Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/-wQbIvyso2f2tcVAzq0kZJsvPY8.roa
File: -wQbIvyso2f2tcVAzq0kZJsvPY8.roa (raw, json)
Hash identifier: 67E2lzYu7wfLAO/Fj00Zl15Bcvg/1EY/E25rIFasH8E=
Subject key identifier: FB:04:1B:22:FC:AC:A3:67:F6:B5:C5:40:CE:AD:24:64:9B:2F:3D:8F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11B5
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-wQbIvyso2f2tcVAzq0kZJsvPY8.roa
Signing time: Mon 10 Feb 2025 14:27:38 +0000
ROA not before: Mon 10 Feb 2025 14:27:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4533 (0x11b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FB041B22FCACA367F6B5C540CEAD24649B2F3D8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:eb:a5:51:bc:e7:8a:37:0e:0d:43:49:08:1a:
47:2e:ea:96:4b:cb:69:cd:ef:12:e7:fb:a5:33:3c:
c6:9d:f4:98:6d:f9:38:67:3a:35:2f:17:ef:76:03:
f6:02:b4:d3:99:6d:04:8c:af:8a:01:79:67:b5:a8:
a9:74:e3:9e:0c:04:25:a3:a9:cc:5f:75:a5:b1:3a:
8d:73:83:6d:f3:82:97:59:22:ad:7f:c3:89:4a:b5:
bc:e3:03:25:2d:00:98:63:9e:56:b3:d0:89:64:53:
10:64:ee:97:5a:4a:69:a1:8a:87:fc:36:ef:ac:4d:
31:1e:14:ad:38:50:ff:00:e0:b3:91:59:a9:2e:9d:
0a:b6:66:8a:88:da:b8:a0:00:67:a7:d9:16:04:68:
72:df:23:5a:55:90:3e:f9:42:17:f8:85:74:06:70:
84:86:46:0a:64:d9:74:80:09:8a:93:d8:6d:f8:28:
78:3a:e6:d0:1b:b2:ab:f5:d2:c2:db:81:b7:79:9d:
e1:d8:81:47:92:5b:3e:21:b6:77:3d:64:47:34:5c:
f0:ca:1c:3c:bb:e7:bf:43:87:8d:89:83:4d:af:f0:
46:44:32:60:ca:fd:0e:fa:1b:e6:57:b7:99:c9:7c:
7c:41:95:58:7d:fd:a2:3b:59:7e:01:ac:41:02:38:
e9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:04:1B:22:FC:AC:A3:67:F6:B5:C5:40:CE:AD:24:64:9B:2F:3D:8F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-wQbIvyso2f2tcVAzq0kZJsvPY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0e:a6:5c:57:4b:b5:ca:19:17:bd:e3:ea:da:c1:84:eb:cc:91:
c5:0a:7e:3c:20:aa:a8:2c:b7:11:21:91:49:e2:f0:85:c9:4b:
a8:60:84:45:be:99:ca:bf:86:7f:6d:03:78:4b:1f:55:6b:50:
b5:42:91:b6:cd:8b:af:1b:14:34:c9:b0:9e:17:0f:79:00:fc:
81:3d:85:86:5a:53:a9:23:0e:18:25:15:c1:d6:93:39:45:b2:
33:58:a0:2b:c4:74:82:fb:fc:44:37:30:14:ae:3a:36:c1:e6:
b3:26:95:b5:d5:19:92:b7:a6:d3:07:fe:71:68:b9:dc:49:9f:
6c:9c:d4:a9:9c:97:37:62:da:b2:a2:3c:87:c2:16:87:81:50:
97:36:1c:b2:26:e1:77:bc:f1:b7:5e:12:bf:70:55:50:75:bf:
59:f4:3a:07:28:54:dd:44:75:4e:c2:0b:23:e5:38:95:08:19:
46:2c:32:7b:71:b4:ff:dd:a0:92:cf:1d:fc:1d:97:f5:4a:82:
d0:71:87:4a:dd:84:53:bd:d6:a4:6d:7d:24:10:87:52:ec:1b:
63:ef:f4:b5:70:89:ee:0a:ce:9d:e6:a6:df:af:16:9c:82:b9:
37:3f:26:05:02:82:dc:dc:43:0f:7d:9b:1d:31:7a:46:46:7a:
87:05:78:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:29 2025 by rpki-client