Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/JsJAUgvuQaSV6sCw8r3_nWYmAFg.roa
File: JsJAUgvuQaSV6sCw8r3_nWYmAFg.roa (raw, json)
Hash identifier: /iRLZKR2UF8Bgns5JZ1D/MnRR5dRD29vG4q+94xtlpg=
Subject key identifier: 26:C2:40:52:0B:EE:41:A4:95:EA:C0:B0:F2:BD:FF:9D:66:26:00:58
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0CF3
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/JsJAUgvuQaSV6sCw8r3_nWYmAFg.roa
Signing time: Mon 10 Feb 2025 13:50:58 +0000
ROA not before: Mon 10 Feb 2025 13:50:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3949
IP address blocks: 61.58.41.176/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3315 (0xcf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 10 13:50:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=26C240520BEE41A495EAC0B0F2BDFF9D66260058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:fb:2f:54:04:01:8b:91:74:f7:ae:9f:8b:
59:8d:85:b4:1e:42:c8:3b:d7:c8:7f:19:80:77:10:
95:4c:e1:89:85:72:17:4c:0c:a2:88:a3:d1:1a:4b:
9b:03:53:60:ac:2c:0f:9f:ea:cf:f6:14:98:c6:4a:
0c:6c:0c:eb:b1:5b:8b:49:df:2b:9b:a3:d1:9f:a0:
ae:db:ef:f4:d3:56:10:56:67:0f:07:02:a8:84:e6:
96:7e:76:3e:72:88:f6:9f:b9:53:45:5c:d5:fa:2e:
1b:f0:a8:b0:b1:cf:b3:96:86:55:32:8a:0a:d7:10:
8a:9a:74:2c:e8:ea:28:57:72:18:d4:24:39:a8:bc:
9d:95:55:27:f9:19:02:c8:be:76:9a:a8:92:e3:08:
4d:a8:c3:73:02:a0:1e:12:95:82:f7:54:41:b6:04:
3e:89:d3:27:72:cd:b2:de:be:d1:d2:44:ae:d4:91:
41:b8:64:33:17:72:d6:ec:63:be:76:da:b9:d3:1e:
16:60:25:cc:4b:16:b5:37:dc:fa:f5:f0:b9:30:41:
e4:a1:e1:d7:55:7f:16:15:1e:10:df:8d:d8:3f:cc:
7b:46:ba:30:cd:56:33:91:86:a0:3a:13:e1:a0:57:
a0:89:52:88:81:8f:f3:6d:2a:90:e7:81:a7:75:b5:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C2:40:52:0B:EE:41:A4:95:EA:C0:B0:F2:BD:FF:9D:66:26:00:58
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/JsJAUgvuQaSV6sCw8r3_nWYmAFg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.41.176/28
Signature Algorithm: sha256WithRSAEncryption
be:22:2c:b2:dc:83:b9:1a:ee:9b:4c:96:5a:83:cf:c4:f6:ca:
1c:12:ac:dc:46:eb:78:db:bf:73:44:61:1e:2a:2d:39:cd:1c:
45:75:af:13:3d:98:c5:4f:ca:5c:ee:db:80:f6:dd:5d:95:7e:
7b:dc:2c:d5:cc:42:c0:ce:00:24:75:97:f1:a4:2f:8b:c0:c3:
d4:71:7f:e5:17:5f:ac:1e:7c:0b:72:3d:47:ad:fc:9c:b8:6b:
e3:6a:ef:25:38:79:3f:ce:05:a7:22:83:ab:cb:9c:2e:7d:25:
a7:95:e5:9d:d7:51:a4:39:e7:74:34:15:78:33:8d:48:8b:1d:
68:30:ae:4d:93:02:dd:77:85:81:fc:92:e4:30:83:52:70:64:
73:11:e4:41:4b:35:c1:a6:2c:b3:9c:73:92:d8:44:d4:c8:50:
b5:c1:f5:5a:81:84:f7:a5:8e:c7:46:3c:d2:ec:75:a8:b1:74:
26:54:ba:51:bb:84:66:9b:4e:08:45:91:79:7b:05:f4:a2:4e:
42:b0:88:33:54:cd:91:92:3d:4f:37:d2:67:d8:61:96:c6:8e:
63:d2:9b:55:4a:93:bc:bd:0f:90:7c:8a:c9:37:d7:42:1f:fe:
e5:8b:a0:ed:67:8e:22:46:a1:e1:36:53:b5:04:29:62:ff:54:
f1:16:6f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:57 2025 by rpki-client