Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/urrFJWzReN7Zl4rTxMF9DwnMTr0.roa
File: urrFJWzReN7Zl4rTxMF9DwnMTr0.roa (raw, json)
Hash identifier: 9r7smf2QkYfXGKNv5qNfEAWEojBQkT1wsP34ypO7oYA=
Subject key identifier: BA:BA:C5:25:6C:D1:78:DE:D9:97:8A:D3:C4:C1:7D:0F:09:CC:4E:BD
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0D54
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/urrFJWzReN7Zl4rTxMF9DwnMTr0.roa
Signing time: Mon 10 Feb 2025 14:13:11 +0000
ROA not before: Mon 10 Feb 2025 14:13:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 59.102.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3412 (0xd54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Feb 10 14:13:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BABAC5256CD178DED9978AD3C4C17D0F09CC4EBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2b:c2:b7:fd:df:77:7e:99:e0:a6:c4:00:39:
47:ca:40:2c:19:d3:cf:bb:0a:43:4f:50:1a:54:9f:
1f:60:1d:ac:30:14:2f:35:fa:9d:4e:17:80:73:27:
08:08:41:e5:8f:14:e1:95:82:47:88:77:77:09:f7:
1e:c8:fd:8a:0f:71:6d:1c:ea:cf:39:f8:e3:40:01:
c9:65:02:ee:92:92:03:7f:97:5a:3b:f7:49:17:97:
a5:11:0f:73:39:01:f6:f1:f6:74:8f:67:60:f2:29:
00:9f:ac:93:db:90:c3:f8:23:67:9b:86:9b:2e:c0:
a4:c7:30:e6:e2:1c:2d:e4:eb:42:35:00:94:b8:99:
2e:16:9d:25:36:6b:f2:86:38:30:9f:0f:09:11:a4:
74:0e:a4:c8:16:10:0f:b1:2b:cb:8c:04:4b:6e:56:
a7:f8:d5:b0:f4:b7:73:3b:33:e4:d5:b7:5e:cb:8c:
93:34:a3:4d:7d:1c:59:3e:ce:d0:fb:99:49:71:65:
49:14:33:ec:58:bb:14:86:c2:c7:9e:49:e9:74:3b:
6b:6e:79:48:6e:fc:02:c4:b6:8e:af:3e:ba:9e:8a:
d4:57:ed:84:f4:f2:8f:f1:51:68:5f:1e:56:2c:1c:
f1:fa:50:04:80:f2:29:2c:56:45:df:98:2b:c4:90:
58:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BA:C5:25:6C:D1:78:DE:D9:97:8A:D3:C4:C1:7D:0F:09:CC:4E:BD
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/urrFJWzReN7Zl4rTxMF9DwnMTr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.102.128.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:7b:10:51:e5:b0:b8:f7:8b:fb:68:df:89:de:34:62:bc:f3:
5c:2e:84:bb:ff:50:05:bf:41:cd:96:14:f9:7e:3b:9b:35:99:
66:b8:ef:8b:8b:b2:93:30:a9:9e:a0:4a:54:b9:61:bb:07:c3:
cf:8d:fe:c2:f2:3d:4f:7b:b4:f3:f7:eb:27:67:d3:9b:0b:fe:
3c:52:67:d2:4d:84:92:8a:d3:b9:a3:96:dc:78:68:a7:15:c1:
d3:21:5f:c3:04:2c:1d:e1:f2:0b:28:7c:09:b0:54:53:8c:1c:
de:b1:99:c9:69:a1:59:27:64:3d:de:75:ff:83:9b:67:01:a6:
2c:b3:c1:36:cd:72:f7:97:5e:5c:1e:f8:82:0b:0e:7a:37:61:
7b:88:0b:e6:d7:0a:07:ce:e3:10:9b:85:41:1e:b8:4b:e4:0c:
6a:3c:ee:eb:83:0e:f0:af:39:e3:bb:56:2c:5f:5c:db:35:5e:
05:7b:6a:f4:79:aa:73:2c:e4:fc:8a:1b:d6:d9:20:3d:db:23:
03:7b:29:13:25:36:76:1b:13:74:e6:01:8a:d2:cb:db:27:40:
6f:4d:14:0f:b8:2b:45:39:4f:c7:93:cc:ac:88:d0:58:da:a3:
22:c2:f5:ad:5c:4f:05:17:23:87:b4:08:89:3d:db:43:1a:57:
e7:e9:01:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:05:40 2025 by rpki-client