Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/4jzAmcp0OzshgAzia3HqcJtGdyY.roa
File: 4jzAmcp0OzshgAzia3HqcJtGdyY.roa (raw, json)
Hash identifier: wr/qcLRzx41JkJUspMeCyuSg0Le017cXpWuGRYZtUfo=
Subject key identifier: E2:3C:C0:99:CA:74:3B:3B:21:80:0C:E2:6B:71:EA:70:9B:46:77:26
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D6A
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/4jzAmcp0OzshgAzia3HqcJtGdyY.roa
Signing time: Mon 10 Feb 2025 13:51:07 +0000
ROA not before: Mon 10 Feb 2025 13:51:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 211.73.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3434 (0xd6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E23CC099CA743B3B21800CE26B71EA709B467726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d8:b7:14:a5:a7:d0:61:55:5e:06:bb:2b:07:
ed:68:b3:94:22:90:a9:d0:e0:a6:88:bb:a1:ce:45:
0f:52:11:83:08:9a:ce:5d:97:44:dc:01:e2:59:e4:
9c:d4:e4:0e:87:39:c2:b7:4a:f8:ed:64:a4:20:61:
f1:a3:ff:16:27:34:bd:b9:12:e3:61:4d:33:de:c4:
8b:5b:84:8f:27:8c:89:fb:c5:60:05:a0:82:44:89:
57:6f:2d:be:75:bb:d4:f9:22:c3:f9:cc:2b:e4:d5:
c5:f5:02:2d:b8:9e:38:98:10:08:35:62:f6:d6:fc:
da:d0:1c:3f:e4:23:3f:7c:f4:09:4f:84:6c:95:2c:
0b:3e:79:57:d0:e7:20:18:3f:53:fc:53:16:0e:dc:
b1:48:f9:dc:9f:8f:4d:6d:28:6c:d1:13:0c:1d:62:
c3:ad:9c:2b:65:93:06:4a:df:4e:67:dd:af:84:0d:
6a:33:81:9d:b2:41:9e:eb:d6:ef:1f:a0:5e:b2:14:
65:6c:60:e6:fa:4a:0e:37:7a:a7:ab:43:55:a0:10:
7e:ab:24:e3:4e:86:9a:bb:d0:ef:7d:cf:89:e6:22:
b0:7a:c4:0e:01:ed:f4:d9:27:cb:24:fa:13:95:46:
3d:96:68:0d:83:e4:01:c5:15:7d:d7:95:6a:26:6e:
23:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:3C:C0:99:CA:74:3B:3B:21:80:0C:E2:6B:71:EA:70:9B:46:77:26
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/4jzAmcp0OzshgAzia3HqcJtGdyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.0.0/19
Signature Algorithm: sha256WithRSAEncryption
27:df:26:57:a2:90:92:ad:18:40:cf:f4:b2:7e:ad:40:d4:95:
e3:1e:44:7a:a6:b3:25:e6:a1:32:6b:80:f5:b2:34:d2:37:52:
89:90:d4:aa:6d:58:08:1c:01:40:14:ca:8d:f9:6a:49:73:86:
a8:b3:d5:e0:50:d0:06:42:ae:76:91:17:e3:2f:c2:65:bc:99:
52:6e:43:a9:7c:78:3d:68:68:7d:95:b7:2f:87:ba:b9:81:0f:
bc:89:46:5f:20:2a:b6:95:06:2a:8b:f1:b2:3c:c4:cb:67:f7:
d4:22:b1:09:15:f2:46:26:4c:d3:60:6e:15:5a:2b:9c:4a:6b:
63:44:8d:14:f3:42:db:25:53:b6:17:37:6f:e4:ee:11:e6:0e:
b4:c8:d9:5c:9f:53:23:7a:f9:f6:20:04:d7:8b:de:15:64:31:
56:b5:be:94:f5:ff:b4:ae:24:7e:4e:fb:40:b7:9b:55:99:7a:
73:b9:c5:cf:6b:69:1e:f7:2e:a5:c7:2f:ab:73:3c:31:1c:1d:
2a:db:7c:3d:28:e4:51:ea:ad:d9:9b:52:78:0d:cf:95:c6:3b:
21:41:b9:b8:00:ff:b1:62:68:e6:e5:17:91:e4:8f:d3:c6:1c:
f4:9b:a4:b3:66:69:32:27:26:32:1a:5f:e6:b4:24:33:40:55:
02:24:6f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:14:58 2025 by rpki-client