Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/DR5zyIVZvobFnQ9MC_Eyaz3L1_E.roa
File: DR5zyIVZvobFnQ9MC_Eyaz3L1_E.roa (raw, json)
Hash identifier: wstMaYW8TBJvmisLClx7P4eHV3hOrSlCgc37KU5SWgo=
Subject key identifier: 0D:1E:73:C8:85:59:BE:86:C5:9D:0F:4C:0B:F1:32:6B:3D:CB:D7:F1
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0CF7
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/DR5zyIVZvobFnQ9MC_Eyaz3L1_E.roa
Signing time: Mon 10 Feb 2025 14:10:20 +0000
ROA not before: Mon 10 Feb 2025 14:10:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 101.0.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3319 (0xcf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Feb 10 14:10:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0D1E73C88559BE86C59D0F4C0BF1326B3DCBD7F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ff:9d:31:77:27:ad:35:7a:3e:ef:5c:ee:8c:
ac:9d:5a:2f:12:ec:15:48:c2:66:7e:68:0e:99:ba:
14:86:7f:93:35:8d:30:3a:0e:56:a7:50:f3:e2:84:
49:0a:77:59:5b:3f:e4:69:3d:ee:50:6d:ed:2e:23:
a9:51:00:04:c2:96:2b:fc:21:ee:99:d8:6c:ec:e9:
90:d1:bb:c2:49:06:19:c5:4e:32:56:8d:cd:8a:32:
e7:cc:70:da:0c:f8:aa:84:86:e4:ec:5a:7f:40:1c:
6a:50:16:68:63:de:58:a9:28:50:ca:28:e4:84:3c:
c9:a0:0f:d4:17:84:1d:fe:a9:dd:d6:c1:c7:e6:79:
d4:0c:1b:c5:a3:b7:a8:39:2f:1a:eb:1f:d6:3c:82:
01:db:42:ac:62:f0:c4:54:b2:a0:5d:a3:f3:ab:04:
e2:70:29:28:0c:c6:64:aa:50:99:06:a4:7e:ce:2c:
df:6f:24:c9:92:f1:c2:eb:27:70:70:8f:5a:c1:a6:
e1:e7:22:41:2b:7f:cc:57:77:9f:6b:83:0d:91:4b:
59:b6:db:8e:f9:84:d7:5d:11:1c:93:52:23:ae:9f:
cc:71:3c:fe:2e:e3:16:81:01:53:07:f3:67:b9:45:
d8:11:9d:67:14:4c:84:a7:49:59:e3:10:0b:4a:bf:
fd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:1E:73:C8:85:59:BE:86:C5:9D:0F:4C:0B:F1:32:6B:3D:CB:D7:F1
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/DR5zyIVZvobFnQ9MC_Eyaz3L1_E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.240.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:3b:83:dc:66:77:3f:5b:47:20:66:87:ac:f7:6f:a8:77:cf:
67:ff:c0:73:b8:5d:59:1c:4c:96:2a:db:1e:47:c6:b8:88:56:
ee:6f:ac:de:14:ca:8a:b6:2c:f9:51:e7:0a:ad:e6:b4:4c:04:
a4:c6:23:35:bd:a4:da:10:92:99:7d:e7:8b:18:83:92:c2:d5:
dc:1e:ed:b1:98:37:a8:48:4c:2b:56:c7:8e:1d:d6:2a:cb:a5:
b9:cc:6e:a2:6e:65:e8:87:61:3b:ce:f1:e1:76:45:5f:03:17:
c5:04:d4:1f:a3:40:99:0a:dd:08:85:ce:24:ef:3e:6e:ed:39:
1b:2e:39:c8:80:0d:41:08:53:9c:01:59:81:76:90:e6:06:4a:
14:ac:51:2f:ea:be:95:3d:93:fb:06:1f:54:8a:05:5e:71:0c:
1e:88:f8:0b:15:3d:ec:09:c8:ae:92:2f:99:e5:1c:92:ed:da:
8e:26:1f:dc:84:c7:4b:ee:6b:f6:48:d8:bf:ef:8f:34:92:f9:
a4:c9:cb:09:a2:e1:1a:f4:10:63:b0:95:53:69:54:1a:d6:5d:
f9:da:00:ce:d7:80:b5:83:74:6f:ea:46:57:54:ae:23:4d:88:
10:01:57:44:e6:0a:00:99:8d:b4:ad:78:46:c9:3f:46:a1:0b:
20:0b:e5:16
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:02:16 2025 by rpki-client