Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/EbUgtp4aNF6BaBdDvQkD8VnhAeM.roa
File: EbUgtp4aNF6BaBdDvQkD8VnhAeM.roa (raw, json)
Hash identifier: 0e0jm5o5TQOYXswIy8UIf0jAUGWSP0Q4b3zLzt2G6Cs=
Subject key identifier: 11:B5:20:B6:9E:1A:34:5E:81:68:17:43:BD:09:03:F1:59:E1:01:E3
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0D0B
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/EbUgtp4aNF6BaBdDvQkD8VnhAeM.roa
Signing time: Mon 10 Feb 2025 14:02:28 +0000
ROA not before: Mon 10 Feb 2025 14:02:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9922
IP address blocks: 39.1.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3339 (0xd0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 10 14:02:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=11B520B69E1A345E81681743BD0903F159E101E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3f:f3:68:45:9b:ef:81:2b:47:99:a2:d0:00:
c5:ec:d4:3f:22:92:29:54:dd:a6:fb:44:70:34:7d:
ca:87:c0:f4:92:51:a5:7f:1c:07:35:5e:4a:3f:6c:
11:6d:47:10:eb:bc:04:d5:90:40:30:3b:54:41:0a:
40:79:a9:b4:a8:35:ef:9c:ae:df:9d:24:d2:8c:b3:
b6:64:7b:5b:d8:7b:01:f3:26:0e:f2:52:60:3f:20:
68:81:87:73:cb:da:25:52:05:23:a0:a9:78:9c:dd:
76:8e:6b:a7:a9:2a:54:01:f2:3c:99:07:af:db:16:
bc:33:c3:91:88:e7:63:72:46:20:4f:a4:cf:0d:e5:
2a:9b:85:bb:98:0c:9a:bf:8c:1d:71:c6:a8:c3:73:
02:84:7f:80:86:c4:3a:e5:2f:32:e6:a9:5f:44:90:
23:7e:49:9a:52:5b:c2:23:e4:12:b6:11:1f:34:85:
d7:98:4d:75:4c:07:9e:a5:1f:bb:34:1e:0f:8b:12:
fd:99:0d:61:1a:99:10:4b:31:48:fa:af:43:e1:45:
4d:a6:4a:2f:9e:87:ca:3f:e7:34:3b:b7:eb:70:32:
da:f2:41:da:46:56:f6:6f:ff:bd:6b:05:33:e3:0e:
8f:d3:6e:d8:19:47:72:54:e0:f7:0c:31:42:cb:9c:
ac:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B5:20:B6:9E:1A:34:5E:81:68:17:43:BD:09:03:F1:59:E1:01:E3
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/EbUgtp4aNF6BaBdDvQkD8VnhAeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.1.45.0/24
Signature Algorithm: sha256WithRSAEncryption
53:8b:2c:82:27:d6:ab:0c:b1:e5:73:cb:55:ed:9d:df:73:ac:
7a:e5:f2:d6:98:f6:c9:a4:03:f5:1f:5b:c7:40:e1:ac:93:45:
4f:42:96:a9:ea:87:fc:57:fb:62:cd:24:3f:42:d7:59:fa:cb:
d6:9c:c0:78:f2:a6:d8:f5:64:e6:8d:9d:05:ae:4e:98:e2:9e:
6f:b8:52:79:ef:5e:a3:89:87:2f:9b:a1:f8:1c:ff:27:eb:9a:
0c:60:ed:a8:c9:96:52:f9:0f:8e:5b:52:4f:11:ff:98:ee:a3:
03:49:a0:94:44:33:0b:6c:e5:f3:9a:1f:02:64:5c:e4:dc:28:
59:f1:80:5f:f4:5f:a8:b5:b9:da:7e:a1:58:66:37:23:b8:ef:
54:15:3e:cc:4c:21:42:4c:61:96:33:9d:c1:be:94:88:e1:b6:
d2:eb:30:ae:e2:64:a0:0b:d1:fc:ba:f0:b3:46:04:9e:4a:3a:
0d:96:b3:8d:0d:50:f6:81:25:0d:b4:7d:7a:1f:bf:d1:f4:6f:
b5:f2:b6:13:c7:63:57:8e:fd:53:8b:e1:1a:4f:e9:26:27:9d:
0f:82:81:64:bc:86:68:0a:fc:a0:27:96:4e:95:dc:75:bb:72:
c9:ea:92:d6:55:fb:5a:47:a5:3a:0a:4b:ab:d6:0e:42:79:51:
9a:2c:a1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:28 2025 by rpki-client