Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ip1xXBUU2Yel8_FfS-ADzhHG3T0.roa
File: ip1xXBUU2Yel8_FfS-ADzhHG3T0.roa (raw, json)
Hash identifier: BeeAavcJicDPH5FPFQ77TY+cXAfplqBR8JIEYsHMKfU=
Subject key identifier: 8A:9D:71:5C:15:14:D9:87:A5:F3:F1:5F:4B:E0:03:CE:11:C6:DD:3D
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0CCE
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ip1xXBUU2Yel8_FfS-ADzhHG3T0.roa
Signing time: Mon 10 Feb 2025 14:12:56 +0000
ROA not before: Mon 10 Feb 2025 14:12:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.58.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3278 (0xcce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Feb 10 14:12:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8A9D715C1514D987A5F3F15F4BE003CE11C6DD3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:28:9b:c8:9e:32:fd:9d:c9:fe:55:66:99:
f2:da:25:dd:92:d6:43:d4:1b:cd:bb:74:78:1e:38:
fe:2f:38:19:f3:0a:68:91:89:5d:3f:25:1c:80:b9:
99:81:94:ad:1f:62:00:86:d1:91:3c:4c:6f:fc:1f:
6f:b2:24:ff:89:ef:7b:8a:51:0c:5e:0b:a6:78:3b:
b1:ea:02:75:e1:cc:a4:4f:4f:f5:91:34:68:40:66:
23:3f:4c:7e:81:97:de:d6:41:93:92:e9:d1:98:2c:
e2:f5:26:e1:00:27:63:56:7c:42:96:2b:21:33:5a:
49:21:51:35:08:e9:b4:f2:92:9d:53:fd:98:de:2d:
de:59:bf:9b:1e:90:9b:f9:82:8b:72:50:ed:50:11:
c7:9c:ba:e4:f7:2c:ce:bb:db:b4:dd:da:14:81:3e:
5a:4f:87:45:94:cf:48:1b:93:4d:d3:e2:e0:30:75:
cb:de:02:b4:3e:c3:7a:38:e5:1e:a6:c4:1e:68:7c:
9f:7b:04:b9:9b:c0:60:20:89:eb:65:56:bd:6c:8d:
a4:a5:a2:ee:b7:37:9f:a2:7c:59:90:d4:4e:c0:ea:
1c:87:b1:f6:37:13:38:28:a4:f1:26:e2:f8:7a:93:
27:46:a3:6c:a7:f0:69:a7:46:ec:39:2f:83:54:f7:
2a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9D:71:5C:15:14:D9:87:A5:F3:F1:5F:4B:E0:03:CE:11:C6:DD:3D
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/ip1xXBUU2Yel8_FfS-ADzhHG3T0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.48.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:5a:ac:5a:6a:4c:f2:f6:a2:b6:0a:ff:69:f2:6d:cc:01:4d:
ce:cf:ff:1b:3a:57:1c:79:ea:73:ae:f8:25:8a:8b:6c:90:28:
ec:42:53:73:e7:64:e3:b7:df:9a:fa:32:aa:31:36:e5:3f:15:
10:72:5c:17:7f:9b:64:ff:f6:55:f2:b0:67:03:77:66:38:17:
87:a3:2f:9e:9a:2c:19:78:40:88:12:83:47:da:0d:f7:1e:09:
36:32:80:de:84:36:a2:fc:cf:a4:9a:26:00:8e:a0:9c:33:49:
b1:7e:6d:5e:76:ee:c4:4c:7e:b2:b3:34:2e:1b:e8:8d:b7:2c:
55:24:40:5a:32:74:69:d3:eb:b6:b6:d6:49:76:01:83:0a:a9:
bc:c3:37:c2:a6:e1:37:5a:2f:e0:e7:57:94:5c:49:f9:d5:12:
b2:c2:06:35:d7:ce:5f:23:3d:4c:28:64:c4:a2:c8:03:51:4a:
0e:66:5b:87:fd:a5:54:bb:a9:41:b0:d5:c5:a6:11:74:cc:50:
8f:11:fc:2e:6f:a8:62:3e:e7:e2:17:e2:a8:35:13:41:c6:aa:
da:20:ae:e9:b5:bc:9d:b4:27:1e:51:83:b5:b2:11:b4:7a:1a:
94:3a:8d:df:1a:f6:d7:e9:6d:55:e0:d6:24:f8:bc:af:bc:45:
9d:5e:b8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:39:37 2025 by rpki-client