Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/t4hsWTcaapV3FfaYTT6SDlj-BPw.roa
File: t4hsWTcaapV3FfaYTT6SDlj-BPw.roa (raw, json)
Hash identifier: 2mVXJpk7hCWU62gxjcq0BJum9hhazrRGKy8A75O+eIU=
Subject key identifier: B7:88:6C:59:37:1A:6A:95:77:15:F6:98:4D:3E:92:0E:58:FE:04:FC
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0E57
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/t4hsWTcaapV3FfaYTT6SDlj-BPw.roa
Signing time: Mon 10 Feb 2025 14:03:26 +0000
ROA not before: Mon 10 Feb 2025 14:03:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18429
IP address blocks: 124.155.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3671 (0xe57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Feb 10 14:03:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B7886C59371A6A957715F6984D3E920E58FE04FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b8:c7:0a:85:79:66:10:64:d2:27:15:9b:1a:
ee:f6:3a:57:3a:7c:cb:69:3c:99:e2:db:ba:c6:ec:
36:29:2a:75:6f:26:a4:74:99:62:e4:90:7b:0c:4c:
58:52:0c:a9:de:21:b6:a4:bc:1d:23:cf:fe:ef:f1:
c0:2f:b4:4d:cd:5e:a2:39:16:09:c5:19:3c:4c:7e:
13:df:07:a8:85:cc:fc:74:60:ec:3c:42:51:58:1c:
9a:64:e9:5e:e4:7f:9a:c9:69:d2:ab:ed:29:ae:97:
1a:8f:e9:01:9e:62:1d:ee:ab:7a:b4:ad:47:89:07:
4d:01:8b:53:22:21:59:d9:6a:90:bb:4e:db:05:4e:
49:0a:7c:66:a6:62:ef:b3:1b:b2:88:93:52:f9:ae:
13:31:19:3c:ef:33:69:d9:62:5d:38:ee:be:4e:99:
6b:cc:a3:c5:43:86:f8:8f:a2:02:28:cf:c1:99:c9:
dd:70:37:3a:c2:09:ed:fc:62:70:1c:09:9b:d3:2a:
a9:89:45:e8:24:46:54:7a:c4:f4:d7:3d:92:6c:6d:
5c:3a:02:41:86:82:65:57:cc:e3:2b:2d:1d:58:c9:
41:16:4d:e5:fd:7c:80:ce:04:08:e5:c1:11:26:61:
4e:61:48:44:f4:26:4f:5f:7b:d8:6f:13:4d:d6:07:
66:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:88:6C:59:37:1A:6A:95:77:15:F6:98:4D:3E:92:0E:58:FE:04:FC
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/t4hsWTcaapV3FfaYTT6SDlj-BPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.160.0/19
Signature Algorithm: sha256WithRSAEncryption
4b:8b:28:ab:5c:8d:7a:9c:4c:32:58:42:c0:1e:a3:7b:e1:eb:
c6:43:f6:d6:8b:15:f1:95:fa:2b:ad:e2:0b:48:25:87:3d:6e:
a1:9f:42:b0:31:2b:46:fe:4a:b9:63:8c:1c:8a:05:62:18:4c:
dd:25:40:ae:69:96:f7:c9:2d:0b:76:42:8e:fc:1b:73:ae:24:
bc:77:39:3c:bf:37:27:a3:4c:69:70:fb:a7:6d:50:db:9b:73:
cd:61:36:04:ba:fa:ff:6f:39:83:97:85:a8:c4:cd:66:fe:4d:
f5:e5:eb:fe:17:c9:bc:5e:75:10:e4:cf:d8:91:99:0a:27:ff:
dc:03:d6:7a:a1:69:d3:51:5c:c5:30:b9:f3:77:6a:8c:d2:36:
f7:78:58:d0:01:3c:1b:a2:c8:21:ed:96:52:d2:6c:19:37:28:
36:f3:74:85:5f:3a:d2:d8:b3:22:a2:61:65:76:48:38:d8:10:
de:a5:2f:81:cf:23:71:25:e2:c4:72:5d:4b:6a:10:63:86:12:
f1:63:a7:28:1a:bd:24:e6:82:25:0f:ac:d4:60:db:a6:1e:03:
2d:5e:b0:79:d4:2e:4c:6e:50:d6:d7:60:fa:fc:34:4f:8d:09:
b0:83:32:e8:5b:89:7d:40:f3:76:f4:fb:6c:87:a1:18:e9:6b:
a4:cb:66:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:12 2025 by rpki-client