Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/50dQoSU7B3M-Pdtfx6EkoqAoLDA.roa
File: 50dQoSU7B3M-Pdtfx6EkoqAoLDA.roa (raw, json)
Hash identifier: c2sF0JjzNZAuKDJATDDfb7P+KOMrjJ3kpnU6EHx5N5g=
Subject key identifier: E7:47:50:A1:25:3B:07:73:3E:3D:DB:5F:C7:A1:24:A2:A0:28:2C:30
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0D9D
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/50dQoSU7B3M-Pdtfx6EkoqAoLDA.roa
Signing time: Mon 10 Feb 2025 14:06:07 +0000
ROA not before: Mon 10 Feb 2025 14:06:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9416
IP address blocks: 123.252.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3485 (0xd9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E74750A1253B07733E3DDB5FC7A124A2A0282C30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:80:d7:ac:36:71:29:79:f1:01:a7:c5:f7:68:
f7:ed:9a:92:4a:fb:0e:39:76:26:6d:5f:04:95:b6:
7c:5e:90:bf:f2:c0:1e:84:fd:88:cd:a7:18:6d:e6:
c3:03:fa:09:ee:d4:f7:7a:73:88:bd:f9:32:d5:d6:
e7:bc:69:c6:de:ab:f2:d2:df:84:27:e7:de:04:a9:
e5:08:e9:6a:c7:f5:7e:0e:cf:0d:b9:48:97:47:e4:
7f:9e:d1:a7:88:29:bb:2d:a9:cd:fc:1b:a6:9e:62:
63:ff:06:b4:02:f0:48:09:f2:9b:c1:a5:65:25:13:
63:40:7a:14:d9:55:f1:ca:aa:fc:e0:36:53:9c:24:
16:7f:6f:94:ab:6f:3d:5c:2f:b9:12:e2:1a:cd:96:
60:6b:de:f1:cb:f2:a7:9c:d3:c7:e7:23:ca:47:1b:
23:0e:10:9e:b1:7f:83:77:03:c5:8d:8d:7b:fc:ce:
b0:35:3e:7f:e3:af:b6:84:87:97:54:7e:b3:31:25:
c6:5d:72:a6:d9:6d:41:c0:7d:ca:f8:8a:16:18:77:
b4:55:ed:b4:2e:1f:ae:cf:3d:d6:2f:18:04:44:fc:
08:7c:b0:3b:37:d6:95:76:20:3e:e9:7c:46:a5:38:
a3:b1:71:de:3e:a0:40:96:8c:84:3e:a3:7a:f1:ee:
b5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:47:50:A1:25:3B:07:73:3E:3D:DB:5F:C7:A1:24:A2:A0:28:2C:30
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/50dQoSU7B3M-Pdtfx6EkoqAoLDA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.0.0/17
Signature Algorithm: sha256WithRSAEncryption
51:7f:57:39:f2:d5:d5:56:98:a8:c4:bb:04:8f:d7:3d:6a:22:
d5:b8:a8:41:30:c6:e8:ad:44:c5:14:f1:0e:0c:10:21:61:d5:
c4:d3:75:f3:50:cf:00:28:2e:17:b3:ff:70:c3:be:b3:e1:ea:
e4:82:d9:56:88:93:8e:46:95:8c:74:b5:70:db:33:c8:4d:78:
6f:59:c1:f2:4b:60:f1:0a:db:38:07:1b:73:3b:8b:44:9b:68:
d7:ad:5b:1c:16:35:5f:bb:dd:b7:96:52:82:68:c1:17:90:4e:
46:4f:6b:d0:8a:bb:5e:9b:b4:2e:f8:3a:a1:4e:6c:7f:54:db:
b3:19:4a:47:e2:26:7d:9d:31:ab:76:45:64:43:62:df:71:57:
31:8f:23:84:e8:68:2b:f0:08:ef:c8:04:52:1b:77:d8:c2:26:
f5:40:d3:3b:1e:90:2f:c9:66:dc:68:e9:1f:68:7f:e2:0d:36:
08:4f:61:4a:12:bf:43:c7:ae:dc:bd:91:84:f3:b9:0a:e7:9d:
ec:b1:db:c9:74:20:b0:c4:cb:cb:aa:34:62:35:a0:f0:ec:02:
bc:c0:e3:13:f0:ec:5b:b6:5b:77:82:21:b7:84:53:96:e1:12:
21:61:45:b2:dd:11:28:75:04:3b:96:96:b5:05:2a:24:4b:48:
78:0c:20:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:00 2025 by rpki-client