Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/dA9Xm5_aM-BiF0vG5GVuTfTdcdk.roa
File: dA9Xm5_aM-BiF0vG5GVuTfTdcdk.roa (raw, json)
Hash identifier: eu7CjrhyXadbFZ1uusGhmphbTzwDSRLiZ++pCbODDqw=
Subject key identifier: 74:0F:57:9B:9F:DA:33:E0:62:17:4B:C6:E4:65:6E:4D:F4:DD:71:D9
Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Certificate serial: 0117
Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/dA9Xm5_aM-BiF0vG5GVuTfTdcdk.roa
Signing time: Tue 14 Jan 2025 08:26:18 +0000
ROA not before: Tue 14 Jan 2025 08:26:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150760
IP address blocks: 180.94.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 279 (0x117)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Validity
Not Before: Jan 14 08:26:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=740F579B9FDA33E062174BC6E4656E4DF4DD71D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fb:88:56:ef:20:21:2a:32:74:21:4c:a0:8c:
b8:d9:df:69:d2:ad:03:df:16:b1:ac:d3:a7:7c:41:
2e:e5:49:10:ce:bb:f9:76:9d:dd:dd:ef:ec:7f:35:
74:64:89:5f:30:d7:3c:06:43:d0:e1:d3:7a:80:2a:
64:20:5b:b2:b2:e3:1d:d2:47:25:e3:db:7f:34:ca:
48:10:57:74:91:9b:51:a8:ab:1d:dd:a5:e7:b4:a6:
92:17:82:c4:27:e1:9e:34:67:14:27:5f:6c:bb:9c:
91:40:6e:b0:e3:5c:9e:4b:21:b3:f9:66:35:a3:a2:
12:be:40:5a:40:d8:8a:e1:f5:a6:37:25:db:1f:86:
9b:e2:10:d1:76:0b:d7:65:15:21:a1:01:bc:33:06:
e8:19:e8:6d:54:c8:d1:be:a6:7a:21:af:0d:3b:7f:
81:ee:9b:6e:21:13:92:a6:43:9c:21:a4:4b:60:e3:
fc:5e:41:13:42:38:47:37:6e:25:ea:65:2d:af:6c:
b1:20:c8:d0:c5:ef:e9:0a:73:72:85:77:cc:3e:da:
66:1a:62:1e:ce:08:cb:d5:93:4c:0d:30:03:c6:a2:
c9:3c:1c:2a:27:e5:b2:d3:11:91:f1:85:fa:bd:0d:
1d:fc:ec:8b:75:f5:83:ff:39:fc:e1:4f:70:97:f7:
6b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:0F:57:9B:9F:DA:33:E0:62:17:4B:C6:E4:65:6E:4D:F4:DD:71:D9
X509v3 Authority Key Identifier:
keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/dA9Xm5_aM-BiF0vG5GVuTfTdcdk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.94.31.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:d1:c7:56:1d:40:d8:57:13:7f:8a:e9:bd:63:b9:52:73:c9:
29:a1:d4:b1:b8:a0:45:e0:03:93:63:bb:d2:d9:05:c4:36:84:
36:ff:75:4a:a5:8c:b3:17:db:a8:76:c6:ec:01:f2:32:da:38:
46:ac:97:b9:c5:53:52:ba:a5:e0:c7:df:3d:45:b7:d4:74:2c:
22:4c:bc:95:8f:78:6a:d7:1b:b7:5c:cb:3e:cf:f2:47:9a:d3:
26:c2:97:94:4b:fe:c6:ca:ad:d8:dc:e4:78:df:29:df:f5:50:
67:b9:d3:50:8c:c6:57:c8:a2:e5:9e:c0:ac:83:02:62:d9:30:
34:6f:72:8c:b4:3f:11:b1:5e:ce:e4:26:39:b8:ef:39:c8:c7:
1b:cd:f0:94:75:14:a6:71:c7:77:41:70:d8:33:39:ba:db:8f:
6b:ac:98:57:5b:a9:f0:fe:4a:78:37:ca:03:e8:66:d9:9e:bb:
86:e1:ee:0d:3f:a6:2d:bc:3a:65:c7:12:4c:f2:f6:29:38:40:
ed:5b:75:ff:71:9e:eb:e6:c6:b3:d7:b4:26:26:e7:b8:fd:6f:
ed:9f:93:04:56:22:a1:d2:fc:bf:9b:58:96:bb:09:2f:d2:26:
e2:1a:03:6d:1b:aa:6c:be:5b:7e:7e:92:cc:7f:a7:3d:4f:ca:
68:5e:d9:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:35:02 2025 by rpki-client