Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/kkrXX3yXOO76DKzmEtEwitW-Q8w.roa
File: kkrXX3yXOO76DKzmEtEwitW-Q8w.roa (raw, json)
Hash identifier: AKkuVhQIUncDyUDAoi0qnwGMuNC8rZyeqS0eVpBsg8o=
Subject key identifier: 92:4A:D7:5F:7C:97:38:EE:FA:0C:AC:E6:12:D1:30:8A:D5:BE:43:CC
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E45
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/kkrXX3yXOO76DKzmEtEwitW-Q8w.roa
Signing time: Mon 10 Feb 2025 14:03:22 +0000
ROA not before: Mon 10 Feb 2025 14:03:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 123.50.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3653 (0xe45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=924AD75F7C9738EEFA0CACE612D1308AD5BE43CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bd:31:e0:95:0c:8d:4c:2f:47:3e:37:0d:81:
18:28:34:30:fb:09:0c:26:d9:02:8b:78:53:9e:c8:
99:1e:55:44:09:c5:88:c2:17:7b:e4:1a:7e:a3:31:
03:de:03:f8:c6:80:9a:cb:6f:b7:33:75:fa:32:76:
81:0d:1c:7d:c2:27:eb:6a:50:b8:7d:fa:06:16:db:
a7:99:15:40:cf:16:0e:5b:85:e9:5c:07:df:7d:5d:
5e:bd:30:7f:7a:8b:e7:9d:6a:74:41:b1:ba:fc:ad:
e1:d3:de:92:89:19:6c:0d:14:ec:71:54:27:79:74:
44:23:42:08:38:5c:69:26:f4:46:19:e2:51:99:88:
16:15:2a:96:bd:df:16:4d:ae:7c:ae:9c:85:b7:a1:
5d:7f:8b:f7:68:7b:56:59:c0:59:96:63:f0:a8:5c:
22:e6:f1:3d:8e:ee:74:26:f3:2d:c9:6f:1b:1a:2b:
9b:14:1d:b7:2c:49:b9:a0:dd:01:31:86:4b:f7:dc:
b7:fb:96:ce:5b:a5:62:a2:8c:4d:0a:4f:f4:55:8a:
c2:71:67:44:28:1f:17:d1:11:c3:82:c1:8c:ba:c6:
b7:9c:2c:0b:97:9a:c2:a8:64:d3:9e:8d:3d:06:4a:
9b:76:51:1d:22:0f:62:1b:ab:42:12:db:6b:b4:41:
52:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:4A:D7:5F:7C:97:38:EE:FA:0C:AC:E6:12:D1:30:8A:D5:BE:43:CC
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/kkrXX3yXOO76DKzmEtEwitW-Q8w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/19
Signature Algorithm: sha256WithRSAEncryption
41:61:0a:41:af:7c:8f:83:1f:ba:dd:9b:1c:ce:52:ca:2a:3e:
32:f0:24:a4:36:df:14:46:99:3d:c6:f5:fe:5b:10:7c:9f:be:
6e:42:1b:1c:84:66:aa:80:6c:72:cb:4f:5c:37:8e:7b:a6:85:
e2:61:1f:27:b2:3e:19:2f:71:f2:e7:2a:10:be:52:c3:d2:f2:
75:8d:65:f1:6b:29:3b:3d:8d:ed:ba:6c:8b:ca:83:67:d8:3d:
a6:16:30:f8:cc:66:bf:ec:d5:35:30:f3:9f:c8:5a:c0:7b:e4:
4d:93:13:3c:6f:6f:45:33:a6:78:13:2f:1b:5c:8b:f8:49:bc:
0b:d3:79:63:05:d9:0b:40:4e:88:34:09:da:ef:ea:c8:91:b1:
b7:3a:4f:b0:13:b5:ea:d4:e5:65:e2:78:1e:52:1b:9f:a6:7e:
1c:1f:ac:cc:82:f8:67:a9:b7:14:a3:24:81:07:15:ce:5c:a8:
26:b4:44:8a:35:d3:d8:b6:f1:3b:2d:bb:c5:cd:e7:89:42:22:
c5:ad:1a:51:ce:d0:ca:c4:28:80:77:f1:36:46:6f:7a:4c:e2:
7f:87:10:9b:57:58:84:77:aa:6e:a2:8c:0b:8b:ec:a4:24:8e:
75:6d:97:30:e7:03:a7:b0:a6:b3:3e:6c:07:f9:b6:ef:68:03:
f6:0f:75:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:44 2025 by rpki-client