Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/udLshowpNjxh-DGh4gWLZvO_hq0.roa
File: udLshowpNjxh-DGh4gWLZvO_hq0.roa (raw, json)
Hash identifier: vRzpyRuT1/tH+LAOFWEKGjfK2Po11cHdO4Erjt1uWnE=
Subject key identifier: B9:D2:EC:86:8C:29:36:3C:61:F8:31:A1:E2:05:8B:66:F3:BF:86:AD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 11E3
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/udLshowpNjxh-DGh4gWLZvO_hq0.roa
Signing time: Tue 03 Jun 2025 06:08:57 +0000
ROA not before: Tue 03 Jun 2025 06:08:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17809
IP address blocks: 210.209.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4579 (0x11e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jun 3 06:08:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B9D2EC868C29363C61F831A1E2058B66F3BF86AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1b:e1:7d:2c:7d:91:20:6a:c3:02:70:cf:16:
70:19:60:1b:8b:78:bb:20:bb:73:ef:3d:43:43:5e:
b7:16:3e:00:4c:0c:0a:62:99:ba:7e:e3:55:1b:38:
64:4b:7b:21:87:f7:7c:52:ee:d5:6d:5f:4c:4f:31:
38:be:e5:62:29:c3:88:4d:91:36:cb:2f:50:ff:87:
6d:2a:03:02:56:d7:e2:5c:9c:f8:77:14:45:73:f8:
da:bb:a3:d2:22:12:a4:a1:4f:10:d4:46:2e:c5:46:
15:e3:e9:35:d2:c0:14:15:4c:46:96:2c:c8:a4:8d:
fb:c3:b1:a3:a0:14:16:b1:11:f7:a4:7c:84:29:95:
9f:1b:6f:4d:e0:b0:ec:32:70:1f:9c:eb:ea:55:c1:
1d:a1:6a:49:35:d6:4d:52:b7:45:24:8e:bf:23:19:
22:af:fb:9b:1f:77:7c:06:83:a8:0e:45:b0:4c:f0:
16:ed:6f:33:77:ff:c8:41:50:d7:62:b9:6e:5d:df:
99:ca:f0:5d:0e:48:4c:c9:0e:fa:8a:fb:0a:dc:b6:
32:9b:e6:0b:f8:4b:8d:ff:18:35:3c:f9:a6:84:16:
65:f1:b8:b8:eb:db:ae:aa:c6:26:87:47:5c:1f:22:
ad:54:68:49:85:a8:55:9c:7b:43:b5:8b:79:75:13:
3b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D2:EC:86:8C:29:36:3C:61:F8:31:A1:E2:05:8B:66:F3:BF:86:AD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/udLshowpNjxh-DGh4gWLZvO_hq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.144.0/20
Signature Algorithm: sha256WithRSAEncryption
97:50:47:d2:08:5b:b3:96:2c:65:98:59:d6:ff:a0:1d:6f:8b:
74:6d:e9:21:5f:aa:ab:3e:be:b3:b6:95:aa:ec:58:fd:d8:96:
af:61:be:33:ee:a7:76:0a:3a:f6:ed:ea:c9:56:31:f0:d6:7b:
01:23:6e:f4:06:f4:f7:7f:f8:56:f0:63:c0:ed:6e:9a:9a:a6:
e6:de:16:41:7d:ea:57:5b:ac:fe:f1:87:3e:4d:d9:1f:1a:b8:
e3:94:64:d7:a0:91:8c:2e:0e:29:6a:07:63:0a:ec:c8:f2:15:
21:22:af:08:f9:ac:3d:8b:5f:95:af:12:40:62:8b:c5:e4:9a:
dc:d8:b2:b6:88:b6:39:69:01:81:ac:9a:f4:10:eb:11:6f:b3:
ab:67:9b:8e:2b:9c:ce:6e:b6:e7:7e:29:e0:9a:9f:fb:c5:a5:
90:b1:9b:a8:cb:8f:e1:02:a7:ec:e7:f4:20:50:69:3f:7e:59:
ee:d4:7a:83:66:1b:c9:2a:d0:27:de:89:94:b5:f0:04:79:fc:
ea:ba:5e:e1:3c:da:4f:b8:3d:39:b9:b8:d0:b8:5b:d0:d8:32:
09:7c:9d:12:6f:d3:b1:3a:f2:79:91:ee:85:f6:5c:43:75:12:
04:62:cb:bf:f7:cc:37:ec:b5:b8:85:4b:d0:3d:ea:61:44:e2:
98:e0:0b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 03:01:09 2025 by rpki-client