Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/EiZwJDoZyAvvtrT67rMgBofrQcY.roa
File: EiZwJDoZyAvvtrT67rMgBofrQcY.roa (raw, json)
Hash identifier: cRMNPVJYgzg8bYQCt/Ek3P60I2fnLFGVQmN74UXjxco=
Subject key identifier: 12:26:70:24:3A:19:C8:0B:EF:B6:B4:FA:EE:B3:20:06:87:EB:41:C6
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0DA3
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/EiZwJDoZyAvvtrT67rMgBofrQcY.roa
Signing time: Mon 10 Feb 2025 14:06:08 +0000
ROA not before: Mon 10 Feb 2025 14:06:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3491 (0xda3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=122670243A19C80BEFB6B4FAEEB3200687EB41C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:63:c3:be:3d:52:8c:b7:ac:fd:68:42:69:22:
f3:d1:ac:ea:74:5e:d8:4d:98:3f:e3:b5:00:28:a7:
34:4e:d4:e5:46:11:d4:59:f8:d3:ac:18:1f:b2:92:
0a:f8:b3:5e:99:ba:ab:84:f6:64:75:cc:18:50:1c:
07:72:ed:02:a0:22:8b:13:df:d4:5f:4b:20:45:46:
0c:d0:18:11:a9:d3:bb:02:82:d8:e8:80:a4:c5:1b:
03:3b:ce:72:af:95:70:be:3a:88:c5:cf:b2:ef:e4:
21:25:13:4d:7b:8c:e5:60:c8:e2:cb:dc:6e:42:e0:
e3:53:69:77:bd:4b:82:9a:f1:4e:f2:ec:f1:ff:29:
34:3c:71:54:d6:57:9d:be:84:39:92:67:f4:28:2a:
97:fb:f2:f7:bb:a9:93:a7:f6:42:56:bf:78:32:a6:
4e:c5:f2:06:8e:b5:c3:88:e7:27:96:0b:f0:03:5c:
37:5c:90:75:a2:8d:72:bf:ae:d7:25:5d:73:02:95:
b0:7a:26:c8:b8:03:af:4d:9a:2a:9e:26:1e:bd:69:
77:34:fd:0f:df:a0:97:ea:6d:49:39:79:2e:0c:80:
a0:c0:d6:48:ff:22:87:67:52:07:b6:92:89:c2:31:
5a:54:cf:1e:91:36:d6:c0:96:ec:7b:89:20:cf:9e:
bf:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:26:70:24:3A:19:C8:0B:EF:B6:B4:FA:EE:B3:20:06:87:EB:41:C6
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/EiZwJDoZyAvvtrT67rMgBofrQcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
77:72:eb:2f:4c:68:ba:ec:2f:09:59:0c:71:3f:39:6f:72:31:
14:5e:bc:9e:01:3c:74:dd:08:ba:d2:3f:86:87:92:43:ef:dc:
e7:a8:4a:ec:32:8f:3c:a6:27:1e:b1:c6:81:e9:43:d0:32:b5:
a6:94:af:7d:0c:b7:ae:75:08:82:9e:fb:31:80:03:e6:18:fb:
8e:ba:dd:4e:e2:3e:39:31:69:0b:b4:61:c8:b4:40:42:1b:9d:
66:c8:1c:09:27:fb:34:42:f5:78:64:4b:89:52:9e:73:bc:d6:
26:8f:34:5f:0f:75:92:7a:3b:11:cc:a1:71:aa:57:4f:98:d3:
5a:46:2e:ce:d8:e7:60:32:1b:e1:00:82:64:75:c1:6f:1e:b4:
8a:ff:3b:09:63:32:c5:21:2a:04:00:1e:dc:70:6f:25:ab:d1:
3b:a9:1a:6b:7f:25:c6:8d:94:b2:e7:aa:4e:dd:20:4b:80:1a:
df:4c:2e:39:c8:ac:be:c6:7c:fa:63:6e:d7:99:a7:09:34:26:
34:70:76:3e:f0:60:df:1a:0d:79:be:2b:bd:de:2d:00:90:ab:
b4:56:d6:fc:d5:96:ef:e4:fd:36:9c:f3:e5:b5:4d:5b:a5:48:
f2:02:94:7e:51:a6:d6:8a:d4:0e:ab:59:e2:76:9d:f7:08:1b:
7c:81:90:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 03:59:38 2025 by rpki-client