Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DpJZCtvn1TK9ngEldYR70rk5tqE.roa
File: DpJZCtvn1TK9ngEldYR70rk5tqE.roa (raw, json)
Hash identifier: 3FgdK3fNFcjNheGEX4GfT1eRUUVD9k7Aznn4zJVcCUM=
Subject key identifier: 0E:92:59:0A:DB:E7:D5:32:BD:9E:01:25:75:84:7B:D2:B9:39:B6:A1
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0D9F
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DpJZCtvn1TK9ngEldYR70rk5tqE.roa
Signing time: Mon 10 Feb 2025 14:06:07 +0000
ROA not before: Mon 10 Feb 2025 14:06:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9416
IP address blocks: 123.252.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3487 (0xd9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0E92590ADBE7D532BD9E012575847BD2B939B6A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:60:4c:34:0a:5c:05:ac:a8:0c:cc:ca:2a:58:
3d:1c:ec:8d:9f:28:35:6a:c1:45:c9:31:17:4e:48:
4b:7a:e9:38:f9:14:9f:4f:f0:3e:c2:b4:a2:f0:4d:
4f:1b:90:b4:02:c1:75:ed:76:33:1e:be:47:66:0b:
9d:81:97:08:3d:d8:fd:fd:81:d3:e2:26:2b:89:45:
e0:8b:3e:88:b0:9e:d0:32:e8:43:c9:71:e2:9c:17:
a3:62:0f:1c:87:56:46:08:08:14:66:ff:99:e8:8c:
3e:1a:dc:4b:9c:41:0d:6a:b3:05:b4:77:94:d5:db:
06:7c:d6:cc:a5:d5:37:ae:0b:34:5f:05:27:fd:a4:
60:82:3b:51:53:12:34:2e:5b:4b:d3:fa:49:a5:b8:
a4:d0:69:ca:22:ac:bc:db:13:73:de:09:6e:88:1a:
5c:e4:5f:9d:14:0a:51:08:57:0a:d8:91:7b:a9:e7:
a3:91:92:5a:5d:27:8e:40:1d:82:34:dd:85:e9:c9:
7f:b7:63:e7:e5:07:6c:b2:95:89:53:25:41:cf:bb:
e9:38:ab:46:e2:4a:3e:61:f7:15:c8:0a:66:8f:9b:
cc:02:51:b0:eb:ea:be:9f:0e:e8:34:2b:96:aa:b4:
c1:09:58:bb:82:db:b5:81:63:f4:cb:74:e7:fa:90:
39:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:92:59:0A:DB:E7:D5:32:BD:9E:01:25:75:84:7B:D2:B9:39:B6:A1
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/DpJZCtvn1TK9ngEldYR70rk5tqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a2:ce:06:96:e0:6c:f9:cc:64:b6:4d:d1:69:0b:5b:22:04:d7:
e5:cb:e8:a8:8d:f9:c4:a6:27:75:02:24:2a:53:50:2d:bb:84:
ba:67:b4:6f:63:25:99:93:f3:01:6e:3e:71:e7:89:32:76:fa:
0b:77:26:22:1e:0a:fc:ce:29:87:d5:84:77:c4:b2:4f:e7:6d:
42:1f:96:0e:52:78:30:0b:9d:fb:1c:26:4d:53:eb:45:d4:ea:
0b:a8:88:90:21:78:15:b8:91:d2:91:57:16:0e:a2:74:ca:8a:
17:52:c0:b9:9b:0c:ba:5f:b5:b5:0b:64:08:f2:de:da:ee:bc:
3e:e9:a3:85:5b:e7:5b:5e:ee:72:18:bb:58:a0:ca:1b:24:c1:
8c:d1:b6:aa:86:33:61:f1:e9:f5:20:93:82:48:3f:2f:1d:98:
a9:53:75:2d:07:26:ac:81:c2:fe:7f:ac:81:a1:bd:3e:46:00:
60:a7:51:a4:b0:e1:3d:84:c4:43:0b:51:3b:d6:95:d2:32:0b:
4d:f9:85:13:48:2a:bd:9c:12:15:e2:14:30:78:4b:32:83:cf:
4c:4c:eb:bd:8f:fa:0f:b2:df:4d:63:bd:97:33:0c:b4:45:62:
b8:16:e0:5e:8a:a3:49:d6:33:0f:65:12:75:3d:d8:33:11:61:
28:bb:97:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:59 2025 by rpki-client