Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/cGlbtt-Zd9aGY3_btWveg728cqU.roa
File: cGlbtt-Zd9aGY3_btWveg728cqU.roa (raw, json)
Hash identifier: FzFHVYpB5vwOSa12L5PwznFxG4uTAqDs6ILsmSTY8Bc=
Subject key identifier: 70:69:5B:B6:DF:99:77:D6:86:63:7F:DB:B5:6B:DE:83:BD:BC:72:A5
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D5A
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/cGlbtt-Zd9aGY3_btWveg728cqU.roa
Signing time: Mon 10 Feb 2025 13:51:03 +0000
ROA not before: Mon 10 Feb 2025 13:51:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 122.201.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3418 (0xd5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=70695BB6DF9977D686637FDBB56BDE83BDBC72A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:68:60:c9:89:d3:c4:9e:6e:a7:36:36:0a:a5:
9c:15:ce:24:5b:b1:ae:78:78:6b:4e:6c:b5:c0:3a:
81:0b:f8:08:eb:2f:f0:50:21:2c:11:df:16:c5:80:
a8:73:f7:63:10:9c:4d:b2:49:07:2e:7c:12:4e:b3:
23:ee:7d:82:29:5b:62:57:9c:1a:fe:e1:f1:d1:6f:
40:19:38:7c:fe:68:05:79:27:5d:23:4d:70:32:6f:
5c:86:ba:1f:ce:c4:c6:54:1a:d1:94:cd:3e:c4:75:
a3:6f:fe:65:55:81:90:e9:1a:6b:28:64:b3:5a:e4:
86:e4:4d:9a:8d:74:15:e0:bf:c2:be:62:84:3f:57:
85:10:3b:7d:3c:a3:b8:7d:a0:26:c3:e0:12:25:9b:
5a:01:de:37:57:3c:56:48:72:cd:39:0b:6c:46:cb:
e3:6c:47:3b:7b:87:49:46:31:99:4e:29:a5:51:bd:
7c:07:66:4a:93:e9:ce:06:a3:71:51:46:31:96:3b:
47:7b:f8:2c:4a:4d:13:d4:69:6c:eb:5c:d9:85:9c:
91:4b:cb:e6:cb:4c:df:48:6d:bf:69:62:53:31:92:
9e:f3:da:db:c1:04:e5:9a:d5:87:45:0f:4f:be:0d:
0c:84:77:42:60:33:36:1e:74:82:29:80:f4:9e:10:
d9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:69:5B:B6:DF:99:77:D6:86:63:7F:DB:B5:6B:DE:83:BD:BC:72:A5
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/cGlbtt-Zd9aGY3_btWveg728cqU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.201.128.0/17
Signature Algorithm: sha256WithRSAEncryption
c5:18:ed:1a:56:e2:8f:40:a8:77:e0:3c:bb:9d:d8:23:37:3f:
6e:a0:6a:ef:3e:15:78:4b:27:2b:02:43:8c:c5:01:ee:f4:41:
3b:92:49:ba:55:84:92:48:85:92:2d:fb:d7:da:d5:9b:0b:3a:
49:d6:10:81:2c:2c:08:65:80:cf:6a:78:81:e7:08:2f:e8:ef:
b0:f5:9b:c0:92:8b:47:40:b4:43:8e:78:6b:f9:d5:21:31:9f:
e2:58:ae:8a:2c:b7:4a:c8:b1:55:f3:31:c5:f5:8c:84:03:54:
bb:b7:13:78:af:3c:e8:7a:02:c6:48:7a:ab:af:f1:1f:d8:b4:
20:12:20:16:f1:90:06:44:e1:e6:05:69:07:f0:cd:cf:07:07:
07:f8:6a:a6:88:a0:bf:24:71:4c:a6:8c:f9:70:e3:b9:ac:77:
bb:11:f3:be:f3:81:ad:77:ed:3a:d4:1f:80:05:5e:89:c3:ef:
61:a4:d3:b5:fc:ba:a0:f1:63:0d:c3:b6:58:33:dd:dc:aa:83:
a8:c2:f6:39:33:49:b2:04:f8:d4:48:40:fc:b0:ad:57:4e:6b:
53:51:2f:43:73:9f:45:54:80:26:c9:c6:bf:1b:e6:52:63:47:
48:6f:7f:73:ac:96:b9:6b:26:de:20:cc:cf:46:02:cd:0f:0a:
3e:93:e9:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:12:36 2025 by rpki-client