Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ZwVr2caNFUw7KbzkNKqxxcvKiuo.roa
File: ZwVr2caNFUw7KbzkNKqxxcvKiuo.roa (raw, json)
Hash identifier: GRw7IoQYyQsB+bQUgyj9ZZhSx7qtaIv00dZ62o1wf/E=
Subject key identifier: 67:05:6B:D9:C6:8D:15:4C:3B:29:BC:E4:34:AA:B1:C5:CB:CA:8A:EA
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D6D
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ZwVr2caNFUw7KbzkNKqxxcvKiuo.roa
Signing time: Mon 10 Feb 2025 14:13:19 +0000
ROA not before: Mon 10 Feb 2025 14:13:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 123.110.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3437 (0xd6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=67056BD9C68D154C3B29BCE434AAB1C5CBCA8AEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:79:69:fd:e4:02:e8:f9:31:48:b8:de:a6:c1:
87:dd:ba:a2:5b:80:0e:c2:a1:af:e3:c6:3e:6b:a0:
7d:7d:d6:ed:7a:01:04:ee:14:d8:1d:28:94:81:91:
ca:93:1f:3c:06:53:57:f6:aa:a8:fa:c4:cf:73:1f:
f3:56:66:21:42:b6:34:6a:09:f8:1d:01:a3:2d:f5:
cb:ea:20:ce:b0:fc:7f:b4:d2:08:67:1c:7c:f4:1c:
03:af:d7:53:58:ea:7a:0b:63:b3:dc:62:8c:41:1f:
53:93:d3:35:87:11:a3:dd:ea:ef:3e:89:fb:97:37:
7c:33:27:da:04:ce:5e:7f:74:c2:e7:de:8d:39:10:
12:42:b4:b4:f2:49:75:0b:3a:42:28:1e:51:de:32:
0d:9f:8f:ab:85:a4:a1:df:aa:60:48:39:6f:e2:01:
b3:6c:86:50:ea:cd:09:a0:14:84:40:91:73:cb:c5:
b2:0c:f3:76:34:37:15:e3:b6:02:10:a0:5f:17:24:
54:bb:63:9c:fb:1a:15:22:c0:4b:d9:93:b1:ba:aa:
bc:65:f9:49:9f:9c:65:87:c9:46:3d:25:71:cd:77:
99:fc:64:2c:c5:52:3a:41:4a:62:8b:d9:bc:e0:f0:
d2:bd:a5:23:2b:b4:0e:35:45:ea:d0:0c:6b:52:8f:
a9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:05:6B:D9:C6:8D:15:4C:3B:29:BC:E4:34:AA:B1:C5:CB:CA:8A:EA
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/ZwVr2caNFUw7KbzkNKqxxcvKiuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7d:1a:ac:0f:00:3f:1f:2b:de:a3:82:77:6b:12:1c:45:37:56:
82:f8:e3:47:eb:40:78:e4:09:26:63:33:62:af:f0:3e:16:83:
a3:34:40:a7:f2:5f:51:22:32:07:83:d1:3e:6a:8e:6a:2d:ba:
5e:56:09:19:53:cc:e2:6b:9f:50:31:e7:7d:e2:5f:68:ff:b7:
ba:71:14:01:76:8d:90:1a:b5:fe:f5:ad:f0:7c:89:40:a3:71:
ca:8b:f4:e6:36:5d:3c:49:c0:22:0d:8e:f9:ab:b9:34:d6:54:
7f:ce:ee:45:61:88:20:98:ac:e6:8a:e8:a1:d0:8d:a9:ff:5a:
4e:ed:16:2e:93:4d:ba:c4:bb:03:b4:96:4c:af:8f:89:ed:ab:
1f:18:d4:f5:f5:7f:13:fa:2e:5b:0a:f7:f9:97:ca:fc:7d:8d:
cc:38:95:b0:e0:c2:5b:dd:a6:9f:fd:39:7d:ec:80:25:9b:17:
e0:69:cd:58:6d:84:ee:db:ff:b0:e9:a5:97:91:bc:ab:9c:44:
a3:ae:ca:e6:55:db:15:13:19:65:2c:e0:26:f3:30:1d:80:b6:
ab:4c:44:3d:24:d3:9a:13:71:3f:91:0f:7e:4c:24:12:ce:0d:
d8:81:e7:1e:e5:a1:93:6f:4e:4c:63:93:39:fc:ce:4a:7a:b8:
8e:e0:77:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:07:22 2025 by rpki-client