Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/A8PxOsHeRsk-YoQrl7Mo1M8nJGA.roa
File: A8PxOsHeRsk-YoQrl7Mo1M8nJGA.roa (raw, json)
Hash identifier: YGsFgDTfMIrASjqal4K5Gttfc07ReRq44T9aIHdHVnQ=
Subject key identifier: 03:C3:F1:3A:C1:DE:46:C9:3E:62:84:2B:97:B3:28:D4:CF:27:24:60
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E51
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/A8PxOsHeRsk-YoQrl7Mo1M8nJGA.roa
Signing time: Mon 10 Feb 2025 14:03:25 +0000
ROA not before: Mon 10 Feb 2025 14:03:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 124.155.160.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3665 (0xe51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=03C3F13AC1DE46C93E62842B97B328D4CF272460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8e:54:41:76:3f:72:66:c2:6b:c7:01:bc:43:
b5:2f:1f:7e:99:b2:d6:61:17:df:6a:06:1e:20:65:
6d:21:42:f4:8f:7d:ac:a5:e9:1a:fe:36:0b:a0:6c:
53:dc:fd:d4:b1:f6:54:25:b5:87:01:46:ae:fb:35:
b3:1a:62:85:00:44:3f:0e:7f:0b:9d:88:1e:ab:ed:
82:46:bd:69:c6:2d:cd:54:e6:39:fb:d7:71:3d:bd:
25:7a:79:c7:78:5f:cf:f7:f2:34:32:43:8f:62:a9:
50:da:3b:50:7e:c8:44:8c:ca:26:e8:4e:2d:74:01:
8d:3a:bb:ca:ec:9d:e9:5c:70:84:fd:5f:b4:23:f8:
6d:cb:66:94:43:5d:a0:b2:17:c2:ca:3c:a5:0d:b8:
d7:74:53:91:d0:57:3e:8a:c2:48:c8:eb:6d:64:80:
f7:c1:47:f2:26:77:49:fe:4b:4d:10:58:fd:33:3e:
2a:cf:53:f2:39:3c:bd:7c:32:87:45:2e:e2:e8:af:
ac:3b:83:8c:63:7a:e4:4e:27:fc:6f:3d:cc:59:4b:
8c:ac:11:49:fd:97:42:c2:5d:f4:e4:b0:c8:69:a2:
73:ba:1d:61:4b:49:27:05:de:f0:3c:cb:f9:eb:a2:
f0:ef:f5:79:24:cf:47:e9:f9:7e:f4:af:a5:1c:9c:
61:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C3:F1:3A:C1:DE:46:C9:3E:62:84:2B:97:B3:28:D4:CF:27:24:60
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/A8PxOsHeRsk-YoQrl7Mo1M8nJGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.160.0/21
Signature Algorithm: sha256WithRSAEncryption
34:4d:70:42:ae:b5:85:b4:d5:a0:04:e5:3c:4b:78:09:ba:d7:
74:8f:9d:39:3f:20:9a:da:c1:d8:04:98:ad:9c:56:6a:d2:3f:
6a:42:61:c7:7c:f3:d4:d0:44:d8:b0:ad:60:0b:11:9b:d5:dd:
8b:20:66:d3:6d:7d:f3:f2:69:04:be:92:bb:93:05:0c:a0:37:
6b:4a:b8:23:ab:30:73:cb:92:52:0d:78:00:82:b7:e3:8a:62:
04:d8:af:e5:6e:24:48:f0:99:14:a7:ff:c6:d9:12:54:d1:e3:
72:69:2a:bb:15:6e:2a:cd:4f:34:14:96:da:82:b5:bc:10:3f:
6a:fb:af:7f:7c:3d:40:f0:2f:4c:da:fa:9f:0a:93:7d:c0:d0:
18:37:1f:90:eb:a9:45:aa:4f:88:3e:d2:96:1b:09:47:e2:b2:
82:05:47:04:f7:1b:01:8b:69:e9:b3:aa:67:b9:62:fc:1f:2b:
c3:5d:c2:9f:54:dc:16:57:d0:24:a4:aa:bb:52:04:92:94:3e:
72:71:3a:e2:ed:f6:68:da:13:d2:ef:44:7e:6f:ac:f3:0c:57:
cb:40:b5:86:67:b9:b0:d3:6a:9e:69:e9:56:b2:4f:ec:a9:a1:
7d:8d:eb:f5:51:5f:81:be:50:3c:e3:c3:10:30:5c:74:a3:e8:
99:99:f0:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:02 2025 by rpki-client