Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_a5_rsTZQmTRFEQX8zb9fFZL-HE.roa
File: _a5_rsTZQmTRFEQX8zb9fFZL-HE.roa (raw, json)
Hash identifier: lkleLGg/Pwlvcxxncw2jks3Mp2GuaCsZ2LE4yKQf5Ws=
Subject key identifier: FD:AE:7F:AE:C4:D9:42:64:D1:14:44:17:F3:36:FD:7C:56:4B:F8:71
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D58
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_a5_rsTZQmTRFEQX8zb9fFZL-HE.roa
Signing time: Mon 10 Feb 2025 14:13:13 +0000
ROA not before: Mon 10 Feb 2025 14:13:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.58.64.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3416 (0xd58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FDAE7FAEC4D94264D1144417F336FD7C564BF871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:de:5a:07:21:a5:8e:2e:f6:8e:99:27:66:15:
05:3b:fe:ed:c4:74:36:08:45:43:1d:44:ba:b2:f0:
a7:e5:d6:09:20:98:98:4b:d5:7b:bf:78:42:39:57:
ef:ec:3e:a6:fc:7d:91:89:3a:07:b3:19:51:88:29:
0e:47:ea:ed:26:cd:0e:2b:82:c5:99:9e:bf:94:3f:
3a:fb:00:40:46:8c:89:ac:10:7d:bb:f5:dd:56:71:
bc:7f:dc:05:e6:5c:14:d5:a6:04:3f:29:f1:e5:32:
a4:0a:1f:a7:6a:a9:5f:96:68:d1:74:ba:91:8b:e8:
51:0b:c8:4c:ff:de:8f:e3:41:99:87:45:7a:d5:6a:
0b:24:a4:8b:54:61:81:77:f1:d6:6f:15:21:ea:f4:
a9:da:f0:25:a4:e3:cf:8f:36:54:d3:77:82:9b:d4:
84:57:35:b2:f0:9a:80:6e:ef:a5:17:c9:89:43:93:
0f:e3:80:ed:af:f1:c6:e6:db:83:6a:e2:d0:1a:6b:
74:96:5d:59:8d:36:51:9b:af:2f:0b:20:9a:35:83:
31:be:6f:e3:7d:c7:8e:a7:93:b9:5e:d6:ea:89:f1:
ef:81:cd:25:54:07:ed:e5:db:65:bf:5a:e3:92:6c:
9a:6d:11:74:e2:d7:b2:9f:5a:ed:fa:05:26:bd:0d:
11:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AE:7F:AE:C4:D9:42:64:D1:14:44:17:F3:36:FD:7C:56:4B:F8:71
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_a5_rsTZQmTRFEQX8zb9fFZL-HE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/21
Signature Algorithm: sha256WithRSAEncryption
13:0d:12:08:c6:0a:92:bd:e8:0c:ed:d4:32:c3:f1:fc:24:19:
3e:2e:46:1b:2f:15:cf:0e:07:30:e3:98:1c:43:7b:05:9d:91:
fa:8b:e0:77:a6:e9:bd:69:fd:ff:91:0a:5d:d1:ac:7f:f1:a2:
18:71:1f:ac:93:b7:e8:7c:cb:57:cb:77:9b:11:36:f5:5c:3f:
ef:99:d3:dd:ae:20:11:0a:04:8a:f7:f3:98:a5:f6:19:24:0d:
62:7c:ed:84:3b:df:6d:3e:bf:f5:45:09:c2:46:7e:54:ed:63:
e9:95:19:da:6e:8b:51:8f:0a:30:89:91:cc:1c:02:2d:0b:b1:
82:81:ff:b8:d8:96:0b:7d:57:23:80:5f:a3:d0:ab:84:5a:c9:
00:f9:54:f4:24:52:89:6b:4f:92:1e:98:29:b6:c2:8c:76:bc:
a6:2f:96:6d:c0:39:32:1b:1e:7b:2e:8c:e6:ca:0e:1e:45:aa:
4a:e3:ce:90:38:5e:9f:af:d6:c7:6f:4e:58:ba:55:72:81:5c:
ff:bd:4b:0c:56:5b:6a:fa:37:c7:6f:28:bf:c8:7e:9a:ee:eb:
c9:9d:1d:4f:9f:f9:a9:78:db:fb:7b:a7:56:b1:6a:48:a5:b4:
53:cf:41:04:b4:5d:bb:d0:9f:00:78:50:43:f6:f6:e6:8b:71:
cf:a4:f0:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:04:33 2025 by rpki-client