 2025 14:28:21 +0000
ROA not before: Mon 10 Feb 2025 14:28:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7482
IP address blocks: 210.201.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4704 (0x1260)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B5FC92ADA95C992656AFF1CCCD796CDB9121A691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d5:7b:a0:1c:0d:58:fe:e0:3b:f3:c0:3f:e1:
b5:f6:91:d5:3f:69:dc:07:49:37:07:b7:53:81:54:
6e:11:87:d7:7d:bb:a3:e1:48:da:e6:70:fc:64:13:
68:61:da:5c:01:ec:25:f5:7d:bc:22:93:96:a4:08:
a1:7a:f8:24:6e:34:36:62:fb:d1:3a:04:e7:9e:fa:
3c:e8:11:46:b6:d7:0f:c6:11:44:63:f5:a9:e1:04:
7a:a4:a0:40:7f:17:12:86:ab:7f:c7:20:d5:bd:3d:
ae:9a:92:fa:75:9d:98:6c:8b:ae:2e:d5:61:db:c9:
12:1f:8d:9d:0a:dc:52:aa:16:23:44:68:39:72:3e:
72:8f:a9:2a:21:3b:cd:31:9c:e6:5c:b6:20:7b:7e:
d3:fd:a3:64:06:a6:39:26:6a:1d:23:8c:2c:f7:f9:
49:2c:df:88:29:ab:64:9d:3b:50:9d:ff:31:7e:0c:
5f:11:31:2d:93:1f:69:a4:4c:66:cc:27:08:51:e2:
f1:e3:7a:ad:e6:c6:f3:7f:97:9e:00:db:fd:55:25:
ea:fa:5f:92:8d:dc:82:5e:46:68:d0:95:21:18:85:
3b:d0:6d:e6:64:7f:72:c5:14:1a:ee:28:d6:4c:99:
b6:db:61:83:1e:0a:e6:cd:0f:04:6d:79:64:29:fa:
8b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:FC:92:AD:A9:5C:99:26:56:AF:F1:CC:CD:79:6C:DB:91:21:A6:91
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/tfySralcmSZWr_HMzXls25EhppE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b9:47:40:58:61:21:59:0a:89:c8:4f:ab:df:57:3b:01:46:a0:
cd:5a:33:ac:f8:61:32:3a:bd:e6:d5:e3:23:6a:79:d9:16:e9:
a4:b0:ca:50:db:c4:2b:89:ae:b9:d6:43:09:ea:16:e5:28:13:
a9:ab:17:a1:f8:37:e8:7a:2d:20:23:c2:4f:6a:0e:95:a1:4f:
35:46:f7:8e:63:02:73:a7:93:e1:48:e9:f0:27:83:77:69:75:
80:1c:40:c8:23:80:58:9c:86:d7:02:52:54:cc:64:e7:82:0b:
ba:93:a6:b4:76:10:5e:f2:ed:18:68:00:dc:bc:09:ff:f2:36:
bf:4e:d0:8f:35:0b:09:81:17:4a:0b:1e:c0:64:bd:af:0e:bc:
bb:10:05:23:cc:de:bf:9c:91:9c:5e:92:9a:fe:cc:80:c8:41:
57:b5:69:f8:3f:07:f3:60:dd:73:11:07:64:00:53:9e:21:7f:
51:60:dd:ab:4a:cb:b9:03:5e:d0:1a:e4:34:ca:2f:54:4a:b9:
06:cf:0b:d2:04:37:49:90:9c:41:f4:43:52:7a:54:0c:69:1e:
99:f2:1e:70:e1:34:e9:e0:04:c6:e0:8b:0a:df:ed:3c:80:d9:
c2:7d:77:49:a9:49:f9:f7:c9:d4:30:06:76:09:f0:57:28:0b:
5f:a4:45:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:17 2025 by rpki-client