Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/If5N9U_X3ZF0VSz2KOhOu2Qko_A.roa
File: If5N9U_X3ZF0VSz2KOhOu2Qko_A.roa (raw, json)
Hash identifier: b8iqswTvPIzI4c5t+vdBn2lrcC3uOoPIdIVqTxhUXeQ=
Subject key identifier: 21:FE:4D:F5:4F:D7:DD:91:74:55:2C:F6:28:E8:4E:BB:64:24:A3:F0
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E6A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/If5N9U_X3ZF0VSz2KOhOu2Qko_A.roa
Signing time: Mon 10 Feb 2025 14:03:30 +0000
ROA not before: Mon 10 Feb 2025 14:03:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 123.50.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3690 (0xe6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=21FE4DF54FD7DD9174552CF628E84EBB6424A3F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b2:0c:ac:19:2b:68:b6:c6:ab:19:e9:64:44:
84:7b:57:b6:21:69:43:c8:6e:74:96:7e:01:68:4b:
6e:b5:56:4a:dd:ef:27:39:2d:eb:d8:c1:e0:ac:c4:
80:11:f1:93:94:e7:ec:2d:03:04:d0:2a:54:09:85:
d2:c3:de:f4:8c:41:ee:a7:12:5a:5e:32:e0:92:a9:
d8:a8:35:3c:fa:fc:e1:84:a3:0f:ae:37:8a:b2:62:
8d:1e:c0:60:d7:30:6a:4f:6f:55:8a:42:ae:33:cb:
50:ba:91:52:19:70:3e:88:c4:8e:f8:9f:66:5c:f9:
ba:54:32:62:7c:7a:59:a0:ed:6c:6f:5d:06:b6:ba:
9d:af:bd:4b:dd:01:e8:90:4d:c5:c0:dd:bb:fa:1f:
cc:f0:92:45:6d:7f:1a:4d:af:39:74:2c:d1:ad:bd:
43:24:b6:d2:e7:32:60:bf:a5:cc:ca:c2:92:c2:0a:
cd:bd:63:8d:ec:7f:9f:f2:10:19:8b:9f:6d:62:81:
ec:f1:a2:80:34:6b:e3:2b:29:c4:7e:d4:0f:43:11:
ee:93:88:66:4f:86:83:04:2a:a5:4b:70:4e:a2:56:
5e:5e:c3:21:15:98:d3:b0:3d:57:32:2e:10:45:1c:
fb:19:3f:f4:55:9e:a2:e2:d3:76:fa:74:e1:98:c2:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FE:4D:F5:4F:D7:DD:91:74:55:2C:F6:28:E8:4E:BB:64:24:A3:F0
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/If5N9U_X3ZF0VSz2KOhOu2Qko_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f9:94:40:e1:ae:12:5c:74:50:b5:68:63:51:93:40:78:fe:
7e:16:fe:2d:b6:9d:78:a0:01:80:16:ae:3f:ca:f6:ab:95:45:
60:41:69:e2:79:fe:e0:90:98:53:6c:38:62:9e:5c:04:47:ae:
1d:86:05:67:64:e1:4e:54:30:5b:66:4e:92:75:9f:90:21:e8:
e4:06:50:1a:8b:81:51:ae:d6:b6:de:27:7b:5d:8f:51:20:18:
1a:ac:12:06:ae:96:79:be:8a:ad:82:23:8e:90:e6:8a:04:91:
37:c0:49:59:09:92:fe:12:08:34:57:fc:cc:e8:b5:0f:2b:99:
19:4a:ee:31:b0:7a:7d:80:d0:d2:99:de:05:e1:cd:70:40:e8:
90:ea:70:dd:73:da:ff:67:3f:44:74:4a:c1:2a:ed:68:01:70:
7e:2a:00:d7:42:7a:64:2c:78:76:f6:2a:56:64:da:16:bb:99:
75:13:2c:53:b6:a2:9d:c0:81:e0:c0:89:d6:7b:4a:e9:3f:dd:
f3:9c:14:93:6e:20:a4:e1:84:77:e3:ba:b1:f8:37:33:2c:9e:
c3:ba:20:3a:7c:37:ba:e6:f3:97:0e:9b:75:3e:dc:8a:ee:d6:
b2:13:80:ac:d3:d6:d5:e1:b3:09:5e:02:be:53:75:29:7d:5e:
5c:28:a8:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:26 2025 by rpki-client