Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/5a79f36d-hgk_gE6m7W8q95TJc0.roa
File: 5a79f36d-hgk_gE6m7W8q95TJc0.roa (raw, json)
Hash identifier: cbOpNrcQZcVWwoHcF+EzanvRCCn8TaGZfbIljpuRqDk=
Subject key identifier: E5:AE:FD:7F:7E:9D:FA:18:24:FE:01:3A:9B:B5:BC:AB:DE:53:25:CD
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0D20
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/5a79f36d-hgk_gE6m7W8q95TJc0.roa
Signing time: Mon 10 Feb 2025 14:23:28 +0000
ROA not before: Mon 10 Feb 2025 14:23:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131607
IP address blocks: 101.3.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3360 (0xd20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 10 14:23:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E5AEFD7F7E9DFA1824FE013A9BB5BCABDE5325CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:54:ec:ea:06:24:b8:6c:b1:27:1d:2e:62:
4d:90:f5:c4:6f:e7:d2:0b:e8:a7:fe:b8:5d:f2:aa:
05:ed:c5:f0:68:da:e6:9d:31:91:e5:d0:a4:54:d8:
ff:3e:39:21:6a:10:4e:08:d6:a7:d5:2c:31:95:d1:
69:79:8b:86:5e:43:bf:79:94:e0:89:96:f4:fc:e9:
ec:19:21:d9:31:13:31:90:e7:2d:17:4c:e0:c3:e9:
42:f2:a4:52:d0:09:f2:82:87:e4:23:b6:37:5a:4f:
17:34:d5:39:7e:0d:3e:11:c0:b2:79:0c:e5:2f:88:
e7:08:f9:fb:2d:7c:4a:c6:16:81:d6:1f:e7:5c:d1:
f7:55:82:37:4b:65:70:c6:82:91:4b:24:cc:c1:24:
5a:3e:82:5a:da:e7:38:f5:be:fe:cd:55:c8:aa:c0:
7e:23:27:f3:c1:3a:1e:6c:27:4d:fb:fa:7a:1a:88:
5c:68:46:24:3f:89:55:73:dc:6e:84:f4:25:5f:ff:
62:4f:ba:6b:0f:c8:ab:1d:d5:9d:63:30:45:7a:7b:
a6:98:41:63:0a:ca:30:de:ae:1a:35:30:80:49:86:
d6:45:55:54:23:c7:76:15:0b:5c:1b:6c:0f:ae:ea:
f2:aa:e4:f1:01:27:2e:38:b5:d5:4a:13:de:13:f1:
0c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AE:FD:7F:7E:9D:FA:18:24:FE:01:3A:9B:B5:BC:AB:DE:53:25:CD
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/5a79f36d-hgk_gE6m7W8q95TJc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.3.188.0/22
Signature Algorithm: sha256WithRSAEncryption
48:9e:74:31:08:69:f3:06:70:07:a1:fd:b8:6f:84:1a:a0:a0:
c8:cf:b1:dd:64:e0:78:94:f2:63:a5:f4:4a:ed:ef:b8:2c:85:
29:d9:d5:ff:4f:3f:b6:4e:b3:57:da:29:ba:6c:74:df:be:94:
86:65:c8:f6:a3:ed:1f:70:20:33:e5:78:55:97:a3:52:83:8a:
50:33:be:fb:28:b7:59:db:a6:1e:fb:c2:72:53:8c:e2:c4:45:
7f:eb:16:93:88:fa:b3:38:75:41:dc:52:56:81:db:02:39:23:
e7:50:bc:2d:52:06:eb:61:d2:ae:89:25:b9:e4:f2:4b:d9:c3:
06:b1:00:3e:b6:08:96:9a:9f:e4:48:84:bc:52:bb:dd:99:5b:
c2:b4:ff:e4:29:6b:19:03:bc:10:94:15:61:76:9e:8e:57:07:
cd:f9:cc:e9:dc:63:b1:b7:60:33:fd:31:fa:7c:7a:87:d2:3c:
1b:b6:87:13:dd:3f:41:10:f7:68:e5:56:b4:90:a4:fe:54:17:
dc:b4:d9:de:9c:62:ae:34:46:39:c3:bc:30:3d:d4:83:f3:95:
a4:2a:9f:eb:02:5a:6e:cf:e0:05:94:fa:5a:43:ec:ac:7b:68:
da:78:15:e1:ca:14:3b:ad:4e:a2:e5:8d:82:7d:63:97:93:f0:
6f:25:b6:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:24 2025 by rpki-client