Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uuzq7g2ac8KhDon2NB4HhWGv3TI.roa
File: uuzq7g2ac8KhDon2NB4HhWGv3TI.roa (raw, json)
Hash identifier: s0TzyQ/aizdw7FMrexO0zC0mvvWAzIXJUQ7OaSf/iz4=
Subject key identifier: BA:EC:EA:EE:0D:9A:73:C2:A1:0E:89:F6:34:1E:07:85:61:AF:DD:32
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11A5
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uuzq7g2ac8KhDon2NB4HhWGv3TI.roa
Signing time: Mon 10 Feb 2025 14:27:35 +0000
ROA not before: Mon 10 Feb 2025 14:27:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24154
IP address blocks: 210.63.192.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4517 (0x11a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BAECEAEE0D9A73C2A10E89F6341E078561AFDD32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:43:4a:c6:68:ed:0a:9c:9b:93:4c:17:39:72:
b7:60:fe:29:7c:fd:20:7d:e0:1f:fa:fc:45:17:8f:
23:15:6d:07:85:f6:e3:32:11:b1:99:ca:b4:00:a2:
df:19:a5:1f:00:8e:1e:11:bb:05:27:97:f3:b8:6c:
31:f2:63:21:18:1f:40:25:ca:a7:b4:f9:7b:49:9a:
8b:3a:18:2b:0d:13:fb:3a:42:cc:a0:20:4c:84:c9:
68:7a:a8:f5:b8:a5:ce:63:4c:0b:57:fa:00:41:fe:
b3:9a:26:ce:36:81:aa:56:33:49:49:40:cc:10:36:
f4:c4:1e:83:91:8e:02:e5:85:82:ee:2c:5e:b4:cf:
e0:a0:ab:aa:a9:ca:3c:7c:69:67:6a:5f:b5:ca:23:
d6:b3:2e:54:ae:22:f9:65:b6:ba:73:c4:4a:16:e4:
8e:ce:d3:24:c7:a7:b8:35:cc:75:2b:31:0e:13:40:
0c:32:db:f8:ab:4f:d1:4f:e4:84:48:9d:ab:66:bf:
5e:3c:e5:19:8d:10:15:5a:b4:82:23:0a:4b:8d:25:
95:f6:46:87:e1:71:63:58:92:7a:b5:34:1e:ab:b2:
ed:a0:af:8b:91:12:6e:08:ae:ef:1b:43:2f:10:a3:
aa:4a:5f:c8:b5:de:5c:25:5d:19:75:19:47:70:ae:
4e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:EC:EA:EE:0D:9A:73:C2:A1:0E:89:F6:34:1E:07:85:61:AF:DD:32
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uuzq7g2ac8KhDon2NB4HhWGv3TI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/21
Signature Algorithm: sha256WithRSAEncryption
23:f7:1f:71:8c:36:98:07:85:a8:27:2f:9e:b3:de:b5:a3:84:
0c:e5:82:96:42:de:04:28:82:6b:ef:75:b5:0a:34:0e:24:79:
10:fc:9d:77:6b:25:bd:53:8b:e3:58:f4:fc:62:73:67:d3:50:
85:2e:73:ae:f6:82:9a:17:db:71:75:67:f3:8b:8d:8c:09:7e:
89:3c:52:0a:b8:6e:28:05:bc:eb:f0:c1:32:19:3c:7a:c7:9f:
a5:8f:23:e3:e5:fd:cc:96:7e:ac:84:e7:e1:56:78:f3:8c:32:
36:c2:ea:81:be:be:d2:6a:94:c0:80:17:d7:cc:ec:1e:aa:cb:
57:86:c8:68:83:c7:e5:16:01:f2:66:0a:a7:16:b9:bb:5f:78:
6a:12:b1:b7:51:92:62:1b:f4:9e:25:68:46:e1:4b:d7:ae:5a:
e9:00:2a:f2:a4:57:7b:75:ae:bd:db:2a:80:ec:97:48:0a:94:
7d:08:d5:e1:1d:9d:8c:ec:f3:79:91:dd:91:33:3f:79:d0:a4:
51:6e:f3:ef:2b:0d:b0:b6:83:d6:a5:8d:42:aa:b9:9c:7b:9e:
66:80:d3:6d:f5:23:b1:b6:ce:37:aa:5d:e1:f1:34:81:16:f4:
d7:cd:df:f8:59:3f:70:42:c2:be:1e:5c:02:c7:1e:45:a2:a3:
3c:2f:20:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:29 2025 by rpki-client