Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/qF0A6NA-M52w7mOwN3r6eO2d2HA.roa
File: qF0A6NA-M52w7mOwN3r6eO2d2HA.roa (raw, json)
Hash identifier: T35CWNUF5pt5O+CBgIfToFSbb8aeYkJsl3jwBPaDSns=
Subject key identifier: A8:5D:00:E8:D0:3E:33:9D:B0:EE:63:B0:37:7A:FA:78:ED:9D:D8:70
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0D19
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/qF0A6NA-M52w7mOwN3r6eO2d2HA.roa
Signing time: Mon 10 Feb 2025 14:08:20 +0000
ROA not before: Mon 10 Feb 2025 14:08:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4782
IP address blocks: 211.79.128.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3353 (0xd19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Feb 10 14:08:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A85D00E8D03E339DB0EE63B0377AFA78ED9DD870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:76:36:fb:28:1c:51:ca:ac:cf:71:c9:c6:
fd:64:4a:78:63:19:09:df:c9:ec:b3:d0:e4:50:43:
b2:7b:61:c2:32:ba:3c:42:34:59:3a:ca:7b:32:99:
a3:fa:b7:47:95:e9:db:f8:51:6e:7d:10:18:4b:26:
05:9a:a0:db:22:40:04:58:46:d8:18:96:c2:69:f4:
9a:b3:58:80:49:1c:8e:84:88:21:fe:5b:ad:43:ae:
60:bc:d5:78:fb:df:af:44:19:dc:46:11:ee:fc:38:
2b:a1:bf:9d:62:f1:5b:c3:0f:05:2a:4a:eb:66:51:
4a:bd:34:e4:b6:f1:b1:16:15:6a:60:d3:b7:03:41:
f9:46:72:ed:4d:da:9e:16:1f:8e:72:d0:c5:3d:09:
ae:7e:34:04:96:52:84:e4:7a:a7:f1:86:81:cb:ba:
2b:de:30:62:e1:e1:a7:c4:c3:6e:8a:f4:bc:97:2f:
3d:5e:07:c1:08:a4:a1:48:35:83:48:36:ad:c0:08:
2d:14:19:da:e3:55:f7:d9:f9:37:a5:cb:22:bf:6c:
f5:a6:9a:57:24:44:7c:8a:f3:44:f3:ac:67:9b:22:
be:8e:d3:ea:cf:10:b1:75:57:f4:69:6a:e0:19:01:
a3:3e:d2:95:ad:ea:c0:31:b1:76:7e:d1:00:79:24:
cd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5D:00:E8:D0:3E:33:9D:B0:EE:63:B0:37:7A:FA:78:ED:9D:D8:70
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/qF0A6NA-M52w7mOwN3r6eO2d2HA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.128.0/19
Signature Algorithm: sha256WithRSAEncryption
c2:d0:61:d3:79:fc:39:85:ad:59:0b:f8:49:12:e6:91:c0:a3:
b7:fd:7e:74:5c:63:55:6e:a9:93:c6:a5:90:b5:62:bf:67:04:
7f:79:a0:50:ec:cb:1a:94:6d:3a:8c:28:af:2f:67:cb:dd:68:
3c:4d:30:81:91:19:57:a2:fe:b4:39:99:6d:e0:95:48:73:b2:
0a:76:6e:53:01:00:51:38:b4:3e:d8:57:19:9c:f3:1d:80:6e:
db:ef:64:0b:6b:30:f3:6f:7f:13:9d:14:9a:55:f1:fc:43:c7:
8e:7c:e8:1e:47:35:36:89:a4:12:e0:91:08:59:d1:56:ae:a4:
b9:d9:4b:1f:3c:69:3e:f3:9a:ef:c0:74:00:9a:3c:5f:2f:c6:
7a:d3:3c:c5:c7:61:4e:76:84:fb:c7:a3:b3:c5:cb:01:02:84:
02:f0:cb:ce:58:eb:b2:6a:7e:b3:fb:67:cb:10:38:50:19:99:
c0:ee:7a:b6:86:6f:f3:f4:4c:d1:8b:df:db:cd:88:b6:ca:d3:
d4:ed:62:97:cb:34:8b:59:e5:d6:13:76:9b:7f:25:cd:2a:cd:
72:c5:fc:d9:cf:f7:81:8f:76:99:ea:7d:a2:bd:29:69:bd:d1:
15:89:9f:b9:c6:fb:1c:9e:53:0a:60:bf:18:89:eb:fd:da:16:
a8:61:4a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:57:16 2025 by rpki-client