Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/plepV11GsNQfU0T_iIBRXvqSvQY.roa
File: plepV11GsNQfU0T_iIBRXvqSvQY.roa (raw, json)
Hash identifier: covBnC1R02d5xap6cznLjZjb3r5E2OJwhUQB61GVRAk=
Subject key identifier: A6:57:A9:57:5D:46:B0:D4:1F:53:44:FF:88:80:51:5E:FA:92:BD:06
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0D2E
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/plepV11GsNQfU0T_iIBRXvqSvQY.roa
Signing time: Mon 10 Feb 2025 13:51:19 +0000
ROA not before: Mon 10 Feb 2025 13:51:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 61.63.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3374 (0xd2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Feb 10 13:51:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A657A9575D46B0D41F5344FF8880515EFA92BD06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f8:3a:5c:7b:e1:31:24:c1:b8:31:28:98:59:
4a:39:e0:38:78:20:22:bc:8c:5f:d6:bd:19:df:2c:
04:4b:f0:ed:87:f7:23:63:f0:87:1a:e4:1a:63:0a:
f8:73:c3:e4:c2:37:8a:67:b5:f5:b1:c9:51:d2:da:
2b:42:61:84:a6:01:89:d3:ec:18:c9:bb:23:9e:b0:
1e:5e:28:86:24:37:90:66:85:e7:7c:5c:4e:2f:a3:
95:72:e3:c1:58:d1:32:80:ab:ae:f4:f1:cd:d9:09:
87:fa:78:55:9c:1a:a6:fe:6f:a6:ae:47:be:d1:07:
8c:63:27:76:30:0a:b5:90:97:14:35:83:e8:eb:aa:
35:c1:fa:2d:87:28:af:06:d7:0a:83:16:63:5e:94:
a5:69:fa:8f:f5:98:11:83:39:ce:73:0e:b9:59:1e:
9d:bd:72:08:21:93:4c:70:6d:e8:5e:e4:2c:df:4a:
70:8f:a0:83:c7:88:b6:37:e0:21:94:b2:9c:4e:75:
2b:3e:46:74:d6:84:bb:70:66:da:21:13:1e:2a:3a:
d4:14:ae:3d:d3:65:86:bf:e7:c2:78:4c:32:eb:6b:
c5:a9:a0:0c:5d:4a:b3:37:7d:0b:a5:71:a3:2d:76:
ba:9d:b6:e7:d1:96:19:c4:1a:85:8d:17:d9:2f:72:
3b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:57:A9:57:5D:46:B0:D4:1F:53:44:FF:88:80:51:5E:FA:92:BD:06
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/plepV11GsNQfU0T_iIBRXvqSvQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.64.0/19
Signature Algorithm: sha256WithRSAEncryption
4a:25:33:e8:9e:9a:67:66:59:98:9b:ef:d6:d9:0a:76:62:ef:
e8:70:bb:84:96:ea:ca:6c:d9:bc:d2:92:f7:9b:83:84:21:61:
63:0e:c3:b8:fb:67:79:98:3a:39:5f:47:ff:21:c6:f2:8a:50:
a4:03:c2:bd:f1:66:ad:d3:16:5b:0b:a5:d8:e0:5e:42:38:70:
75:9a:3b:2e:b5:db:35:ef:58:2c:ab:a2:bd:32:7f:3e:e5:1d:
43:6a:a4:c3:01:c9:70:41:27:00:59:c8:e6:19:d8:59:1b:76:
9f:8c:39:f3:8f:84:fb:91:1c:45:2c:cb:12:f6:be:6f:91:8d:
10:bb:2b:74:86:99:ba:ee:61:59:3b:e5:ba:6e:3a:93:7e:44:
f1:70:15:07:21:64:40:72:53:c9:85:a5:32:dd:7d:bb:76:20:
67:ab:3a:c1:e7:3b:30:5d:b0:79:33:b1:1d:a6:26:2a:1a:5a:
5c:96:72:1f:d8:d0:4e:97:05:1d:92:8e:7f:ed:58:dd:0f:58:
fd:0b:d4:7c:dd:97:0c:3e:f2:e4:5d:68:01:3a:15:47:de:d6:
41:3c:12:66:d2:75:0d:af:6e:12:a0:66:19:da:2f:64:54:5d:
bc:c1:95:64:d5:72:25:97:40:90:c5:73:97:d0:df:54:ce:a3:
4f:bd:0e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:33:07 2025 by rpki-client