Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/bTbsdbE0WS7DGHhVCNB15M0S9P8.roa
File: bTbsdbE0WS7DGHhVCNB15M0S9P8.roa (raw, json)
Hash identifier: IUYCctu/EKA4QNob1Gj03pmdJbvOa66dLr8zT3BuM3w=
Subject key identifier: 6D:36:EC:75:B1:34:59:2E:C3:18:78:55:08:D0:75:E4:CD:12:F4:FF
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0C7B
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/bTbsdbE0WS7DGHhVCNB15M0S9P8.roa
Signing time: Mon 26 Aug 2024 05:32:41 +0000
ROA not before: Mon 26 Aug 2024 05:32:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 122.255.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3195 (0xc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Aug 26 05:32:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6D36EC75B134592EC318785508D075E4CD12F4FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:31:b1:2d:29:77:63:96:ef:5f:7b:d8:3f:20:
f2:fb:29:6f:4b:da:cc:56:b0:79:a2:23:67:2f:c5:
2f:bf:a5:04:f3:3f:be:49:e3:73:2b:eb:a7:00:2d:
28:b4:10:75:a6:8a:8c:9a:ff:99:0b:9f:ba:d8:31:
40:37:ce:33:5d:8d:5f:d4:17:91:b5:0d:4f:0b:f9:
cb:d3:f9:4f:8e:ab:39:1a:84:5e:68:cf:f8:78:d2:
ba:1b:8f:17:f5:d7:db:f2:00:73:73:d9:b3:78:08:
3f:e7:ab:87:f6:5c:93:fc:8c:8b:6e:c5:ca:71:9c:
a0:d3:75:27:11:0c:94:89:7b:da:e4:99:94:09:15:
e9:69:1d:e3:eb:ac:f1:06:36:b7:e3:56:b8:b0:8c:
44:3d:80:c2:11:d5:e4:f1:7f:17:ac:58:f0:c7:5f:
53:1d:6f:3e:2f:57:41:09:00:31:ab:84:41:fe:db:
72:86:4f:b7:5a:24:4e:21:2d:f4:54:12:dc:9d:31:
39:c1:0e:5b:77:93:43:34:61:49:b9:85:5c:8b:d5:
30:d2:b1:c9:9b:3e:ad:5d:8c:60:6e:d4:44:b8:a0:
eb:72:26:81:38:5b:9b:91:46:1d:1f:20:ed:80:70:
34:36:68:fd:73:0a:e7:cd:5b:ad:6f:c8:66:56:7c:
e0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:36:EC:75:B1:34:59:2E:C3:18:78:55:08:D0:75:E4:CD:12:F4:FF
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/bTbsdbE0WS7DGHhVCNB15M0S9P8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.80.0/20
Signature Algorithm: sha256WithRSAEncryption
01:ee:35:bc:07:b4:fc:2a:bc:a6:8c:18:3b:bc:dd:c8:36:48:
ed:37:19:cb:73:51:6e:ac:33:a5:92:bf:b8:4a:1c:28:0e:9d:
b3:36:51:ed:6f:2e:0d:ea:9b:ba:82:9f:ab:d0:92:9f:f2:99:
59:6c:b7:a0:39:67:f2:11:7f:70:3b:56:08:51:ae:c7:32:19:
8d:af:a4:6c:e7:0e:19:7f:3c:84:80:91:a4:6a:b0:3b:ea:09:
dd:6b:ab:fe:d9:6a:8f:5b:c3:bb:3b:33:03:ad:b1:68:95:44:
e8:df:e7:5d:9a:0e:e8:74:1e:ac:3c:e6:b2:c6:1f:18:78:8f:
95:ee:a7:15:ae:19:4d:40:5e:52:31:a1:04:23:68:2a:f3:b7:
2f:1d:24:41:ea:ea:81:7a:42:43:c7:a6:8f:cd:b4:38:72:a9:
86:34:b3:2c:09:f9:61:6e:2c:e1:01:cd:35:cd:e4:6f:2d:20:
81:d3:89:d4:a5:10:8b:18:bd:cb:72:76:94:c7:06:4e:22:e6:
a2:31:61:bb:b9:65:62:46:e4:3d:b8:9f:71:b1:f8:0f:f3:6f:
bd:0b:01:6b:a8:ee:7f:8d:05:de:73:84:45:c4:0e:c1:d2:e5:
d9:e0:ee:78:91:78:21:e2:62:23:69:e3:83:17:bb:3b:b8:b0:
da:ea:1e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:51:15 2025 by rpki-client