Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/nJ8c2cSw7aoupsvf271gYf7bsRE.roa
File: nJ8c2cSw7aoupsvf271gYf7bsRE.roa (raw, json)
Hash identifier: wjV/EkrJkAaGXOCykCGkgukKACAmpXiztxxVtK7TkrU=
Subject key identifier: 9C:9F:1C:D9:C4:B0:ED:AA:2E:A6:CB:DF:DB:BD:60:61:FE:DB:B1:11
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0D30
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/nJ8c2cSw7aoupsvf271gYf7bsRE.roa
Signing time: Mon 10 Feb 2025 13:51:19 +0000
ROA not before: Mon 10 Feb 2025 13:51:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 61.67.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3376 (0xd30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 10 13:51:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9C9F1CD9C4B0EDAA2EA6CBDFDBBD6061FEDBB111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:87:0a:f9:d3:8c:03:56:6d:76:2d:ec:a6:f0:
c9:16:91:fa:4b:c5:2e:cd:8c:5e:b5:6e:8a:11:a7:
f5:bd:4c:14:ff:d4:71:ee:60:bd:fe:b6:28:63:dc:
f9:61:e4:19:c6:da:a6:aa:ce:64:92:e0:53:c1:da:
c9:e8:d0:f7:f0:ff:75:31:0d:48:ab:19:7f:2a:6a:
c6:93:07:2b:b6:b6:9d:e7:90:0b:89:2a:0c:1b:95:
b4:24:b5:df:d3:5a:12:2c:cf:6b:b0:c5:c9:aa:f9:
63:84:94:02:36:67:46:93:73:b1:4a:10:3a:78:ba:
58:60:9c:8b:4f:b5:1c:cf:7c:41:9d:84:a2:7e:62:
7a:6e:f5:09:f8:d3:72:11:46:1f:d2:9b:c5:ed:6a:
30:77:cf:53:44:40:2b:bb:f3:e5:66:ba:39:9c:31:
e3:fc:bf:04:53:34:2a:91:01:6e:ec:87:c9:77:fc:
c5:97:33:a7:e1:b9:4c:65:42:b0:12:73:c9:40:aa:
10:4c:cd:46:23:db:49:e9:26:ba:00:71:b5:eb:8d:
df:e8:bc:f8:6c:c9:3f:bf:51:ca:c8:c4:ac:e6:cc:
85:44:e8:6b:52:b6:8f:17:94:ac:0a:b4:eb:23:87:
5f:83:af:e1:88:c9:a9:08:f0:5a:37:f2:62:49:e1:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9F:1C:D9:C4:B0:ED:AA:2E:A6:CB:DF:DB:BD:60:61:FE:DB:B1:11
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/nJ8c2cSw7aoupsvf271gYf7bsRE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.209.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:b0:bb:28:74:7d:c3:b7:3a:06:20:95:41:ca:93:82:b5:81:
16:6e:88:f3:4f:9a:39:10:07:95:2f:de:ea:26:25:32:c3:6e:
d9:49:ac:8e:19:f8:16:1d:f7:f6:cf:2b:fe:2f:1b:18:df:d6:
69:9c:4c:0e:e9:85:76:6b:c7:99:84:2f:ed:3a:b5:05:d3:d7:
f8:33:7c:ad:ec:85:9c:82:59:f6:6f:e5:61:a2:9f:5c:f8:f2:
21:18:c7:85:40:42:cd:26:13:ec:f7:a9:69:35:0c:9b:55:e4:
38:39:87:d0:83:f6:da:1e:20:eb:34:f3:a5:8a:a4:01:d0:63:
fd:7d:fd:d1:14:9a:7b:69:eb:d8:db:f8:ce:59:b3:20:5d:45:
fc:42:1e:81:e8:5c:cc:84:c5:8e:51:49:71:73:ba:af:c1:a4:
0f:e3:d5:05:e6:57:59:62:06:23:46:09:eb:f8:0f:f6:4c:f5:
57:25:ad:52:77:c0:4e:9d:bd:54:b6:b7:87:31:13:96:ff:33:
b2:a6:b0:26:fc:c7:c6:c8:fb:cb:f6:e4:14:f5:89:ac:3b:30:
87:61:b1:50:0c:29:e8:ff:b5:3d:ea:c4:6f:b3:c1:f5:1d:82:
77:38:a5:5e:c3:9b:52:43:82:53:14:36:7a:a9:93:64:ba:80:
cb:77:2b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:09:30 2025 by rpki-client