Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/DZ0OeRodGXE0Bywgb3lDiVnSlI4.roa
File: DZ0OeRodGXE0Bywgb3lDiVnSlI4.roa (raw, json)
Hash identifier: NFAUEyxLZxottrkLvvW/UbyO1BUFL8Fgj2PMQRG7h3U=
Subject key identifier: 0D:9D:0E:79:1A:1D:19:71:34:07:2C:20:6F:79:43:89:59:D2:94:8E
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 010E
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/DZ0OeRodGXE0Bywgb3lDiVnSlI4.roa
Signing time: Wed 11 Dec 2024 15:57:59 +0000
ROA not before: Wed 11 Dec 2024 15:57:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 32595
IP address blocks: 36.50.249.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 270 (0x10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Dec 11 15:57:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0D9D0E791A1D197134072C206F79438959D2948E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:e1:46:10:2d:da:38:a6:fe:6a:54:94:2d:
ae:6f:88:45:e0:08:7a:3c:9c:a6:f4:7e:6c:c6:98:
90:01:2e:fb:cb:c9:7a:3a:ed:d7:b0:ce:09:48:de:
2b:25:3a:99:9c:e4:5f:ee:a9:96:70:5d:c8:d3:a6:
f5:b8:f5:39:b0:2d:da:c1:50:2c:c8:ee:23:99:02:
ff:c3:5c:53:25:7a:e1:18:d4:4e:05:11:38:a3:6c:
97:31:70:82:fe:bb:42:70:30:8f:93:13:fc:dc:46:
7d:d5:fc:78:fa:80:54:b4:e5:08:7e:4d:bf:33:41:
d4:0c:46:d5:0a:9d:c4:95:0f:62:ca:25:b7:cc:93:
4f:94:84:80:c3:bb:99:73:de:04:70:40:65:a1:cb:
3e:7e:b8:03:b8:9e:ad:3e:2e:2f:bc:f8:f7:12:ce:
3e:63:6d:94:96:45:ea:21:eb:9d:c8:9e:22:99:f1:
5d:cf:94:62:4c:5d:90:9d:ef:ec:69:6c:e7:27:0f:
06:21:6b:f2:47:09:83:fb:85:e1:9d:ff:e7:9a:9e:
6e:8c:70:2d:b5:00:b2:9b:9c:37:4a:e2:46:cb:4d:
0f:c7:b5:b4:6d:1d:d3:8d:ed:36:83:f1:68:a7:c9:
4c:8e:4c:10:43:fd:19:1d:9c:bf:f5:82:d8:81:ef:
99:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9D:0E:79:1A:1D:19:71:34:07:2C:20:6F:79:43:89:59:D2:94:8E
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/DZ0OeRodGXE0Bywgb3lDiVnSlI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.249.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ee:dd:c9:5b:97:01:d4:aa:5e:cd:e0:1e:f8:b8:a6:8b:cd:
86:ad:07:17:72:12:e8:1a:dd:fd:f1:12:53:8a:49:fb:ed:f5:
27:7b:86:10:98:c9:2a:07:ff:b5:ae:10:1c:fb:c1:3b:25:89:
9d:6f:85:94:fb:c9:6a:9d:09:2f:38:3f:f6:73:7f:e7:0b:62:
96:eb:42:67:b8:ba:8a:7c:6e:19:ca:f6:f5:9b:53:1b:7b:f6:
17:71:55:7b:f8:0c:34:4b:3b:f1:82:da:c4:ea:06:be:92:93:
9e:29:e9:55:e7:e3:01:c1:a7:5a:9a:6c:19:a2:0e:87:e2:9d:
ab:21:fc:31:16:c0:17:4a:ca:14:a0:19:f4:52:d9:c5:72:72:
b2:54:f6:3d:55:de:77:f3:03:cf:e1:8f:47:be:9b:d8:2a:c0:
3c:0a:3f:26:89:9d:96:15:9d:b5:3b:20:27:a1:d4:21:4a:27:
32:bb:39:5a:ab:30:92:c8:34:34:61:4b:47:fd:f2:12:71:a9:
11:8f:44:29:7a:4f:41:04:ab:f9:88:ee:f8:f2:74:53:ab:74:
bb:c3:cb:1f:4b:11:93:59:4a:2a:e1:c6:9b:3d:24:72:5a:38:
67:c6:1a:95:1d:45:a6:fe:85:94:d8:96:6a:83:1f:78:69:8b:
b4:49:c8:8b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 05:10:41 2025 by rpki-client