Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/848fYgtyg1iF3UW2jEVn3lGhB1U.roa
File: 848fYgtyg1iF3UW2jEVn3lGhB1U.roa (raw, json)
Hash identifier: wCyjHutu/O2CZM8WPtNuoelZ6ajys+/rggv6nzbdAXk=
Subject key identifier: F3:8F:1F:62:0B:72:83:58:85:DD:45:B6:8C:45:67:DE:51:A1:07:55
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 11E7
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/848fYgtyg1iF3UW2jEVn3lGhB1U.roa
Signing time: Tue 03 Jun 2025 06:10:40 +0000
ROA not before: Tue 03 Jun 2025 06:10:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 210.209.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4583 (0x11e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jun 3 06:10:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F38F1F620B72835885DD45B68C4567DE51A10755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8d:6d:57:67:80:bb:6a:04:ba:32:55:45:91:
51:be:22:e9:2a:d9:59:b8:5c:76:e7:a6:9a:ed:74:
05:23:44:aa:17:d2:7c:dc:72:60:67:9f:2a:52:2d:
d1:9d:fd:ac:5a:81:39:0a:c3:4f:1e:54:be:b4:10:
4c:53:99:ae:38:b7:66:8a:b3:bf:e3:82:bc:48:8e:
5d:b3:f3:9a:10:1f:83:c3:ca:ea:83:5b:03:19:3f:
33:a9:bd:99:75:10:19:0e:7d:c2:f6:13:48:3c:35:
11:8c:cb:04:94:16:7c:2e:c4:ed:1a:5b:92:54:64:
89:b8:02:7d:bb:1e:95:fc:d9:1e:f3:8c:b7:eb:b4:
03:1f:96:4c:fa:d5:0c:08:53:a9:78:c9:38:83:39:
e6:22:1a:46:65:47:6a:23:29:52:07:43:b7:fd:3b:
7f:bf:b4:13:3c:5d:13:4e:da:c9:63:0b:d7:92:55:
ac:3e:54:73:09:58:e6:2a:3f:47:ed:0b:7b:8f:5b:
ce:10:26:eb:2b:91:e8:a5:56:e1:19:a2:53:2e:56:
ca:1c:9d:cf:30:2b:3b:3a:bc:cb:be:88:03:d9:65:
f8:6d:44:39:3e:83:b2:b2:59:47:55:3b:84:33:ae:
e8:ac:ba:96:27:9c:02:bf:b5:6d:cc:d1:c3:d3:59:
0b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:8F:1F:62:0B:72:83:58:85:DD:45:B6:8C:45:67:DE:51:A1:07:55
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/848fYgtyg1iF3UW2jEVn3lGhB1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.176.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:91:94:d1:27:36:12:61:82:fe:78:10:e4:a7:20:c8:61:50:
38:bb:7f:23:01:11:b5:7d:48:71:2f:6e:73:74:48:42:15:d3:
dd:a7:a0:52:0d:27:37:5c:83:c5:34:5b:75:d6:9a:4e:5f:2b:
ad:d4:a3:8c:29:26:84:e9:d7:12:4e:eb:fa:79:bd:5b:5b:86:
65:a1:36:86:b8:ab:04:3b:98:75:7b:e3:75:aa:2e:9c:2a:17:
12:17:7e:bc:08:1f:09:f9:52:ec:8b:2f:3d:e9:9b:10:49:6e:
f4:e1:a0:c7:61:77:cf:4c:32:15:08:28:ee:87:6a:96:bd:d8:
cc:f8:4a:2d:a3:eb:62:ef:ec:b1:bd:87:01:77:96:36:9f:cd:
42:86:9f:83:37:3e:14:76:e6:0e:c9:eb:a6:ce:79:df:82:a8:
89:ee:76:c0:3d:7b:3c:66:c8:34:69:ea:a8:f0:77:6d:d9:27:
53:96:a1:de:b8:aa:f5:e0:10:98:64:25:94:d9:06:90:dd:53:
eb:ab:76:fa:aa:e7:da:5e:e0:73:b1:14:f3:37:44:94:35:8a:
eb:f3:41:bd:a5:d0:21:b5:bb:61:f2:97:4d:f2:66:3a:46:5c:
a7:a6:1e:d6:9b:ca:a2:3f:8a:80:cf:29:cc:e2:0d:7c:48:85:
2e:52:d6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 03:07:58 2025 by rpki-client