Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/p0GBXkdQB_OW2z-9RDfENHwimAc.roa
File: p0GBXkdQB_OW2z-9RDfENHwimAc.roa (raw, json)
Hash identifier: kBLpR9EjVeE4y7dRuH5d0YNTQZ8jzGV4SKD/Ybd5WiI=
Subject key identifier: A7:41:81:5E:47:50:07:F3:96:DB:3F:BD:44:37:C4:34:7C:22:98:07
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0D67
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/p0GBXkdQB_OW2z-9RDfENHwimAc.roa
Signing time: Mon 10 Feb 2025 13:51:06 +0000
ROA not before: Mon 10 Feb 2025 13:51:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 211.79.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3431 (0xd67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Feb 10 13:51:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A741815E475007F396DB3FBD4437C4347C229807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3d:08:c2:67:57:cb:3e:ec:d8:7b:a6:7f:5f:
47:5f:cf:03:4f:3c:3d:1d:42:17:a0:c5:0e:2b:38:
2c:bd:34:fe:d3:ee:a1:c7:30:15:1d:e5:16:ba:6e:
f9:9c:86:11:fc:99:e3:36:2d:23:d5:d2:b3:ae:62:
51:d8:06:6e:77:9d:65:ac:ca:34:ac:1f:e6:1b:35:
81:7d:cb:10:49:5f:cb:af:e6:9f:62:c6:a3:f1:1e:
d8:7b:be:76:0b:33:56:62:88:ba:0f:cf:b3:36:20:
41:e3:79:23:aa:63:21:2e:8b:5e:27:4e:e7:b9:04:
92:d6:e8:66:bc:fd:b7:47:ab:4f:13:7d:5f:ce:b0:
e4:94:38:68:0e:f7:71:b9:bd:bb:a0:0c:4b:1b:83:
1e:dd:0d:a0:fb:2b:4e:78:29:12:fe:90:c1:70:29:
04:75:e9:c5:43:34:76:ed:ed:59:ec:42:72:e5:60:
11:1b:e3:19:d0:c0:f4:a1:a7:30:cf:3e:e7:6d:1e:
7f:aa:0a:10:f7:ae:55:e2:ae:ad:fc:e5:85:f6:d5:
e9:62:e7:d0:93:cd:4a:5a:ea:54:45:02:f1:10:c8:
92:fb:5b:72:8f:57:1f:0b:1e:8c:a5:1a:7a:0c:79:
f2:a3:1e:f3:39:b3:15:06:f0:95:77:31:19:1c:22:
8e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:41:81:5E:47:50:07:F3:96:DB:3F:BD:44:37:C4:34:7C:22:98:07
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/p0GBXkdQB_OW2z-9RDfENHwimAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.64.0/19
Signature Algorithm: sha256WithRSAEncryption
4b:b1:5f:6e:6e:d3:9f:0a:6a:95:46:71:0b:4c:9e:61:db:0c:
c4:68:ab:69:95:c3:22:14:84:7d:46:26:bc:0b:5c:82:35:e9:
40:24:43:5c:2b:17:84:87:86:51:26:26:93:9c:b5:0a:d2:44:
e3:70:32:3c:1d:91:a1:2a:68:6b:79:bb:2b:1f:6a:7f:81:c0:
1e:02:5d:f0:4c:84:86:89:7a:ba:60:71:79:65:2f:d4:ed:ab:
39:2d:23:3c:4c:3d:75:8f:6f:8d:e2:94:2b:73:05:b3:91:91:
c1:28:54:d3:8c:96:c1:e5:f3:e6:fb:ae:2d:73:5f:6e:83:ce:
f4:8b:44:63:b5:48:88:52:81:9a:ff:ab:15:1e:0f:04:a4:20:
81:ab:03:d6:3f:02:3b:ca:82:29:22:7a:0e:48:33:f6:ce:68:
c1:6b:40:12:a6:b9:24:c8:0c:9d:8c:4b:49:9a:9e:ec:48:48:
f4:b8:c7:3b:0b:74:b6:77:be:4a:64:3f:7d:4c:91:12:7b:ca:
25:ec:56:6c:91:30:ed:df:01:33:92:7a:37:b7:8b:6b:52:4a:
13:b2:2d:80:52:d8:6d:d2:9d:04:96:5f:1b:f1:49:66:43:9c:
ad:9c:f0:92:90:dd:81:27:55:04:e9:68:96:ea:ab:db:62:59:
c4:1f:38:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:14:58 2025 by rpki-client