Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/cEHps0TcUpDIMjzO_rzqZ_-hzW8.roa
File: cEHps0TcUpDIMjzO_rzqZ_-hzW8.roa (raw, json)
Hash identifier: OseB2off4c3wRIBuCqY37JELeYkPtyjTdRteWAQjNaQ=
Subject key identifier: 70:41:E9:B3:44:DC:52:90:C8:32:3C:CE:FE:BC:EA:67:FF:A1:CD:6F
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E4F
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/cEHps0TcUpDIMjzO_rzqZ_-hzW8.roa
Signing time: Mon 10 Feb 2025 14:03:24 +0000
ROA not before: Mon 10 Feb 2025 14:03:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 61.57.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3663 (0xe4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7041E9B344DC5290C8323CCEFEBCEA67FFA1CD6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:71:c8:21:a1:08:f1:13:86:fa:d3:ac:e9:9d:
9b:04:5b:f5:84:0c:8c:cd:9d:14:f6:e6:46:86:40:
ce:04:2e:bf:51:a3:8e:05:84:49:8e:6d:5d:6d:62:
8a:21:d2:14:97:ac:09:36:cd:a9:fe:5b:88:71:01:
9e:27:e6:eb:08:4a:22:8a:70:b3:a9:3b:1e:62:a5:
61:01:5b:64:42:64:83:94:11:dd:3e:25:f0:16:0b:
53:ed:41:cc:58:5b:f6:62:b3:84:07:dc:4f:5f:94:
d5:36:6c:5f:bb:c9:b1:f4:fc:58:4c:43:5b:5d:6a:
61:27:ac:b4:d6:cd:8d:39:b8:d0:c2:f2:66:10:09:
96:dd:15:2c:d1:b0:45:3a:4b:d4:97:84:43:5e:c3:
d8:6f:87:48:5b:5f:70:29:1b:6c:14:01:b9:07:ca:
ad:42:07:61:ae:a2:e7:db:78:3d:7d:57:f9:3f:61:
01:42:42:a6:cb:a2:e5:d8:20:a3:08:2b:2f:a5:90:
22:39:ae:2e:cd:11:b6:70:5d:c3:79:b8:82:ee:f0:
eb:fb:3a:84:71:74:7a:86:53:18:f7:b2:9f:3f:b5:
4f:33:ae:17:37:8a:c6:05:34:a4:5a:b1:e3:14:29:
d0:15:9c:81:f1:07:7a:13:35:0b:e1:f1:e4:12:8a:
c7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:41:E9:B3:44:DC:52:90:C8:32:3C:CE:FE:BC:EA:67:FF:A1:CD:6F
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/cEHps0TcUpDIMjzO_rzqZ_-hzW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.128.0/20
Signature Algorithm: sha256WithRSAEncryption
14:68:66:3f:ef:4a:33:79:01:f3:08:d7:c6:30:5e:c3:df:13:
1c:c4:3d:e6:05:51:89:e4:36:f6:a4:1b:0f:23:59:98:a6:8a:
a4:c0:9d:3b:f9:ab:c8:46:71:01:16:3a:12:69:b3:1c:5c:32:
53:99:8e:a5:7a:94:d4:41:13:06:94:ec:58:cc:9a:2c:29:6a:
b0:42:aa:d1:08:6d:b4:e0:7e:cf:8e:b0:e3:0f:b8:ad:61:96:
30:e7:4e:f2:0a:db:56:a5:ea:ce:d4:3d:b3:5d:08:79:7c:a4:
3f:65:8e:b3:14:84:14:a5:ec:0a:12:ee:27:14:45:e4:71:65:
85:42:d0:e1:10:8d:0b:da:54:87:f7:4d:dc:9b:e6:1a:56:2d:
42:eb:82:19:7f:bd:1a:41:68:98:3e:a2:a2:13:43:1f:e9:83:
a0:3d:d2:8c:c6:c0:bd:45:d0:4e:1e:92:88:79:db:c3:be:d9:
7e:e5:d4:a8:2d:51:5b:0c:34:65:d2:60:85:f4:04:44:63:0a:
73:01:33:3b:08:63:81:d8:9f:94:2d:e6:c0:02:c8:2e:a5:ab:
bb:96:d3:31:d8:01:d0:29:76:17:1f:60:1c:90:39:fb:a4:0f:
6c:c3:27:12:e5:36:d4:d8:46:46:e9:72:b3:84:1a:37:24:6f:
06:23:c2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:28 2025 by rpki-client