Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/9iQKGkZD7ExraN-OJ-wZAxpSA0o.roa
File: 9iQKGkZD7ExraN-OJ-wZAxpSA0o.roa (raw, json)
Hash identifier: 0N0sC8v95GY1Td0g6ZBD1FnaC37L/8nTTmhHFTq7/VU=
Subject key identifier: F6:24:0A:1A:46:43:EC:4C:6B:68:DF:8E:27:EC:19:03:1A:52:03:4A
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E5C
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/9iQKGkZD7ExraN-OJ-wZAxpSA0o.roa
Signing time: Mon 10 Feb 2025 14:03:26 +0000
ROA not before: Mon 10 Feb 2025 14:03:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 45.64.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3676 (0xe5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F6240A1A4643EC4C6B68DF8E27EC19031A52034A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:43:da:89:60:5e:6f:63:a0:c2:6e:1d:3d:f6:
c3:02:94:3d:33:3b:f7:e4:37:53:c0:f4:f8:f6:63:
e2:08:3c:c1:48:0e:45:4d:f8:07:41:9b:1a:55:2e:
ac:ac:53:dd:b9:cd:1c:8b:c6:3d:0d:cf:6b:1e:f7:
01:52:f1:e1:5c:3d:f4:dc:e2:89:a2:f0:3f:8d:0b:
de:cf:62:41:6b:89:b5:3b:88:96:be:0c:50:ca:7c:
00:b0:a5:17:7b:43:0a:f3:af:17:91:b9:2b:37:18:
bb:b5:2a:7d:9c:11:93:63:60:f3:a8:dc:6f:ba:e9:
a8:9d:98:d8:4b:c3:9b:ba:50:19:d4:10:ae:f4:4c:
46:6a:13:fb:cb:8a:2c:ee:ec:af:1c:7b:8f:bc:1c:
ec:de:86:c7:7d:60:94:97:e3:c1:0f:af:6f:07:02:
42:50:10:3a:42:5b:46:81:d4:d2:24:71:7b:ef:a8:
a5:2b:20:a9:ae:e6:2d:a9:5f:c1:ce:8e:1d:19:3a:
e1:a6:f6:7b:ef:98:56:b9:cc:d6:c1:42:85:1f:1e:
ae:0e:ad:5d:64:a2:5a:60:d5:5e:c5:ae:4d:01:81:
bb:4c:a9:da:5f:2e:fd:f0:e4:b8:49:03:5b:93:70:
76:ab:99:0c:74:87:e4:27:92:eb:8e:88:37:93:bd:
81:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:24:0A:1A:46:43:EC:4C:6B:68:DF:8E:27:EC:19:03:1A:52:03:4A
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/9iQKGkZD7ExraN-OJ-wZAxpSA0o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.232.0/22
Signature Algorithm: sha256WithRSAEncryption
48:85:b1:42:c3:26:6c:6e:64:2b:53:8f:41:e9:85:fd:18:94:
31:67:ab:1a:e6:c3:6b:86:35:69:5f:ff:59:c3:83:84:90:9e:
d7:40:75:2b:92:da:64:02:18:d7:5d:53:25:e7:a0:eb:9f:f1:
0b:45:0b:81:df:1d:7b:03:52:52:52:86:26:09:61:be:24:6f:
18:d8:c6:81:f1:7f:69:f9:e3:fb:ae:78:63:b6:d5:e3:71:4e:
60:5e:06:33:fb:5c:b4:be:43:e0:75:ab:14:26:9c:c0:9e:71:
41:70:0b:af:e0:6e:f6:95:a9:88:05:fb:b6:4f:17:47:12:23:
5f:cd:e0:42:32:4b:0b:59:ae:66:de:86:60:54:25:48:7d:8d:
cc:ac:90:60:1b:36:a4:b5:53:8f:79:e4:51:99:42:08:1a:33:
64:04:e7:e5:23:7d:21:6a:a4:29:5d:36:7a:ee:d2:30:57:76:
5e:b4:ce:7f:9f:4b:1c:a7:be:c4:05:b2:b6:60:77:1e:8f:f8:
43:3a:f9:05:de:ed:d4:69:17:0d:28:56:5d:e6:de:e8:32:30:
bd:95:9f:79:ad:77:9b:0b:8c:5c:ee:8b:54:5d:e2:29:61:9c:
69:fc:c9:78:40:6d:14:68:41:e7:4c:72:90:f3:86:e9:1e:56:
6d:a1:a8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:52 2025 by rpki-client