Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/i46ldYhHdWHXzdZIpvg49yWwJLA.roa
File: i46ldYhHdWHXzdZIpvg49yWwJLA.roa (raw, json)
Hash identifier: lyTT2mO5fpbZnoSVWhmKQSYykjt5qgbAr94dP2/CGHo=
Subject key identifier: 8B:8E:A5:75:88:47:75:61:D7:CD:D6:48:A6:F8:38:F7:25:B0:24:B0
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 0D1A
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/i46ldYhHdWHXzdZIpvg49yWwJLA.roa
Signing time: Mon 10 Feb 2025 14:02:31 +0000
ROA not before: Mon 10 Feb 2025 14:02:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9922
IP address blocks: 39.1.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3354 (0xd1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Feb 10 14:02:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8B8EA57588477561D7CDD648A6F838F725B024B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6e:f1:fa:a4:ef:88:a7:21:d7:3b:0c:cc:49:
4b:02:89:87:bd:53:eb:ff:b6:45:9c:cc:06:ae:34:
ee:bc:73:6a:a9:49:90:4e:f2:ff:4b:cb:aa:83:7b:
dc:44:59:40:a6:c7:04:84:30:b8:ff:fa:84:b5:21:
45:18:6b:ed:29:7e:56:7d:b8:24:b1:49:f8:c4:c6:
ff:da:32:f5:0c:c7:b7:2e:b5:53:de:19:a5:29:54:
61:81:7b:35:dc:b7:75:6a:a5:64:e7:0d:c9:f7:34:
42:6b:86:6e:b2:a6:55:af:3c:a9:b8:73:5c:f2:92:
18:51:96:b8:01:0e:6b:1d:95:20:79:df:ff:e1:8e:
19:14:e5:61:7d:2a:c6:fc:a9:fc:b8:47:b7:ed:3f:
1c:b6:8d:c5:c3:3c:7e:e0:1c:13:8f:a4:e1:af:78:
73:c0:d7:3a:b3:de:41:c8:9a:cc:ac:7e:dd:22:60:
aa:c4:8f:8d:64:53:71:8d:c4:a7:52:1a:49:43:5a:
f2:d8:b9:a4:fc:e4:4d:1c:00:13:c3:b7:03:9f:2e:
59:2b:dc:52:c8:96:2c:fe:58:83:09:c1:66:74:1b:
2d:d0:00:a4:e8:33:3f:c9:a6:86:2b:c1:6c:1e:d6:
d3:ff:18:ae:2d:3e:b7:a2:11:dd:21:77:b9:bd:ab:
f5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:8E:A5:75:88:47:75:61:D7:CD:D6:48:A6:F8:38:F7:25:B0:24:B0
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/i46ldYhHdWHXzdZIpvg49yWwJLA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
39.1.44.0/24
Signature Algorithm: sha256WithRSAEncryption
44:de:8e:67:2f:e5:96:a0:4d:3f:a2:56:a4:b5:ec:64:6c:59:
75:c7:0e:23:ca:bd:d5:53:63:8d:40:66:da:ea:8b:0c:9c:c8:
3b:67:1e:0a:e1:cb:59:3c:70:14:d6:ba:88:21:b3:1c:48:41:
e4:64:87:c9:a6:00:ad:4f:ce:3b:92:4d:39:df:fb:b0:39:24:
f9:a7:a0:63:81:61:96:9f:71:f5:b7:9e:22:56:a7:5e:ec:9e:
9f:24:39:b1:90:62:1e:77:db:37:fc:1f:61:54:0c:bb:7f:0f:
d5:d3:8b:fc:65:4d:23:fe:e9:23:64:87:a6:c7:97:58:c3:27:
0c:a1:84:03:1d:c2:34:df:51:e1:ce:2d:de:f9:c8:ee:c2:86:
b4:a6:99:7d:fa:3e:f7:83:5c:23:76:81:2d:50:f1:b5:b9:17:
e5:d9:fd:0d:aa:f3:bc:a3:0c:ba:45:f9:8d:5d:7a:ee:68:2c:
64:e7:21:78:95:11:b3:7b:b5:ac:f1:ae:94:59:63:51:89:f2:
2d:e4:c6:db:c2:99:8c:a2:5f:94:b8:52:f2:25:d8:56:2a:b8:
9a:13:41:39:68:d8:77:03:d8:0e:f9:75:08:27:ac:94:7b:26:
14:f6:82:eb:e3:9a:a0:87:d6:d5:25:29:1e:c8:13:c8:1c:9a:
01:88:1e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:08:28 2025 by rpki-client