Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/-18l1uUyH6nqqiq_fnmcMI4pc68.roa
File: -18l1uUyH6nqqiq_fnmcMI4pc68.roa (raw, json)
Hash identifier: 9dlGOBRps7HNtgR/QauuWHhFY3bbKeP7QQJlDErl/iY=
Subject key identifier: FB:5F:25:D6:E5:32:1F:A9:EA:AA:2A:BF:7E:79:9C:30:8E:29:73:AF
Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Certificate serial: 045A
Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/-18l1uUyH6nqqiq_fnmcMI4pc68.roa
Signing time: Mon 10 Feb 2025 13:57:40 +0000
ROA not before: Mon 10 Feb 2025 13:57:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 160.25.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114 (0x45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0
Validity
Not Before: Feb 10 13:57:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FB5F25D6E5321FA9EAAA2ABF7E799C308E2973AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:06:c3:d8:9c:c8:5f:79:86:69:02:78:17:
80:26:ff:18:5e:54:81:5e:12:db:92:a2:eb:a8:33:
ee:b7:d1:04:91:35:00:ae:48:69:ac:02:57:93:68:
b4:ad:d8:09:d1:0c:da:74:fc:3b:63:b6:4f:99:8c:
ec:5c:fe:9a:2e:85:08:9b:a1:1a:cc:4d:dc:f1:e0:
2e:d5:e6:c7:1a:d2:f5:ac:e8:52:63:e8:ab:34:a1:
e5:6f:ad:55:35:ec:a0:20:ca:c2:3e:9e:06:b6:47:
68:6a:42:0b:2b:a8:fd:1e:35:17:b0:4d:b6:f2:96:
30:16:c6:49:32:fe:81:2f:9f:73:a4:38:c3:2a:8c:
00:f1:e3:f0:ed:95:41:61:ac:b5:2f:4f:55:04:63:
bd:e7:47:1b:8d:6a:9d:b6:bf:37:5b:cc:54:35:61:
97:da:d1:b5:4d:54:52:75:75:fd:99:7c:23:38:e2:
ee:51:26:8b:4e:c6:c8:24:4e:cc:9c:9c:d5:8d:7a:
63:84:3f:59:0c:9f:8d:39:41:d8:c7:e7:24:59:5c:
69:19:a8:b1:55:4f:9a:87:e4:5a:14:5f:f3:02:d0:
2c:d7:e1:a3:f7:e7:bc:b3:79:e5:9b:5f:55:32:d5:
d3:ee:09:8d:c0:91:10:49:2f:9a:a1:a9:b5:e4:a4:
b5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:5F:25:D6:E5:32:1F:A9:EA:AA:2A:BF:7E:79:9C:30:8E:29:73:AF
X509v3 Authority Key Identifier:
keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/-18l1uUyH6nqqiq_fnmcMI4pc68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.25.220.0/24
Signature Algorithm: sha256WithRSAEncryption
93:e0:01:0a:58:20:f7:e0:47:b1:58:e0:bc:1b:08:6c:cc:45:
dc:4c:91:34:b1:5b:a3:58:12:c8:75:c4:de:fa:3e:0b:07:4f:
b7:12:a7:39:76:eb:ed:bd:3a:5e:d8:ea:09:3a:60:07:a6:e3:
97:01:8e:fb:da:dc:b6:65:42:d1:dc:34:fc:d1:61:ac:74:a3:
08:9f:eb:f9:03:e4:e8:15:75:82:5c:40:fd:03:eb:c8:7b:5d:
90:7c:08:01:66:55:fc:c4:7e:fa:70:e7:7d:c2:8a:d1:64:7f:
9c:b0:ae:1d:67:13:e2:ee:df:64:7f:64:d4:c9:49:1e:e6:e7:
51:ae:44:5a:b1:a1:e2:3a:56:03:9a:d8:20:a6:0b:e1:bf:8f:
9a:26:f2:1b:3b:78:fd:32:bc:58:93:c7:57:7c:34:de:59:e0:
39:a1:2b:62:da:e9:3a:22:87:30:69:a4:f4:ae:90:9f:5f:ac:
8e:0e:c7:8c:98:30:95:78:45:63:17:e2:79:96:54:89:e2:cf:
83:b8:8d:e1:6d:0c:d8:e4:fe:09:0d:c2:9c:81:69:e5:3a:ba:
bb:9f:12:5e:ee:02:cb:27:c7:fe:94:ad:4c:37:4a:a8:1a:5d:
85:5b:9b:f0:62:10:6b:b7:24:2c:2a:e0:e1:b7:9c:a1:59:93:
5b:ea:37:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:48 2025 by rpki-client