Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/ph93GRvMCZignA1z9O3AaZrfbCk.roa
File: ph93GRvMCZignA1z9O3AaZrfbCk.roa (raw, json)
Hash identifier: nudmwSAGwC1kQQtoC31JWpMmtKQ2NKGXrE+kEqTwfo0=
Subject key identifier: A6:1F:77:19:1B:CC:09:98:A0:9C:0D:73:F4:ED:C0:69:9A:DF:6C:29
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E5A
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ph93GRvMCZignA1z9O3AaZrfbCk.roa
Signing time: Mon 10 Feb 2025 14:03:26 +0000
ROA not before: Mon 10 Feb 2025 14:03:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 123.50.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3674 (0xe5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A61F77191BCC0998A09C0D73F4EDC0699ADF6C29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0a:4d:3b:85:69:50:a9:b6:55:56:b8:50:9a:
39:90:1e:74:8d:d7:95:32:fe:2b:15:5f:4c:26:35:
8d:7c:77:f7:4d:ba:df:3e:a2:c1:7b:ab:8d:f0:d9:
96:09:26:20:6f:db:ea:4a:d6:c0:48:ab:c3:ca:02:
f0:fd:28:3e:aa:7f:83:aa:60:21:69:ca:a9:08:fb:
d1:c0:7f:39:7c:0e:f6:de:7a:4c:bc:d6:f1:d2:bd:
32:53:c7:28:71:67:fb:33:94:dc:7d:27:fe:a8:72:
d9:bb:9f:0b:c0:a4:65:fb:6b:e0:f6:86:85:0a:6d:
ea:bf:48:a4:57:ad:fa:9b:09:16:56:75:01:6d:b9:
fd:07:66:08:e9:14:61:0a:88:7d:e1:0c:4f:17:b8:
75:6c:65:33:cb:24:d7:cb:15:35:d8:9d:68:53:bc:
5b:03:41:5a:4e:5e:22:2f:33:1f:21:9d:2b:4e:69:
d7:0a:40:d2:cb:52:9d:b2:62:18:23:75:7c:ad:4b:
58:56:d4:b3:ee:6b:63:25:9b:0f:26:04:57:d8:84:
61:b5:61:13:22:8b:6e:f6:df:e1:46:e1:b0:98:44:
93:2c:52:cb:fc:bf:d1:5c:cf:19:13:8a:8e:f6:66:
55:0b:55:0e:86:e5:3f:18:fc:a7:5a:8b:37:a9:b5:
95:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1F:77:19:1B:CC:09:98:A0:9C:0D:73:F4:ED:C0:69:9A:DF:6C:29
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ph93GRvMCZignA1z9O3AaZrfbCk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.40.0/21
Signature Algorithm: sha256WithRSAEncryption
32:cb:8e:5a:39:46:30:d6:a9:03:61:09:19:f3:43:7c:cd:84:
04:40:8d:a6:f5:e7:91:63:e9:12:5b:1f:5d:b6:63:f8:3e:7b:
7a:89:c8:24:34:ae:45:86:c0:f4:80:a3:98:e9:db:e6:09:12:
87:fe:b8:7b:96:1a:36:ea:cf:0d:4f:6c:25:fb:50:72:01:8e:
04:4d:f5:44:4b:32:69:1d:18:ea:be:04:ec:48:00:fd:8c:ee:
72:7b:0c:28:e5:4f:9c:cd:c3:64:93:d3:11:1f:7c:d8:76:01:
fa:2c:10:ec:a1:c9:d8:72:2e:dd:ea:7f:57:9c:84:fe:6d:44:
03:b9:9e:05:d5:5c:04:e1:11:f7:7e:91:4d:76:1c:1b:23:f4:
bb:11:ae:b7:f9:35:2e:55:13:66:ca:06:f9:2c:7a:22:9c:57:
30:41:bc:4a:bb:ec:6d:6a:94:41:14:0f:67:71:a5:32:03:23:
ca:f9:43:10:ef:9f:3e:ad:a7:ef:04:ff:29:b7:1a:bb:d8:72:
ff:ae:4d:01:6c:c6:fb:12:df:25:d0:81:db:3a:8f:5d:0d:3b:
84:aa:ae:20:78:32:0d:ec:ed:51:e0:b2:2a:67:d4:a0:32:3a:
97:34:93:a0:74:db:a6:a0:eb:88:c0:88:ff:b6:b9:1f:a3:2d:
77:bf:7f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:46 2025 by rpki-client