Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/c-fvlH32-j4aAUPjaIS0lgSaKj8.roa
File: c-fvlH32-j4aAUPjaIS0lgSaKj8.roa (raw, json)
Hash identifier: JIaDgwWMalPziajLxxgx01jT2yCVY8iBSIoJl6Do2Yc=
Subject key identifier: 73:E7:EF:94:7D:F6:FA:3E:1A:01:43:E3:68:84:B4:96:04:9A:2A:3F
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0CF1
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/c-fvlH32-j4aAUPjaIS0lgSaKj8.roa
Signing time: Mon 10 Feb 2025 13:50:57 +0000
ROA not before: Mon 10 Feb 2025 13:50:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3949
IP address blocks: 122.255.94.16/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3313 (0xcf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Feb 10 13:50:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=73E7EF947DF6FA3E1A0143E36884B496049A2A3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c7:eb:78:28:8e:55:a2:82:ec:14:c1:1a:a1:
8d:25:1a:1f:c9:29:f8:d2:0e:50:f9:12:b8:52:4a:
f1:32:b4:47:4c:03:07:35:0b:86:75:ce:ce:b2:60:
e9:b8:8a:9f:53:99:d9:cc:c3:34:19:21:e2:38:01:
29:13:63:af:0f:a7:db:74:ec:0f:c6:53:d3:26:6f:
fd:f7:e2:23:45:f5:ed:9b:74:10:43:dd:54:bd:05:
ce:58:3f:16:a9:60:1a:e7:16:3b:cf:79:f1:0b:e1:
a3:0c:c5:ab:b8:bf:2b:90:10:22:89:ef:5c:b8:c2:
9c:04:76:2a:13:0b:6d:de:12:c1:8e:2b:c0:da:03:
06:36:46:ae:ff:dd:5f:9a:98:1c:50:e2:36:0d:4e:
40:02:3c:3e:43:6f:e3:8d:06:8d:24:e5:c2:80:85:
8f:1b:51:1e:94:0b:5a:ab:cf:2e:6d:f7:9a:2e:3f:
39:ea:6e:6e:22:7a:98:96:6d:5f:96:02:4f:63:ec:
4e:fc:70:e0:fc:53:4b:72:5c:b4:9d:2d:37:d3:db:
e3:6a:4b:7b:cc:8f:88:7c:ff:5b:bb:d0:1b:4c:b0:
e4:16:56:cc:91:0c:f9:66:e1:13:03:17:49:46:e1:
4d:73:6c:f4:e4:a0:9a:80:1a:84:b3:48:34:b7:3f:
25:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E7:EF:94:7D:F6:FA:3E:1A:01:43:E3:68:84:B4:96:04:9A:2A:3F
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/c-fvlH32-j4aAUPjaIS0lgSaKj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.16/28
Signature Algorithm: sha256WithRSAEncryption
30:4c:c3:b3:8c:d3:b3:52:a8:81:f9:33:df:8e:6f:6b:20:6c:
c1:d6:d4:18:eb:41:65:0d:10:b8:77:4f:bc:45:0c:47:d0:92:
fc:a0:99:b0:0e:e4:67:4d:9e:aa:df:d8:37:f1:1b:d8:bf:7c:
9b:1f:93:48:1d:39:63:b7:2e:c1:9a:85:c5:8c:c4:ec:77:df:
4e:dc:f7:63:1a:ed:d6:e1:d4:70:95:c7:05:8f:17:3d:be:91:
62:ca:e5:cd:36:4c:fd:5a:b9:c5:20:d5:79:ab:2c:f8:4d:65:
a1:74:3c:76:fc:93:52:0b:44:ce:ac:ba:13:1b:73:15:f1:ae:
da:01:b7:72:89:9e:a9:be:8d:23:01:7e:d3:8f:26:83:e0:60:
31:b0:51:c3:60:39:bd:93:4e:2c:5a:50:8c:50:8b:1f:31:fe:
e9:39:7b:9a:dc:0c:8f:81:5c:5e:d6:68:8d:46:2e:c2:c2:6a:
d9:5f:51:b7:33:0f:02:d0:30:4a:94:f0:36:53:6e:df:f3:f4:
9d:bc:bf:ae:97:9d:4c:d7:2d:cb:37:1a:56:c2:c4:d1:a2:41:
de:60:cd:d6:5c:36:ba:92:d8:43:36:63:8d:c3:43:f1:bb:e8:
20:bc:70:34:e3:80:77:fc:ae:12:79:95:fe:2f:ab:f6:23:09:
b9:8c:1f:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:24:02 2025 by rpki-client