Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/pRTqDg9Q8pY3mFMjEojH7j1U28Y.roa
File: pRTqDg9Q8pY3mFMjEojH7j1U28Y.roa (raw, json)
Hash identifier: d8gSnmxu2xrWnDCYnCr/zCybsG8GdsprPNNejXTBdI8=
Subject key identifier: A5:14:EA:0E:0F:50:F2:96:37:98:53:23:12:88:C7:EE:3D:54:DB:C6
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 010D
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/pRTqDg9Q8pY3mFMjEojH7j1U28Y.roa
Signing time: Mon 10 Feb 2025 13:45:21 +0000
ROA not before: Mon 10 Feb 2025 13:45:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152609
IP address blocks: 157.20.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269 (0x10d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Feb 10 13:45:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A514EA0E0F50F296379853231288C7EE3D54DBC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a1:b6:9d:9f:62:7f:ba:5b:48:ab:a2:f0:07:
c3:34:01:7a:07:e2:2d:f1:f2:ab:21:41:62:f2:d4:
9c:f7:82:9f:e1:d7:e8:8f:8a:41:85:1c:7c:15:55:
f5:be:ff:ce:f9:4c:93:99:31:00:eb:44:8e:c4:ed:
08:cb:80:0c:f4:d2:6a:81:a6:63:fa:95:a8:ef:50:
34:71:b6:c2:7e:aa:41:2d:0b:9f:4c:5a:27:e9:6c:
4b:ca:35:d3:fb:ce:ec:7c:df:9f:02:08:bd:15:15:
6a:e2:9f:45:ab:74:4e:0c:c3:49:91:64:6d:3a:38:
00:bb:06:14:ee:aa:7e:be:4a:8a:06:0d:01:77:96:
80:c6:e9:dc:40:63:73:25:81:98:2e:32:7e:60:51:
ab:1b:52:f1:75:da:31:83:44:c9:c3:0f:d4:d7:8d:
9c:74:04:57:53:05:e3:48:41:aa:13:fc:bb:71:37:
31:38:33:65:3b:0d:38:08:9d:29:f5:ea:ed:63:a5:
a0:20:bf:c3:21:e0:17:50:36:dc:c5:b0:e2:dd:8b:
23:28:29:f9:53:63:c2:b8:6c:45:56:78:82:7d:b1:
4e:67:20:c3:97:b1:87:a2:ce:5a:4a:4a:a3:a4:3e:
ab:0e:3f:7c:9f:8f:5f:ea:26:a2:d5:72:6c:c7:3b:
e5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:14:EA:0E:0F:50:F2:96:37:98:53:23:12:88:C7:EE:3D:54:DB:C6
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/pRTqDg9Q8pY3mFMjEojH7j1U28Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:d3:b8:17:01:db:2c:cf:37:60:a9:11:7d:62:c0:e9:58:e5:
5d:d4:fb:c5:51:40:70:d4:67:40:49:63:5e:f4:b8:7a:4e:d1:
91:c7:bf:c3:6c:7c:dd:ec:24:45:f9:fd:68:d9:45:6e:11:79:
a5:3c:0b:b4:4d:ad:b8:28:25:a8:8b:d5:40:22:af:ea:98:5f:
00:99:16:4b:ea:ce:84:f1:da:34:56:ce:0d:10:dd:f0:e8:7e:
b1:c5:e8:e6:6d:ad:8e:1a:10:d1:30:52:b0:e6:81:a6:da:de:
00:98:5f:5c:01:6f:ee:18:d9:f1:83:ce:3a:5a:d6:52:7a:00:
c8:64:2b:03:c0:8f:e6:5d:85:2a:e8:a8:3a:cb:b1:44:3d:cb:
18:a0:1f:a6:fd:b2:f8:41:c9:59:ea:7d:83:bf:ae:ae:0c:17:
c8:df:4a:43:73:7d:de:0a:15:c4:47:ad:ea:37:75:cb:f8:a2:
5f:55:6c:74:d3:c6:36:bb:5d:5e:91:60:05:2f:04:ce:7f:0c:
58:fc:9d:75:d6:1b:71:f5:17:79:d4:76:36:0f:48:15:54:ca:
77:cf:c5:61:58:1e:e1:85:94:6d:af:a2:f3:c2:73:7e:80:a3:
e7:d2:e5:0a:68:b8:a8:04:b5:e8:de:2b:d7:8f:13:66:3d:0f:
12:bd:af:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:23:20 2025 by rpki-client