Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/KpI35hChIFDRcrRtrbnawdXhZuk.roa
File: KpI35hChIFDRcrRtrbnawdXhZuk.roa (raw, json)
Hash identifier: jROmzGsJXq5PVTd8UUNeIVPph1gQ7pzDH6fhQlxBp80=
Subject key identifier: 2A:92:37:E6:10:A1:20:50:D1:72:B4:6D:AD:B9:DA:C1:D5:E1:66:E9
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D18
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/KpI35hChIFDRcrRtrbnawdXhZuk.roa
Signing time: Mon 10 Feb 2025 14:04:33 +0000
ROA not before: Mon 10 Feb 2025 14:04:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 116.50.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3352 (0xd18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2A9237E610A12050D172B46DADB9DAC1D5E166E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:de:a0:a5:47:e6:7d:6f:b7:be:9e:3f:ef:b8:
d5:45:31:f9:97:cf:4b:1d:cb:97:64:24:53:5e:33:
2a:3f:01:63:e9:a6:ed:97:83:ef:ac:bd:b2:69:3f:
da:b0:a9:8b:28:bb:60:8d:5e:47:ac:34:57:f2:1f:
bd:14:52:20:cb:75:d0:d1:62:fd:87:cf:8b:92:3f:
8f:6a:34:39:81:c9:ba:db:1d:e7:2e:36:1e:5c:74:
61:45:b3:8e:e8:cf:61:ec:3d:85:4c:3d:7e:2f:61:
00:43:5c:86:99:b7:3b:11:dc:0c:53:4a:56:38:96:
c4:df:d8:cc:b2:84:fa:6d:6f:43:4d:e9:8f:1f:40:
4a:c2:c9:46:82:08:58:a5:81:7b:9f:d4:f8:36:8a:
48:a7:0c:c4:b2:3f:59:48:14:38:17:62:0e:69:ad:
1d:96:44:5f:1d:aa:4c:96:f8:89:7c:cb:4c:df:1a:
20:3f:35:ea:8a:84:7e:d0:0c:17:29:14:e4:16:e6:
8b:8e:cc:1d:06:89:c4:7d:dd:15:25:4d:d2:2c:7a:
44:38:0f:f7:7d:08:ff:eb:7c:64:af:72:d5:94:fd:
d5:99:09:a7:58:ac:0f:f2:d9:cb:3a:c5:c0:98:b3:
a8:fa:18:ec:ae:3c:63:60:8c:98:ac:cd:42:b3:5f:
f7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:92:37:E6:10:A1:20:50:D1:72:B4:6D:AD:B9:DA:C1:D5:E1:66:E9
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/KpI35hChIFDRcrRtrbnawdXhZuk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.41.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:4a:b9:89:6f:50:e0:2d:b5:75:44:93:ce:26:a1:ba:32:1b:
c5:fe:de:2c:4b:53:ec:d4:13:85:34:77:a4:94:e2:f4:b1:1c:
0c:14:37:6e:2e:2e:ba:27:44:96:4e:83:1c:e7:c6:87:c5:9a:
36:0f:ea:9a:27:26:26:cd:32:4c:dc:4d:c4:01:26:72:59:a2:
46:46:01:6a:41:ab:d6:ee:26:17:35:cb:ac:79:c9:85:b4:01:
a0:ff:14:38:81:69:4e:c4:f6:9e:74:29:ff:2a:cf:2d:e4:e3:
9f:95:91:15:3b:e1:e2:66:ae:04:c3:33:b7:01:06:42:f9:23:
42:76:ca:81:75:0f:a9:d9:ad:f6:2a:41:33:ea:16:54:bd:59:
30:24:72:81:10:72:c9:a4:5b:99:a0:0c:8e:3d:a6:c0:b8:6a:
b8:5c:50:67:56:52:9c:d2:a9:8f:0f:2d:39:13:81:55:26:64:
9e:75:10:21:db:90:5e:39:2e:a3:c9:4c:e0:80:e2:5f:f5:cd:
56:e9:07:ec:b8:d9:5f:b2:03:4c:33:a4:ab:f1:01:13:f0:6c:
28:93:99:da:34:4e:d7:c5:c2:2a:e1:5d:9d:98:f0:bd:9f:b5:
a3:9c:04:23:39:31:ed:d1:bd:44:dc:db:04:cd:0a:b4:07:bc:
4b:df:90:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:27:03 2025 by rpki-client