Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/JMvgOXTPMBTBE_lWdIbEkISsefA.roa
File: JMvgOXTPMBTBE_lWdIbEkISsefA.roa (raw, json)
Hash identifier: KyZ/E22Eurpo3plwutnxDbqbAlDcV4qNPb/cqcyEmH0=
Subject key identifier: 24:CB:E0:39:74:CF:30:14:C1:13:F9:56:74:86:C4:90:84:AC:79:F0
Certificate issuer: /CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647
Certificate serial: 03
Authority key identifier: BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/JMvgOXTPMBTBE_lWdIbEkISsefA.roa
Signing time: Thu 28 Nov 2024 10:16:02 +0000
ROA not before: Thu 28 Nov 2024 10:16:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2.58.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB88A91785A782C8EA3CDDED3E7C1F09DA79F647
Validity
Not Before: Nov 28 10:16:02 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=24CBE03974CF3014C113F9567486C49084AC79F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:3c:2c:8a:0f:68:27:58:4c:94:bf:d2:47:
04:b5:1f:f9:28:0d:1c:e7:5a:8a:e5:aa:98:46:b3:
5c:f2:a4:61:3e:69:1e:50:52:38:1f:4e:41:79:72:
55:3b:6c:91:6a:0a:56:e2:2e:ff:69:d1:73:3d:ab:
08:7c:40:9d:09:be:ef:51:a3:cd:8e:3e:41:d2:80:
6f:9f:57:e3:9a:7c:87:c6:54:7d:29:12:dc:4b:5d:
76:72:72:1b:11:ad:ec:d8:18:1f:19:ca:db:af:b0:
65:b7:c4:f2:cf:9c:d2:69:5c:45:21:ea:d4:2d:9e:
8a:d8:6a:36:6e:5a:db:b6:dd:3e:48:b0:85:0f:c6:
27:ea:54:47:4a:9e:7b:ef:d8:8f:66:dc:3c:94:bf:
e2:0f:03:72:82:bd:d9:ec:2a:50:95:5a:f3:76:79:
d7:af:c2:c3:22:20:6f:66:a3:d3:bb:6f:46:16:6c:
52:23:2c:86:8a:6e:ec:6a:03:90:ad:58:2f:8a:cf:
2a:65:6c:ab:dd:61:e2:50:b1:96:04:44:a8:92:ef:
22:79:24:c0:8a:eb:4a:a8:81:3c:98:c0:a8:db:1c:
74:17:bf:e4:1a:fa:93:81:0f:7d:9a:a8:68:c3:26:
89:73:1b:fc:23:24:b9:d5:6c:4c:18:da:49:a7:5d:
0d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:CB:E0:39:74:CF:30:14:C1:13:F9:56:74:86:C4:90:84:AC:79:F0
X509v3 Authority Key Identifier:
keyid:BB:88:A9:17:85:A7:82:C8:EA:3C:DD:ED:3E:7C:1F:09:DA:79:F6:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/u4ipF4WngsjqPN3tPnwfCdp59kc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u4ipF4WngsjqPN3tPnwfCdp59kc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/JMvgOXTPMBTBE_lWdIbEkISsefA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
2.58.240.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:83:10:ec:01:45:97:bd:58:54:86:69:c5:7e:80:ce:62:40:
a5:ea:db:b2:23:85:48:28:06:3b:b1:fa:e8:da:fc:ca:7f:a4:
94:cf:d2:73:52:1b:25:42:e5:b7:d1:a0:bb:52:2d:f7:0c:9a:
a2:55:f6:6e:a6:d2:16:29:b4:10:0f:d4:93:51:fb:38:9d:00:
84:36:70:19:c7:8d:cb:4e:7c:6c:93:0b:7a:4c:27:81:25:41:
4b:e9:2a:7a:59:bb:15:a3:ba:71:fd:27:0f:73:a2:f5:5f:18:
0a:f3:56:30:1f:91:a6:d1:c6:2f:25:72:c5:da:46:28:5b:ca:
f8:44:6a:72:6e:e3:bd:5c:40:4e:f5:bf:a2:6a:cf:a4:55:3a:
2c:33:8c:ae:4b:56:5f:d8:75:cc:17:49:5d:42:2d:dd:f8:7a:
46:e8:ce:de:b3:6e:a2:c1:25:7f:32:01:06:fb:26:a1:e9:e1:
33:4d:ea:5b:2d:7b:c8:9e:f3:c9:d9:d8:d2:06:be:b7:b5:cb:
73:e8:33:c7:a2:fe:5e:23:55:e2:d5:a1:54:3f:39:68:30:e1:
16:0a:d0:5a:a9:ff:84:d3:47:69:43:33:32:cd:68:a5:86:c9:
bb:ee:d4:2e:09:13:1f:03:65:46:92:90:25:02:85:fd:08:c2:
6f:e0:2c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:33 2025 by rpki-client