Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/L5ke1Qt8IXWGTWhNvJUfk30j2uU.roa
File: L5ke1Qt8IXWGTWhNvJUfk30j2uU.roa (raw, json)
Hash identifier: Ww0A5qjjI1i3z5eW7tAG8nkfw1oHFnGM1cnSGyqouk0=
Subject key identifier: 2F:99:1E:D5:0B:7C:21:75:86:4D:68:4D:BC:95:1F:93:7D:23:DA:E5
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E48
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/L5ke1Qt8IXWGTWhNvJUfk30j2uU.roa
Signing time: Mon 10 Feb 2025 14:03:22 +0000
ROA not before: Mon 10 Feb 2025 14:03:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 124.155.168.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3656 (0xe48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2F991ED50B7C2175864D684DBC951F937D23DAE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:44:05:e0:7c:a9:1e:17:83:4e:bf:bc:be:b9:
1c:2f:b6:01:68:ed:2d:a9:a0:bf:07:85:3c:6c:84:
87:83:f6:2d:f9:40:09:e7:20:a5:bd:07:c7:ef:47:
28:cb:2f:05:f8:68:0f:e2:90:23:94:bd:e6:3b:d1:
d7:d5:29:41:d6:97:15:52:8f:63:ac:72:0d:4a:d5:
f0:91:1c:23:bf:a4:25:28:ff:1e:2f:fe:38:23:81:
cb:b6:32:83:84:4f:2d:0f:49:8c:86:63:c7:48:39:
d7:82:b2:c6:a1:b5:29:32:ad:e6:fa:55:4b:17:fe:
9a:19:f7:4b:70:72:ea:52:6a:2c:b8:f1:a5:a0:8c:
52:ef:5b:33:bc:5e:42:90:60:99:11:f0:8b:99:a7:
11:60:33:09:96:85:7e:ef:d8:e7:7a:47:62:e3:a3:
56:4c:96:b9:83:19:f1:db:95:a5:b5:38:8c:66:0e:
43:53:f4:26:c9:a8:b2:bd:85:df:5b:dc:88:56:75:
6d:b0:df:fe:2e:d3:c4:c6:13:df:7d:8e:ba:d4:38:
10:e5:de:1d:82:98:25:3b:6f:62:45:f9:e1:75:e2:
63:05:ca:8c:c4:40:7a:73:30:a2:da:1f:61:83:0f:
fe:1a:0b:6b:f2:ff:1a:52:7a:1e:27:9e:30:24:e4:
78:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:99:1E:D5:0B:7C:21:75:86:4D:68:4D:BC:95:1F:93:7D:23:DA:E5
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/L5ke1Qt8IXWGTWhNvJUfk30j2uU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.168.0/21
Signature Algorithm: sha256WithRSAEncryption
46:d3:0d:91:8a:bc:bc:e0:ec:5a:19:6c:52:36:47:c1:5f:c5:
b3:b1:cf:e0:9c:03:14:5c:d1:bf:8a:08:72:09:ae:09:e7:00:
f1:18:65:94:21:b3:c0:04:05:a5:93:36:55:42:fd:2e:e0:58:
eb:af:fa:cb:e6:7f:8e:98:6e:37:fa:17:24:2e:66:36:12:4d:
19:0d:51:e3:4c:70:da:ab:e7:49:2a:1f:66:3a:c2:9b:5b:2d:
46:bc:1c:99:e0:23:6b:51:82:b5:36:e3:b5:67:5c:1d:d1:69:
07:3f:4b:5e:96:da:ed:ea:0e:27:db:13:bd:65:96:c4:bd:56:
b4:e8:6c:62:01:64:89:a4:93:0a:1c:a2:3c:7a:1d:5e:ea:a2:
8e:67:e7:84:b6:a3:1c:b4:4e:3b:b3:ae:26:94:cd:f3:1c:28:
3b:52:8a:d5:97:db:e6:e0:03:78:05:54:16:29:f2:a9:ae:a3:
83:ae:d0:60:ce:dc:cc:f7:a2:f0:99:e6:89:aa:40:17:78:91:
e4:f7:ee:3a:f8:8a:10:2c:95:6d:d6:33:55:5d:bb:db:54:d1:
1f:6c:ca:0c:84:25:07:22:86:6c:e8:b2:e8:0a:21:94:78:f4:
a4:ea:23:d5:38:e7:8f:31:c4:24:00:46:82:0c:14:34:41:c0:
50:64:41:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:32 2025 by rpki-client