Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vKI6PEUd_G7kU_VRRYSMd4WMpQ0.roa
File: vKI6PEUd_G7kU_VRRYSMd4WMpQ0.roa (raw, json)
Hash identifier: 9yb1xPjYmUdNgxx5myB8ruqWBtX5Y2DNdyjxBd5oOKg=
Subject key identifier: BC:A2:3A:3C:45:1D:FC:6E:E4:53:F5:51:45:84:8C:77:85:8C:A5:0D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1198
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vKI6PEUd_G7kU_VRRYSMd4WMpQ0.roa
Signing time: Mon 10 Feb 2025 14:27:31 +0000
ROA not before: Mon 10 Feb 2025 14:27:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9922
IP address blocks: 124.218.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4504 (0x1198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BCA23A3C451DFC6EE453F55145848C77858CA50D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:19:c7:b0:c9:0b:a2:52:ab:2c:0e:e7:eb:3f:
98:9a:6b:60:cf:13:1f:d9:cd:3c:3f:e5:d7:df:27:
a4:e3:b7:15:f2:30:ec:9d:80:58:14:a2:92:c1:db:
c6:65:9f:8f:bd:d5:50:2d:7a:4d:0a:c1:11:c9:2c:
c4:7f:6c:5f:1c:62:d4:89:85:b4:7d:48:56:aa:89:
37:b6:bd:17:c7:81:56:e7:34:2f:98:16:d7:32:a7:
87:f3:4a:54:7f:cb:35:fe:9b:6a:5c:2c:24:75:cb:
dc:30:b2:64:7b:66:e6:4e:41:b3:f8:98:56:94:8b:
6d:30:61:ad:d2:20:a5:6c:2a:25:51:fd:53:8c:9b:
da:cc:ac:16:e1:25:68:15:4a:28:ca:e1:05:70:b0:
e5:83:4b:e3:6b:e6:a3:77:b9:e3:61:0f:48:00:56:
ba:d4:14:b1:21:34:be:0e:12:79:ba:b6:6a:80:dd:
5c:28:33:53:f6:77:80:05:57:a4:10:d7:12:b9:9a:
88:05:23:23:85:ed:c1:82:16:f1:fa:36:8e:d7:33:
e2:50:89:26:cd:6c:06:be:d9:6e:87:3e:e2:5f:f8:
05:5d:a9:58:f4:df:41:35:72:ac:6d:bf:1f:4d:e5:
bc:7d:62:a8:e4:ee:35:ab:4f:55:ad:63:b6:e5:8a:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A2:3A:3C:45:1D:FC:6E:E4:53:F5:51:45:84:8C:77:85:8C:A5:0D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vKI6PEUd_G7kU_VRRYSMd4WMpQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.175.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:b2:77:a9:03:2d:de:d1:92:6e:06:01:92:e8:de:d8:be:9e:
7e:e3:ce:9f:1b:74:9f:f7:73:3c:e9:71:5b:fc:20:a5:7b:73:
71:6a:01:25:2a:9f:0d:de:df:57:d8:85:ad:10:3c:1d:9b:d0:
34:26:fc:5d:ee:44:12:34:ac:e7:10:08:45:b1:85:89:27:d5:
4a:cb:69:8e:46:55:0f:3d:81:7b:51:d2:8d:73:39:0f:33:ec:
b6:e3:44:3c:46:5e:cc:70:0c:a4:52:7a:ce:19:21:ff:c2:03:
8b:92:f7:62:7e:25:50:7e:a7:b5:61:3b:06:27:8a:d3:b4:9a:
ae:c4:05:1a:d4:57:a0:2a:c6:5b:82:98:00:25:53:1d:9d:40:
b6:37:40:a1:e6:0a:5b:aa:18:4c:82:37:ef:6f:f8:2a:fc:bc:
c7:cd:8c:41:b4:dd:de:c0:db:98:4f:72:31:fc:2f:6e:cc:f1:
59:b2:34:9c:42:5e:9a:b5:4d:7d:1c:58:8c:0b:84:63:1c:1b:
80:73:1f:cd:2b:82:74:85:d0:5a:8f:c5:7a:1c:a5:ea:18:0a:
68:52:17:3a:48:d6:f5:8f:8e:2e:01:fd:1b:16:8c:7e:03:0f:
7f:a1:bf:09:4c:60:6c:64:3a:e2:59:d5:9d:41:c1:5f:4b:bc:
22:e8:89:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:51:53 2025 by rpki-client