Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/TMiMb3Hfrn9PMlUvA3tNStjJfoo.roa
File: TMiMb3Hfrn9PMlUvA3tNStjJfoo.roa (raw, json)
Hash identifier: +pCwjVdgBjfQ1W3xrHG1Xo00sFH9QQ+o7n5CmNf5yzE=
Subject key identifier: 4C:C8:8C:6F:71:DF:AE:7F:4F:32:55:2F:03:7B:4D:4A:D8:C9:7E:8A
Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Certificate serial: 0115
Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/TMiMb3Hfrn9PMlUvA3tNStjJfoo.roa
Signing time: Tue 14 Jan 2025 08:26:01 +0000
ROA not before: Tue 14 Jan 2025 08:26:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150760
IP address blocks: 180.94.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277 (0x115)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Validity
Not Before: Jan 14 08:26:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4CC88C6F71DFAE7F4F32552F037B4D4AD8C97E8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:9f:03:ea:d8:ea:5b:f1:a6:65:06:0d:9e:
fe:a0:dd:76:09:85:19:12:35:40:1f:fd:68:3a:f9:
f6:cb:e7:37:85:32:55:b4:cc:89:1d:76:c3:6c:2b:
aa:43:3b:c5:27:4b:60:35:e4:a5:96:2b:3e:df:5c:
96:06:27:eb:9e:9f:0b:24:ac:26:9e:80:4a:a7:bf:
0c:e7:10:38:7a:70:74:d7:03:24:84:2d:4e:a5:22:
e6:7a:30:30:f1:b0:6c:ac:fe:23:27:57:31:f7:d0:
b4:d3:c1:e6:f4:0f:c4:0e:91:31:65:58:fd:0a:b9:
1c:ba:be:ac:05:67:e8:cb:14:b6:80:b2:75:44:a3:
97:97:79:4d:10:d6:95:b2:83:4d:87:33:4d:26:57:
d4:6c:53:34:aa:f4:ad:92:18:01:f8:bc:1c:6d:b0:
35:02:80:ec:62:a4:1f:be:fa:f7:65:13:e9:0d:bb:
08:60:46:88:49:2f:84:fb:95:c4:7a:88:33:91:45:
9c:e2:37:10:00:7d:c4:8d:ec:e9:72:83:fd:b3:59:
fb:27:80:64:99:b8:ad:d2:bc:9a:82:a1:e1:45:40:
0f:b1:22:d7:53:0a:c5:35:65:ab:0e:ca:bc:0f:e5:
63:49:a0:bc:e2:36:06:fe:48:94:e8:aa:68:c4:cb:
fa:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C8:8C:6F:71:DF:AE:7F:4F:32:55:2F:03:7B:4D:4A:D8:C9:7E:8A
X509v3 Authority Key Identifier:
keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/TMiMb3Hfrn9PMlUvA3tNStjJfoo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.94.30.0/24
Signature Algorithm: sha256WithRSAEncryption
86:0c:54:f0:89:66:b6:dc:46:4e:72:e3:80:09:ca:4c:ec:72:
0f:db:ee:e6:ad:41:22:91:b7:b5:63:91:88:3a:f7:29:a1:75:
33:0d:c6:a6:90:8e:d5:84:70:32:9d:c4:df:e7:b2:90:e1:31:
52:57:7a:5f:10:7a:db:81:05:62:0c:55:8e:04:0d:94:2c:55:
4e:78:da:b5:9b:61:20:87:7a:b1:67:7a:5f:cd:f8:d0:c8:5a:
aa:22:49:88:b8:01:5a:b7:ac:15:a2:fc:5b:c4:ac:43:8a:2d:
b9:96:dc:ab:44:57:cb:6b:d4:f9:02:44:a5:7a:4a:99:14:5d:
4b:37:3a:d3:f1:5d:cc:c3:be:96:2b:8c:84:71:d8:d1:eb:8e:
71:26:a3:d1:07:52:1a:7c:80:e5:ed:58:09:4b:43:f7:f3:b3:
6a:f1:27:b2:4f:f8:33:aa:d1:aa:98:21:3e:f7:bf:bd:72:db:
cc:b8:36:3d:6a:07:d2:1e:de:05:fe:a8:a6:ac:a8:ed:ce:a3:
11:d1:0e:c1:c6:85:d4:6e:c1:28:9a:ce:a4:9d:e7:1b:40:d7:
7d:93:34:17:0d:67:f8:db:aa:e1:0f:10:e8:58:57:5c:e0:5f:
52:77:a0:47:69:74:ee:22:3e:26:43:45:0b:40:0c:d2:b9:69:
12:60:8e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:35:02 2025 by rpki-client