Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/mSTL50iIgvS692ofhwIVFRbv-14.roa
File: mSTL50iIgvS692ofhwIVFRbv-14.roa (raw, json)
Hash identifier: 8ZOkULwx6k2NokqJ+pQE3L5fiuF1dtpuPmtAVBatI5I=
Subject key identifier: 99:24:CB:E7:48:88:82:F4:BA:F7:6A:1F:87:02:15:15:16:EF:FB:5E
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D70
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/mSTL50iIgvS692ofhwIVFRbv-14.roa
Signing time: Mon 10 Feb 2025 14:13:20 +0000
ROA not before: Mon 10 Feb 2025 14:13:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3440 (0xd70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9924CBE7488882F4BAF76A1F8702151516EFFB5E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1c:4b:2b:f2:5f:fc:40:8b:c3:5b:58:06:06:
b0:8c:f1:0b:9c:25:ba:7f:45:d3:27:6f:0a:c6:4a:
83:eb:fa:30:a9:9f:35:74:25:1b:0b:84:2f:08:c1:
12:e6:cc:9a:63:08:ed:bf:84:72:50:28:09:82:6e:
8d:60:99:60:85:1a:cc:b7:9c:c1:e9:6e:6b:12:6d:
81:fc:f6:c2:89:ce:35:97:69:f8:1e:21:e5:43:b8:
78:35:6d:04:6f:94:bb:3e:62:9f:01:1d:65:1f:60:
3c:98:8d:a4:38:47:93:96:a4:fa:b5:0c:38:0a:ec:
c7:cf:fe:d6:45:d1:f8:c9:6c:73:0c:76:0f:da:7a:
6b:cb:b5:fc:58:8a:b7:aa:b6:fd:1a:06:42:b5:83:
89:16:0c:29:4b:34:e1:50:5c:31:24:3a:23:e2:d5:
6d:b3:67:a0:d1:8e:9d:96:f9:7f:32:90:f8:52:68:
9c:14:81:77:d3:e1:af:e3:f7:4c:ec:67:b8:04:5e:
0c:70:89:04:41:32:d1:42:17:79:97:50:ad:1f:fd:
22:49:e5:80:82:2e:e1:6e:e2:0e:4d:00:15:c5:24:
d6:b1:41:14:99:f1:26:c0:49:c0:d3:a9:02:01:04:
8f:55:5d:04:04:42:ef:ca:04:4a:bf:7f:fa:b5:c2:
1b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:24:CB:E7:48:88:82:F4:BA:F7:6A:1F:87:02:15:15:16:EF:FB:5E
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/mSTL50iIgvS692ofhwIVFRbv-14.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
cd:56:9a:ba:b7:a9:89:3e:85:b5:ee:1d:d9:9d:47:45:51:3f:
5f:a8:f4:a5:19:35:91:16:85:99:02:d5:ad:0b:a3:c9:28:5e:
d6:41:f9:82:fd:8c:5e:62:70:5a:d6:a4:38:cd:4a:a2:9d:59:
d4:6f:d9:59:91:35:c3:95:63:ef:db:0f:b2:c3:d6:90:46:4b:
60:b0:62:b8:5f:0c:e5:1e:63:eb:bf:3d:99:4b:60:3f:25:15:
64:b2:9c:ce:4a:11:94:d1:60:6a:64:ed:48:a8:d1:7d:09:84:
23:ce:3f:b6:03:ba:3b:1c:4d:03:e2:49:d9:d4:d5:15:0b:cd:
8e:ec:b0:d6:62:22:a1:bb:e8:9e:67:38:7b:53:c1:8a:10:29:
0f:ae:15:a5:21:0c:48:19:56:12:92:6a:63:02:db:88:86:45:
7a:94:92:a9:4c:04:d8:59:7d:67:c5:3c:89:3b:64:73:96:e4:
69:00:6f:f5:6f:96:4a:b2:6c:76:95:c6:ac:7c:fa:ec:5a:04:
9f:4a:40:42:a8:8d:98:25:f8:b8:5f:74:89:12:d8:7a:4f:38:
d7:40:24:94:2d:4b:38:3c:ef:3c:b6:99:d4:b8:2f:a0:5b:40:
f9:de:76:49:cd:c4:25:76:bc:c7:31:1f:6a:a5:01:8f:74:df:
31:d2:e0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:02:13 2025 by rpki-client