Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/lp0ow6Xsllc39h4Pfchw5xCS8og.roa
File: lp0ow6Xsllc39h4Pfchw5xCS8og.roa (raw, json)
Hash identifier: 9CTXtH3B19Uk5UqVfYXiQYjSw1D8IzvJ0k7vYNMiGOA=
Subject key identifier: 96:9D:28:C3:A5:EC:96:57:37:F6:1E:0F:7D:C8:70:E7:10:92:F2:88
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0DA0
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/lp0ow6Xsllc39h4Pfchw5xCS8og.roa
Signing time: Mon 10 Feb 2025 14:06:07 +0000
ROA not before: Mon 10 Feb 2025 14:06:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18042
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3488 (0xda0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Feb 10 14:06:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=969D28C3A5EC965737F61E0F7DC870E71092F288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:a9:0f:9e:f9:d6:25:57:b9:49:f7:7a:be:
72:3c:a9:26:2e:c1:00:28:f6:0e:a7:da:6b:4f:85:
24:de:d3:b1:53:d9:1b:c9:8c:ec:21:01:2b:a3:70:
d5:a9:72:61:cf:6d:2b:53:73:84:85:a6:b5:2a:9b:
05:b3:6d:70:b7:c3:7c:bb:65:b3:56:60:53:69:54:
c7:54:12:ac:30:3d:ab:e6:3f:f2:74:27:ce:4f:36:
e5:26:be:b0:55:ee:72:6c:5f:ab:76:39:6f:8f:1a:
3a:06:3e:34:85:9a:ee:14:b3:dc:ca:5a:d1:84:8b:
22:19:7e:93:d0:58:2f:51:05:f9:6d:a4:96:29:f8:
99:54:f2:a5:48:4e:67:ea:36:e0:e0:1a:9b:0e:13:
d1:1b:18:1b:12:4d:b2:c2:f5:35:28:2e:44:fd:ef:
e5:25:d8:ff:75:b6:e1:dc:73:82:07:e2:65:c9:9d:
8a:c6:e6:c8:45:53:3b:fa:f4:92:3a:dd:2a:52:6c:
d0:7c:9d:c3:a4:ea:ae:e0:cd:f2:d0:be:98:32:1a:
9e:3e:3a:63:6d:90:6d:cf:30:00:60:11:b2:0f:80:
6e:19:a7:3b:12:0d:2d:4a:2c:b4:67:c3:a1:51:68:
63:d2:df:65:9d:b6:a8:c6:1e:20:3e:32:88:34:0b:
f4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:9D:28:C3:A5:EC:96:57:37:F6:1E:0F:7D:C8:70:E7:10:92:F2:88
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/lp0ow6Xsllc39h4Pfchw5xCS8og.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a6:aa:26:70:bd:23:f0:11:f2:f0:04:8c:a5:61:00:a1:de:43:
4e:f4:41:85:67:c2:0e:ea:2a:28:f9:69:56:ca:b4:a2:7b:0c:
69:5a:a7:57:9e:4e:4d:8b:e8:5d:bd:16:89:75:54:c9:73:37:
09:bc:8b:30:d7:3f:ef:56:d3:ee:01:c7:56:95:2b:29:09:a1:
6a:b0:0f:9b:2c:a4:a0:ba:16:bf:00:a5:f6:e2:80:d1:80:07:
fb:12:9b:a7:0b:19:28:20:03:25:57:54:94:b5:66:fa:6c:39:
8e:5c:5f:22:25:ee:f7:24:a1:cd:0e:2a:0c:36:8e:88:17:74:
4a:a0:9b:86:20:ee:bb:cb:2c:39:ed:61:2f:6b:97:e6:8b:f9:
a2:c6:25:1c:38:81:c3:02:d5:e3:0f:a1:74:99:05:90:41:61:
5c:b3:41:b0:4a:2f:d2:21:e7:53:be:0a:a5:1e:8c:b6:87:54:
51:5b:6f:d4:6b:b3:34:ed:c9:ed:0e:fa:23:c2:2f:e6:90:d2:
8b:4a:17:4f:1d:e1:ff:80:48:9a:3b:79:3e:2c:64:e6:b2:49:
ea:f8:45:a4:7a:73:59:af:ba:c2:78:17:36:19:d0:aa:91:2a:
95:f0:92:78:72:ad:0b:2c:cc:33:3b:71:cc:58:1c:c6:7e:e5:
a5:c3:1f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:34 2025 by rpki-client