Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/l4TxE6pq9ewWWWtmhoGM0opdab0.roa
File: l4TxE6pq9ewWWWtmhoGM0opdab0.roa (raw, json)
Hash identifier: CmXHMT/N25zsfOCQowqUDte+fWssFffV2RTg95KMilE=
Subject key identifier: 97:84:F1:13:AA:6A:F5:EC:16:59:6B:66:86:81:8C:D2:8A:5D:69:BD
Certificate issuer: /CN=EAB250D058FACBEB3EA0D16B53865061339074B6
Certificate serial: 0107
Authority key identifier: EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/l4TxE6pq9ewWWWtmhoGM0opdab0.roa
Signing time: Mon 10 Feb 2025 13:45:27 +0000
ROA not before: Mon 10 Feb 2025 13:45:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 151188
IP address blocks: 157.15.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EAB250D058FACBEB3EA0D16B53865061339074B6
Validity
Not Before: Feb 10 13:45:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9784F113AA6AF5EC16596B6686818CD28A5D69BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:95:02:ac:5f:2f:cc:b3:f6:a9:a6:4d:67:c3:
09:71:b5:a5:65:32:1e:fe:0f:bb:a9:b4:46:ec:1f:
c7:41:cc:61:c8:76:52:8a:e2:39:da:17:a8:d2:75:
d9:54:56:84:94:78:ea:97:c8:12:c9:19:a6:ea:a4:
6c:10:66:7f:07:53:e8:4f:dc:1d:b4:a3:e5:ef:dc:
95:d0:96:25:1f:0b:40:ae:1f:82:df:78:2f:21:f0:
a3:7a:c1:5a:23:1f:cf:e4:17:9f:24:bc:e2:34:9e:
65:4c:24:90:63:c4:3e:b1:01:18:fe:61:ec:01:13:
cd:5d:17:9d:60:a4:c9:ba:0c:b9:00:a1:6a:43:51:
10:83:8f:6a:a7:34:a4:50:98:c2:4a:c0:a3:13:ac:
5a:4c:56:45:93:2e:b2:e7:72:e3:34:f9:68:7a:24:
20:c3:84:14:00:3b:92:5d:d0:6e:1a:4a:e6:2e:71:
9e:db:b5:39:4a:5e:d6:47:17:5c:23:ff:d4:d1:9d:
e6:43:24:b5:c5:9b:29:0e:00:4f:1d:73:39:83:02:
e0:5d:e2:99:db:e9:d2:dd:3c:ce:c3:f3:b1:f3:4b:
92:40:d1:dc:eb:b0:30:8a:64:f9:6e:64:3f:7d:31:
68:bd:6f:9e:c6:82:51:81:8c:a7:6c:2e:25:63:8f:
b8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:84:F1:13:AA:6A:F5:EC:16:59:6B:66:86:81:8C:D2:8A:5D:69:BD
X509v3 Authority Key Identifier:
keyid:EA:B2:50:D0:58:FA:CB:EB:3E:A0:D1:6B:53:86:50:61:33:90:74:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/l4TxE6pq9ewWWWtmhoGM0opdab0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.33.0/24
Signature Algorithm: sha256WithRSAEncryption
59:e5:c4:6b:7a:f8:21:1a:7a:02:14:d1:5e:8b:86:17:c8:60:
a5:fc:ea:29:54:4d:62:f3:e3:2b:5f:80:d2:b1:64:99:04:04:
d9:5b:38:6d:01:b0:14:fc:44:ba:f0:71:b7:f7:1b:7c:e0:b0:
0d:75:f9:e6:2d:bb:67:a3:aa:21:3d:6e:7d:d9:db:6f:d3:fb:
f4:8d:ff:1e:27:b1:0b:60:e5:c7:75:4d:9d:e6:fd:23:09:9b:
0f:6d:5b:91:2f:3a:e0:47:a0:45:62:00:6c:d6:eb:57:b1:72:
fa:a3:e0:92:43:a7:96:f3:69:25:19:83:60:21:29:58:a1:13:
4b:a6:86:27:c8:b3:d7:b5:40:02:5b:7f:50:65:0b:b1:8a:8b:
e6:b7:03:67:03:3e:d0:ac:4d:df:49:e5:35:b5:81:ce:e4:5d:
07:f4:05:d6:31:a2:c2:df:1e:99:a0:8e:da:61:03:39:ba:2c:
55:79:4a:ad:76:93:a4:a0:d1:72:ba:7b:3f:51:ef:f8:b4:61:
38:f4:52:57:c8:db:42:34:56:cd:c5:a2:9c:58:dd:60:90:86:
d5:22:e9:39:7d:50:12:49:a6:6d:a6:5f:bc:00:e3:13:9e:f4:
f9:1a:fa:1f:30:17:f2:52:6d:c0:fc:0d:e9:6d:6b:d4:d3:35:
2a:11:9a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:09:40 2025 by rpki-client