Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/IpszeaFR5SMgJhIWLwWkcaWQiC0.roa
File: IpszeaFR5SMgJhIWLwWkcaWQiC0.roa (raw, json)
Hash identifier: CRAKrNRlzdyp9ZZ1PZgbTfaOasHd16wUiu2h8rbqp60=
Subject key identifier: 22:9B:33:79:A1:51:E5:23:20:26:12:16:2F:05:A4:71:A5:90:88:2D
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0DAA
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/IpszeaFR5SMgJhIWLwWkcaWQiC0.roa
Signing time: Wed 12 Mar 2025 10:05:19 +0000
ROA not before: Wed 12 Mar 2025 10:05:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 61.65.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3498 (0xdaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Mar 12 10:05:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=229B3379A151E523202612162F05A471A590882D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fd:3d:eb:31:c0:29:a3:91:8d:ee:6b:3d:6d:
dc:f0:b3:ac:ab:5d:9a:64:2f:a0:ae:94:59:06:2b:
37:b7:ee:68:c4:59:9e:96:50:75:2c:ab:50:73:20:
8d:da:f8:dd:5e:fa:c6:22:3e:ee:eb:24:33:59:d0:
66:c6:a9:12:6f:e6:8b:94:41:de:7a:f2:07:36:38:
7e:d6:87:fa:d0:b2:10:17:fa:2d:da:ec:b9:43:4a:
7d:42:91:7f:74:8c:97:f7:9e:1f:d8:41:43:62:9d:
45:e8:a6:88:96:af:fa:f1:40:e0:fa:9a:ce:f0:d0:
49:d7:4f:1e:98:89:f7:cc:16:ac:48:28:cf:28:98:
b8:1f:64:4a:84:fb:f4:f1:e1:67:4b:ed:42:a6:d7:
45:d6:f8:dc:83:02:d4:01:be:89:ad:7e:30:82:df:
0b:eb:23:67:91:6f:83:04:a9:ba:95:ff:bc:f2:ce:
f9:b4:0e:df:34:d6:1b:6e:a2:12:05:92:c9:8d:61:
9c:b2:66:27:39:af:9a:04:c0:53:25:52:e1:ee:5c:
5a:b8:af:bd:46:f3:25:5d:95:23:5e:f6:b7:16:97:
68:4d:11:d1:5a:89:e9:04:32:88:7d:5d:55:de:c5:
29:63:d0:6d:ec:1f:12:9d:ca:b0:cb:76:86:7a:86:
78:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:9B:33:79:A1:51:E5:23:20:26:12:16:2F:05:A4:71:A5:90:88:2D
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/IpszeaFR5SMgJhIWLwWkcaWQiC0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.232.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:f0:a4:23:70:ba:58:06:4b:0e:4c:b0:c0:ad:c6:50:e5:23:
d7:11:18:4f:6a:f3:0f:86:ea:7e:22:19:ba:02:12:eb:b3:8e:
08:69:79:4d:4d:ad:cb:41:ee:5e:e6:da:24:44:c6:03:16:b7:
c0:76:ee:52:ec:d8:da:dd:55:85:e7:0e:1f:bd:67:3d:a8:f2:
4f:a0:1d:5d:3f:ba:ea:f1:f0:9f:ae:0b:7f:66:05:bb:8f:de:
87:4d:8a:87:fe:64:ba:7f:63:82:2e:d7:85:b7:ad:18:01:a2:
c7:c4:5c:e2:f2:44:fc:2a:e6:25:04:bc:84:c1:a3:8a:44:14:
f1:6e:76:09:13:dc:f5:3c:68:7c:9d:a3:ea:40:5d:f3:a3:77:
b0:7e:75:5b:f1:3b:6d:d1:33:14:67:ee:82:d9:f6:07:97:dd:
96:6b:e4:1c:3e:bf:53:13:9c:51:7f:dc:74:64:a7:04:9d:c0:
36:c5:18:1b:26:6b:b8:99:f7:5c:a5:44:2d:3b:31:6f:79:3d:
98:2d:14:cd:83:a3:47:48:55:46:78:fa:18:f6:f5:bb:b9:02:
25:31:e5:88:f4:7e:9e:a7:97:df:e9:2a:34:e4:d6:01:da:60:
fd:23:c2:f5:0d:c1:0f:ee:3f:9f:96:8d:92:a4:67:64:4b:66:
11:cb:2a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:59:22 2025 by rpki-client