Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/9LNbBTGKkWhZIAFZefop1k8xGYc.roa
File: 9LNbBTGKkWhZIAFZefop1k8xGYc.roa (raw, json)
Hash identifier: Lc2NSLg9tzioJQhrpinsLwIfYjJ0aG1uR7NsG8oBzYI=
Subject key identifier: F4:B3:5B:05:31:8A:91:68:59:20:01:59:79:FA:29:D6:4F:31:19:87
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D62
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/9LNbBTGKkWhZIAFZefop1k8xGYc.roa
Signing time: Mon 10 Feb 2025 14:13:15 +0000
ROA not before: Mon 10 Feb 2025 14:13:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 59.102.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3426 (0xd62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F4B35B05318A91685920015979FA29D64F311987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c9:5f:cc:83:4e:0e:f5:a4:92:15:4d:0a:54:
8b:85:cf:d1:0d:22:a9:14:2b:1e:7a:22:fb:69:b7:
44:85:cc:b0:e5:43:5a:dc:76:7a:af:db:de:02:18:
75:c2:e8:84:ca:4d:0c:84:20:92:7a:f8:57:67:fa:
31:f6:44:89:a0:a7:b0:b6:25:7b:4a:89:8b:55:ae:
21:3d:b4:8f:f5:00:05:0b:89:ba:2e:91:9f:6f:86:
38:f2:52:3d:8f:76:18:04:f4:d4:67:3b:2e:5b:dd:
c8:7a:cb:df:00:b5:2c:47:cf:ad:26:a4:92:ab:2c:
6d:ca:ac:68:37:81:4b:8a:12:a4:de:06:8d:d5:83:
19:41:ff:dd:e1:69:dd:97:37:ce:78:96:bf:2c:e7:
48:01:1e:8e:ee:9b:30:4a:be:1c:22:9b:2b:d6:eb:
82:fe:c4:f5:ea:1f:0c:e7:cb:c1:d4:10:26:da:38:
43:19:5c:94:c6:de:73:96:88:ce:ef:52:1b:13:f9:
14:d2:1a:6d:b5:13:78:dd:d2:75:13:69:c1:30:00:
02:0e:21:ee:98:17:58:5e:ad:46:f3:75:39:12:59:
46:06:e5:9b:7f:35:77:dc:20:d8:8b:e0:cf:ee:74:
0a:25:36:2b:63:63:8c:51:96:3f:f7:41:aa:c5:42:
df:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B3:5B:05:31:8A:91:68:59:20:01:59:79:FA:29:D6:4F:31:19:87
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/9LNbBTGKkWhZIAFZefop1k8xGYc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a9:fa:be:42:bb:ee:85:58:b0:65:ab:f1:ae:d2:e9:b9:0d:39:
2d:35:24:b0:62:e2:50:c8:ca:b7:95:b8:42:35:c7:b1:74:38:
18:34:73:fe:9b:98:38:4b:d7:10:88:7e:48:0c:cf:e7:50:b8:
ad:e9:bd:55:79:a5:ee:61:98:ed:81:cd:b8:1b:2e:56:a9:4e:
a5:24:15:f6:bd:cc:0f:51:a6:42:07:63:91:4f:80:19:b6:b8:
b7:8f:ef:7f:81:9c:68:f8:85:ff:81:4d:74:84:8c:28:12:bc:
88:1d:15:3f:a1:13:86:41:99:74:25:e8:ab:e3:fa:f5:36:48:
68:e1:bc:bb:ec:8d:75:53:7b:e6:78:79:69:ee:13:70:a6:7d:
22:77:54:d1:a5:4a:00:b5:1a:68:79:28:b9:bc:42:11:9b:fe:
1d:e0:3a:4d:cc:d8:83:91:f6:85:92:b6:72:af:a1:3c:87:d3:
b3:6d:98:bc:32:2f:1d:3c:a1:eb:6d:5f:ad:e3:ce:da:08:f7:
37:85:62:22:45:0e:4e:5e:ce:60:90:1c:f4:e9:89:19:4a:5c:
9d:97:e3:f6:5b:28:96:2a:9d:a6:9d:a8:c7:b7:45:2a:74:7e:
31:70:45:67:c4:1c:ae:14:93:e4:92:2e:e6:0e:35:03:d9:e0:
ac:69:0a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:02:14 2025 by rpki-client