Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ey7oTunwIFBVd-Ls8FpBo8Xukfs.roa
File: ey7oTunwIFBVd-Ls8FpBo8Xukfs.roa (raw, json)
Hash identifier: 7rJMv7PLrwptVxxEzGg8W5N++Sp+Oqfyc+8jxDzM11w=
Subject key identifier: 7B:2E:E8:4E:E9:F0:20:50:55:77:E2:EC:F0:5A:41:A3:C5:EE:91:FB
Certificate issuer: /CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647
Certificate serial: 3F
Authority key identifier: BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ey7oTunwIFBVd-Ls8FpBo8Xukfs.roa
Signing time: Mon 10 Feb 2025 14:22:47 +0000
ROA not before: Mon 10 Feb 2025 14:22:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2.58.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647
Validity
Not Before: Feb 10 14:22:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7B2EE84EE9F020505577E2ECF05A41A3C5EE91FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9d:e6:ed:59:bf:98:a6:15:76:21:cd:13:38:
74:e6:71:c9:52:5a:28:e5:63:7d:65:02:d0:d7:68:
b9:9d:ba:b5:ea:f7:42:25:64:33:3e:a7:0d:62:bc:
22:a2:0a:4f:61:0b:a1:92:6e:cc:c8:5c:91:3f:1e:
3b:eb:5b:35:7f:ba:57:34:8b:07:1c:db:aa:15:bb:
3a:93:87:ed:06:9b:90:ae:f0:a3:0b:d1:d5:4d:64:
c8:69:f6:f8:fc:49:e2:8a:2d:cc:27:28:b4:c8:a4:
a6:fa:84:d4:11:65:04:e4:2e:8c:b6:d6:bc:b8:ab:
05:31:ae:6d:83:a6:17:cf:7f:06:65:2d:8e:82:c2:
63:78:dc:5f:e1:36:cf:53:52:3f:49:9b:10:fa:ee:
8f:82:4a:d5:bf:22:05:27:79:47:1f:b4:db:b0:da:
73:5a:d3:31:0d:4f:01:e4:2a:a8:ba:9e:ea:cd:a7:
ef:48:b0:3c:1f:48:48:e0:0b:ff:57:71:80:75:5d:
4f:da:6e:38:3e:08:16:7e:92:86:7d:03:0c:2f:f9:
bf:62:15:8c:50:3f:d1:5a:48:4c:87:f7:fd:7b:ac:
66:1d:39:c3:7c:67:33:95:f3:c4:06:7c:0a:ea:4e:
68:27:d6:ce:93:be:cf:e9:fd:ca:62:ee:82:6e:88:
bb:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:2E:E8:4E:E9:F0:20:50:55:77:E2:EC:F0:5A:41:A3:C5:EE:91:FB
X509v3 Authority Key Identifier:
keyid:BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ey7oTunwIFBVd-Ls8FpBo8Xukfs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
2.58.242.0/24
Signature Algorithm: sha256WithRSAEncryption
21:68:6b:0d:90:5e:69:5e:b3:8f:19:69:70:cb:23:84:b4:1a:
a8:8c:25:ee:e8:50:42:36:e7:f1:9d:b0:4b:cd:9c:ef:d7:ca:
e3:d7:4e:bd:e7:84:9b:70:64:db:29:f3:00:9d:c7:33:d8:0e:
75:7c:2f:9c:94:9c:62:a7:3c:fa:02:ba:59:d1:df:f0:6a:37:
1b:d1:88:8c:57:d4:75:7f:bc:e2:18:a4:30:df:19:92:62:fe:
07:1e:97:05:71:cc:06:ba:43:e1:66:11:25:b3:53:91:88:e4:
48:84:50:3a:8b:25:cb:88:22:a4:9e:12:6a:7e:93:a2:32:ef:
45:fb:fe:60:9b:38:7b:b0:66:7b:69:17:aa:1f:73:eb:df:c8:
87:41:e1:38:7e:43:87:1d:e2:03:b4:ce:08:7a:e0:8f:05:d8:
0c:32:32:36:c7:4a:30:aa:bb:13:69:8e:6b:1a:a6:8a:02:2b:
c2:dd:7c:89:74:6e:f4:c0:8a:cc:06:92:0f:ec:e5:b3:38:c4:
f4:6c:fd:78:9f:b1:f5:58:47:00:f9:af:e5:89:ce:f4:bf:0c:
95:e2:c5:0e:36:d5:21:d9:3c:84:7f:35:49:60:e6:a8:52:00:
89:5a:4f:55:fb:b9:2d:9c:a1:48:7a:17:02:59:d9:bf:94:1b:
67:96:ed:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:29:55 2025 by rpki-client