Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/AyqVTK5sCXCxL-g_fiRojS8T23Q.roa
File: AyqVTK5sCXCxL-g_fiRojS8T23Q.roa (raw, json)
Hash identifier: nKV3fCV+XXEP0Mz0F73ZheLFtHo693lQ5l8OKFZYKUA=
Subject key identifier: 03:2A:95:4C:AE:6C:09:70:B1:2F:E8:3F:7E:24:68:8D:2F:13:DB:74
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0CF9
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/AyqVTK5sCXCxL-g_fiRojS8T23Q.roa
Signing time: Mon 10 Feb 2025 14:10:21 +0000
ROA not before: Mon 10 Feb 2025 14:10:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 101.0.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3321 (0xcf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Feb 10 14:10:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=032A954CAE6C0970B12FE83F7E24688D2F13DB74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:55:a6:8e:6b:0f:33:bb:f2:c8:fd:40:38:
80:a8:4c:0b:f0:44:c6:ea:b0:e6:fb:88:64:c2:06:
e9:8c:78:b4:1c:c7:58:52:7a:53:dc:af:aa:6a:14:
7a:cf:9d:ff:1a:33:c7:7d:4a:86:86:74:4c:ae:73:
39:9f:6b:a3:d5:db:b5:67:11:66:66:b5:93:70:1f:
d8:fe:81:90:f7:6d:f7:d7:6e:38:3d:57:0a:f4:73:
50:70:a6:8f:21:66:49:98:ae:cf:59:1e:a1:16:94:
55:af:2a:7f:41:e6:da:5a:62:30:ea:14:e0:2e:bf:
8c:30:be:58:ef:22:f1:76:a7:be:03:34:01:ec:a9:
ec:d2:21:9b:96:24:45:1e:d2:d4:40:31:2d:99:d9:
c1:39:86:1c:71:c7:66:22:bc:96:cc:af:59:07:3e:
0c:bb:ef:b3:e7:84:61:db:05:0d:2d:1e:e2:8e:32:
69:ed:ac:58:72:b8:bf:83:07:41:61:81:75:f1:e9:
44:68:4a:08:66:13:4e:2a:77:30:3a:52:a1:be:18:
b9:e5:c6:2d:b0:3a:9c:4d:ed:59:f3:c9:d9:3f:cb:
50:63:b3:38:31:83:c2:c9:20:1b:db:61:59:3f:3b:
a3:80:da:47:7f:ce:34:db:0c:e8:bd:ce:e8:db:bc:
f1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2A:95:4C:AE:6C:09:70:B1:2F:E8:3F:7E:24:68:8D:2F:13:DB:74
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/AyqVTK5sCXCxL-g_fiRojS8T23Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.224.0/19
Signature Algorithm: sha256WithRSAEncryption
bf:e4:dd:61:39:f4:96:b2:f2:d4:dc:70:65:7f:ef:a7:60:9b:
ee:1e:35:8f:f6:3a:15:4e:41:2b:e6:15:de:69:a1:77:5b:a4:
38:86:05:0f:6b:e0:44:b5:7c:7d:ef:8e:0b:bd:43:7e:c9:80:
79:ed:a2:40:1f:39:d0:61:ca:17:e1:0f:5a:20:8b:20:2f:e8:
bd:f1:1d:1b:64:54:62:e2:a0:10:d4:69:24:25:4c:08:e7:f4:
3a:0b:2b:af:27:13:c5:9b:f0:5d:f6:b0:ab:b5:02:42:cb:c6:
d5:f7:b5:b9:73:33:eb:8e:19:d7:d5:c9:94:bc:05:31:ea:01:
ff:be:f4:9e:d4:ff:50:63:b8:fc:70:87:21:42:55:e5:c0:8e:
6d:ef:68:6f:0c:e6:bb:a6:d2:5c:4f:e6:aa:31:f0:e2:ba:67:
dc:70:73:e8:e1:09:ec:4e:ef:2c:4f:2c:fb:ae:d4:ef:28:34:
40:9f:45:b1:00:07:f9:8e:4a:aa:d8:e4:e8:d4:c7:d0:b7:99:
d3:3e:41:b5:ef:5e:ac:5b:4a:95:bf:fd:18:a8:b7:a9:a9:2e:
c7:d7:cf:fe:8a:d9:57:6e:e6:a9:be:0d:9a:18:20:8f:a8:f8:
bd:e3:52:7e:ba:bc:5a:10:02:31:2d:65:5a:25:71:e6:25:a7:
8d:74:97:c0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:27:37 2025 by rpki-client