Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/jfQOrfgMM3tdemroxNEJwjpqSg4.roa
File: jfQOrfgMM3tdemroxNEJwjpqSg4.roa (raw, json)
Hash identifier: nrC204uMqoEiElzoVPOqMDVwCghthEG2PGlkbS1MKFs=
Subject key identifier: 8D:F4:0E:AD:F8:0C:33:7B:5D:7A:6A:E8:C4:D1:09:C2:3A:6A:4A:0E
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E3F
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/jfQOrfgMM3tdemroxNEJwjpqSg4.roa
Signing time: Mon 10 Feb 2025 14:03:20 +0000
ROA not before: Mon 10 Feb 2025 14:03:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 124.155.184.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3647 (0xe3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8DF40EADF80C337B5D7A6AE8C4D109C23A6A4A0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e4:02:1f:71:dd:97:ed:fc:00:e0:65:a1:ab:
ae:e7:6b:16:72:81:a1:7f:7c:de:bf:a9:2d:0e:3f:
19:91:08:5b:cf:c8:f2:27:07:38:15:c5:b6:02:5d:
5d:18:83:7e:9a:be:e9:a6:ba:53:b3:e7:55:54:a1:
9d:c5:70:61:bd:f6:ea:15:ad:36:db:a5:c6:08:35:
67:c4:87:3f:58:7f:27:34:94:96:eb:92:17:bc:47:
45:cf:4c:09:d0:a9:92:df:21:85:ee:68:a7:f1:3a:
0b:20:1e:2e:8c:98:b8:64:44:0e:97:d6:4f:d0:be:
b3:fa:81:89:c1:ea:22:68:f5:1e:fd:57:fe:f3:dc:
b5:b0:e3:32:1e:2f:f9:96:43:15:7a:f0:0a:d6:db:
7e:2e:e2:69:80:71:8d:3d:07:d0:97:a9:ef:61:ab:
32:46:3f:9c:11:f6:a8:a9:45:51:c3:32:ad:3a:f4:
6e:57:d0:34:ab:14:b4:44:02:66:5c:f7:e8:0f:29:
41:43:d0:89:cd:88:39:14:14:4e:90:a6:03:88:ba:
7b:71:c9:62:d8:e1:0f:63:93:3d:ee:19:2e:de:a7:
31:fb:4c:e9:f0:9b:06:e4:c8:18:aa:fc:bf:e2:a8:
ca:fd:32:0b:91:8d:68:d5:ab:cf:2d:1d:2f:ad:9f:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F4:0E:AD:F8:0C:33:7B:5D:7A:6A:E8:C4:D1:09:C2:3A:6A:4A:0E
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/jfQOrfgMM3tdemroxNEJwjpqSg4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.184.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:2e:a1:0a:b6:44:33:4d:53:7d:2f:a8:c4:41:f0:90:ed:f3:
f7:de:b2:3a:6e:ac:11:87:98:2c:e4:93:17:79:dc:fd:65:a0:
e3:49:16:49:74:ca:bc:47:5a:5b:2c:d4:ca:53:d7:f7:90:02:
1e:eb:e4:a9:12:39:bd:1d:b5:a5:7b:8a:84:7d:7f:ea:82:34:
9d:d9:3c:79:30:19:7f:3e:45:b9:aa:86:28:12:a9:9a:f6:52:
c1:f1:c0:ff:90:7f:ae:d4:66:34:55:fc:e8:1a:e4:64:55:7c:
3d:ef:be:4e:bf:5f:63:8e:74:f9:17:9e:e7:5a:3b:fe:78:bf:
fe:24:22:49:2b:3a:94:be:50:75:05:6c:f1:35:e3:58:fc:cc:
a8:3f:c3:9d:6d:fc:9c:61:5f:8b:78:f3:7b:6c:41:91:c8:f4:
95:df:c1:07:0d:9d:08:b4:b6:58:bd:a3:d1:7a:73:f3:bf:05:
e9:ed:c7:a6:06:1a:b5:69:5b:74:85:10:c2:64:4e:ff:e4:45:
60:63:09:d6:75:fe:5f:af:94:b5:10:1b:57:f3:56:f8:e7:15:
6c:7e:06:c5:fb:ba:f0:0d:f3:83:60:c0:4a:e3:69:c8:2e:cc:
43:4b:30:ea:8a:44:be:7b:93:7d:42:2e:90:ff:21:19:6b:9c:
02:81:dd:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:28 2025 by rpki-client