Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/4bjNyzLpdZEybjhWCFovTuhO5O8.roa
File: 4bjNyzLpdZEybjhWCFovTuhO5O8.roa (raw, json)
Hash identifier: HwpClSLSXtYtmQ2FvnTlPcstXeBt6SSEGgkseLzdsoM=
Subject key identifier: E1:B8:CD:CB:32:E9:75:91:32:6E:38:56:08:5A:2F:4E:E8:4E:E4:EF
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0DAB
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/4bjNyzLpdZEybjhWCFovTuhO5O8.roa
Signing time: Mon 10 Feb 2025 14:06:10 +0000
ROA not before: Mon 10 Feb 2025 14:06:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 115.43.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3499 (0xdab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E1B8CDCB32E97591326E3856085A2F4EE84EE4EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:94:73:9d:fb:7c:b6:8a:cd:e3:4b:df:dd:75:
ea:0b:22:cd:af:1b:53:4d:1b:44:b8:a5:bb:e1:f9:
40:8b:1b:af:ef:6f:1b:eb:92:b9:7e:64:c1:e3:19:
9f:d0:d0:7e:9e:3c:6f:fe:93:e9:ff:97:95:3b:bf:
07:1d:3e:da:0b:cd:a8:9e:50:9f:0c:22:c7:18:6b:
10:ab:96:bd:61:cc:e5:b8:61:d5:b9:3e:98:11:72:
80:19:f3:aa:ac:07:16:46:e8:4a:dd:41:69:ac:b6:
70:9b:d9:74:74:e5:08:64:1b:d9:29:74:bf:60:d0:
b2:47:4c:f6:31:13:ca:ed:59:ce:52:c0:1b:29:ec:
df:72:50:d6:da:f4:7a:b6:32:3c:19:97:12:f2:7f:
9f:83:27:ae:f5:53:56:4b:3b:93:62:76:c1:7e:50:
07:74:82:b8:57:48:72:fb:00:0d:12:89:d1:5c:25:
fc:8d:91:f8:e5:f6:55:c9:8a:ce:16:89:3c:2d:a6:
06:4e:ae:e0:2a:02:53:b5:f5:73:51:4c:38:66:c9:
50:fb:e2:6d:5a:fc:b7:69:92:69:3a:a5:91:35:14:
8b:33:ca:ea:bb:57:93:43:19:6e:3a:2f:0b:d3:15:
66:3a:35:29:75:9b:74:6c:94:17:b8:bd:e7:42:16:
7e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B8:CD:CB:32:E9:75:91:32:6E:38:56:08:5A:2F:4E:E8:4E:E4:EF
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/4bjNyzLpdZEybjhWCFovTuhO5O8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.0.0/17
Signature Algorithm: sha256WithRSAEncryption
7d:3e:43:01:ec:1f:90:b1:f5:5b:6d:83:12:80:30:67:26:9b:
14:fe:0b:9c:1d:48:55:6a:9e:4a:04:a6:3b:5d:95:2e:90:c1:
b9:5b:58:ae:99:9c:7b:95:b0:a5:ed:f1:6d:6d:e9:bc:87:36:
c9:a3:d2:46:35:9a:e9:51:ef:b0:ad:4b:7e:4c:83:f2:a2:2f:
c3:a2:91:99:57:70:d5:07:0e:24:8e:14:a9:03:ea:ec:82:66:
bd:22:48:e7:3f:bf:fc:16:59:7a:8e:78:f1:25:2d:d2:3d:d0:
70:84:12:5f:8e:5f:92:36:6d:22:92:6b:00:9e:a0:a4:cc:88:
e3:de:36:93:fd:85:cd:b1:2b:2f:c3:4f:ec:5a:d8:cd:07:56:
e7:c0:cc:65:21:e6:52:84:78:31:a9:e5:72:8d:b2:7f:d8:ef:
45:75:19:d4:93:ce:bc:36:05:f6:17:4f:5f:b9:ff:f7:03:de:
07:df:9b:ef:17:c1:e6:8a:67:a5:2e:b0:5a:17:c0:58:59:5f:
fb:65:76:fc:2c:66:f8:d3:1c:31:c2:00:09:ce:21:f2:06:9d:
74:41:9e:46:e3:27:51:f8:59:70:21:eb:1c:fd:97:7f:45:76:
ea:ef:b1:46:bb:37:83:72:7c:22:90:da:b3:10:1a:9f:27:b5:
cd:79:70:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:49 2025 by rpki-client