Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/ZQrcQa5tvi4ndDbBv7FmvAGO_ao.roa
File: ZQrcQa5tvi4ndDbBv7FmvAGO_ao.roa (raw, json)
Hash identifier: Sjc9TolKdn/M+hiZRLfx3Isk74JJtk+DjR8UfnARZkk=
Subject key identifier: 65:0A:DC:41:AE:6D:BE:2E:27:74:36:C1:BF:B1:66:BC:01:8E:FD:AA
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 013F
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/ZQrcQa5tvi4ndDbBv7FmvAGO_ao.roa
Signing time: Mon 10 Feb 2025 14:23:57 +0000
ROA not before: Mon 10 Feb 2025 14:23:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 205329
IP address blocks: 36.50.248.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319 (0x13f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Feb 10 14:23:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=650ADC41AE6DBE2E277436C1BFB166BC018EFDAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e3:fb:24:91:38:ac:89:01:69:c7:eb:2a:4d:
9e:53:a0:48:bd:5e:b7:fa:36:c4:d2:28:12:06:bb:
90:11:cf:68:1c:fe:8a:c8:c1:10:c9:4f:0b:21:0f:
b4:34:47:72:a4:4c:46:31:ba:b3:70:96:32:93:6a:
69:18:69:1e:a3:7e:4d:82:38:b3:d0:79:77:58:01:
3e:30:d3:94:f3:c1:03:f9:de:24:2d:d8:3d:89:ca:
f1:74:10:8d:cc:9a:ff:c4:3c:8f:90:bc:35:e0:65:
12:40:31:52:73:9a:0d:a2:1f:09:d7:f2:db:f0:60:
27:3b:62:83:a2:96:98:6d:9f:43:01:26:21:65:f2:
24:29:26:0b:eb:b2:29:22:d4:e2:19:01:44:4c:d9:
80:11:ef:eb:b3:51:ff:51:e9:c9:75:75:40:54:29:
3a:c5:70:2e:69:2a:a3:e7:90:32:a9:89:7b:d5:85:
0e:fc:ad:9f:b5:53:a2:a0:13:e2:5e:f3:81:58:ea:
59:d6:74:7c:7c:36:7b:9e:1d:6f:1c:74:47:04:41:
b6:14:ce:72:8b:3c:f1:0e:a2:16:8f:67:75:49:fc:
c1:62:54:ea:d0:90:4c:1b:79:52:84:4f:43:c4:68:
0b:ac:17:fb:7e:69:da:0a:9f:f4:8d:cd:d3:56:6f:
51:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0A:DC:41:AE:6D:BE:2E:27:74:36:C1:BF:B1:66:BC:01:8E:FD:AA
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/ZQrcQa5tvi4ndDbBv7FmvAGO_ao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.248.0/23
Signature Algorithm: sha256WithRSAEncryption
68:10:c5:18:bd:ce:cd:db:88:b3:da:8e:9d:2c:61:5b:07:1c:
ab:51:7b:13:2a:09:10:66:80:67:0d:3b:14:4a:9e:1c:2f:a9:
64:82:61:d8:2c:38:10:0e:bf:eb:d0:09:22:a1:b6:ac:d6:ca:
20:6a:9a:13:40:1a:64:03:2b:36:6e:7b:45:2e:b2:db:68:fa:
48:eb:18:57:0d:f2:16:c8:ad:75:65:15:8a:7d:a3:2d:c0:57:
46:d9:71:38:6f:7e:6f:0e:ff:95:12:9e:38:88:89:1b:7d:47:
37:3d:eb:de:a7:d8:40:e0:75:a2:e8:94:a5:1e:34:4d:b6:d2:
29:8b:11:cc:a1:2f:3f:60:1d:b0:36:33:f8:03:74:62:ef:fa:
db:9a:db:ae:4b:5b:71:9e:d4:08:31:74:27:fc:a9:f0:a3:58:
98:00:21:c0:6f:da:e2:64:ac:1b:bc:8c:8b:80:e1:fd:f1:9c:
3d:36:ea:8c:0d:90:5a:06:1e:35:b9:24:73:2e:83:69:a3:6e:
34:9b:f9:17:bf:55:af:4e:12:ca:96:7d:49:56:ec:bc:f3:a1:
60:a5:5e:9b:67:02:ea:4d:db:6e:43:11:d2:b4:45:14:f9:a6:
9c:b4:5e:46:cf:9e:3e:14:ba:4f:b8:a7:e5:22:0a:38:5c:ec:
97:ab:d6:71
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 11:28:14 2025 by rpki-client