Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/01RQUEtFxMGHJVeUpTMd0UhYN1M.roa
File: 01RQUEtFxMGHJVeUpTMd0UhYN1M.roa (raw, json)
Hash identifier: Q248vq37R80V0s3lK2JE3RRZSna/szE1CSMMYO7a8OA=
Subject key identifier: D3:54:50:50:4B:45:C4:C1:87:25:57:94:A5:33:1D:D1:48:58:37:53
Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65
Certificate serial: 0278
Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/01RQUEtFxMGHJVeUpTMd0UhYN1M.roa
Signing time: Mon 10 Feb 2025 14:05:36 +0000
ROA not before: Mon 10 Feb 2025 14:05:36 +0000
ROA not after: Tue 14 Oct 2025 15:30:23 +0000
asID: 134823
IP address blocks: 160.191.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 632 (0x278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65
Validity
Not Before: Feb 10 14:05:36 2025 GMT
Not After : Oct 14 15:30:23 2025 GMT
Subject: CN=D35450504B45C4C187255794A5331DD148583753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ad:39:fb:57:f6:60:86:f3:c6:49:55:2f:37:
43:d1:3e:26:f9:e2:50:e3:9a:97:10:e7:28:06:28:
8c:d1:c1:eb:10:da:41:ce:ff:5f:70:e3:78:6e:73:
bd:00:c4:83:98:70:73:01:95:42:22:0c:8d:7b:48:
2c:8e:50:7b:2f:c4:f5:8c:6f:07:72:50:ec:89:db:
b2:5e:0d:bf:0f:fb:ff:b4:e0:aa:4c:d6:79:78:51:
b3:c7:47:b8:3d:30:72:dc:b6:be:17:67:be:2a:a9:
04:b5:d6:92:45:fe:d2:2c:eb:64:2c:94:60:d7:a0:
ec:d9:8b:8f:0a:fa:08:8f:05:ad:ac:c6:93:5e:5e:
9f:ac:93:4f:66:b6:ba:7f:8f:ea:68:d4:fb:ff:15:
3c:35:1c:02:0c:e4:66:a9:c9:f4:85:d5:49:31:db:
23:be:9d:f1:98:fc:01:67:de:0c:d6:e8:72:b4:ba:
fa:b1:11:6e:b1:47:8e:df:5f:a9:ea:16:65:00:6c:
d0:d4:64:a1:62:24:bb:31:e9:04:61:f4:29:1c:0f:
5f:be:ee:72:c5:d5:cf:56:7e:c5:48:d0:fe:de:4e:
18:11:a0:7b:6e:63:06:87:0e:9c:9c:83:d2:ca:65:
75:5c:d4:7e:e4:9c:2b:c6:7c:2f:ef:ec:05:a3:64:
0e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:54:50:50:4B:45:C4:C1:87:25:57:94:A5:33:1D:D1:48:58:37:53
X509v3 Authority Key Identifier:
keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/01RQUEtFxMGHJVeUpTMd0UhYN1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.191.4.0/23
Signature Algorithm: sha256WithRSAEncryption
27:2b:e8:59:5a:ed:46:f8:65:b4:8c:8b:5b:c2:9d:f1:be:50:
16:bb:34:a8:5c:8c:55:d0:51:3d:6a:b7:63:e4:86:7d:4a:9d:
0f:70:ae:68:1c:d2:53:cd:7a:1d:80:1b:7f:b1:60:b4:28:20:
6b:2f:5f:13:fb:c3:1c:5d:ac:f7:61:eb:68:d6:f5:8e:0a:b0:
9e:b7:be:b9:92:73:eb:b5:d5:96:56:2a:7e:54:c6:ad:0a:56:
60:25:52:96:98:1a:9d:1d:5a:ac:e9:0f:89:ba:e5:21:56:b8:
03:df:8f:a2:fc:63:58:2c:7a:55:34:c9:a7:86:f9:ad:42:31:
ef:03:b6:f9:70:fd:ce:80:42:e8:7f:bb:a8:81:2f:55:64:04:
d6:99:16:16:d7:ab:bc:40:dc:37:96:4d:9b:1b:70:9b:52:6c:
ba:8a:81:de:a6:be:41:b4:51:b3:44:90:a0:e7:b5:1a:3f:d0:
ee:0f:d6:dc:9d:ce:b6:02:bf:af:be:bf:09:d7:91:86:86:c2:
29:17:b0:51:d0:b1:d0:22:bd:20:6e:d4:4f:16:97:3d:0b:1f:
80:c6:b8:53:f7:de:77:36:86:dd:73:00:6f:73:e1:a2:b8:3e:
79:68:3f:36:fb:f7:99:22:cb:fd:bb:30:fc:a8:d1:9b:a1:00:
ad:f4:42:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:33:33 2025 by rpki-client