Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/2J6y7QQyUuPDuThPxITvhchhvGw.roa
File: 2J6y7QQyUuPDuThPxITvhchhvGw.roa (raw, json)
Hash identifier: cquIH1YoewPPhtc+UC5q2xjer+XJFiF9X9ar/1bNark=
Subject key identifier: D8:9E:B2:ED:04:32:52:E3:C3:B9:38:4F:C4:84:EF:85:C8:61:BC:6C
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0CDD
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/2J6y7QQyUuPDuThPxITvhchhvGw.roa
Signing time: Mon 26 Aug 2024 05:26:18 +0000
ROA not before: Mon 26 Aug 2024 05:26:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3293 (0xcdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 26 05:26:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D89EB2ED043252E3C3B9384FC484EF85C861BC6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:cc:38:9b:5a:03:07:f2:5e:91:e2:ca:89:c4:
38:e0:0c:6c:44:50:98:a5:24:f4:07:4a:7a:64:d8:
1c:0f:99:4d:3f:b6:61:3a:3c:95:a0:33:92:3b:24:
c2:6c:2b:9d:95:fd:5f:37:eb:ac:8d:6c:c1:5f:4f:
2d:dc:a5:72:eb:1e:1f:3f:b7:db:cf:32:2c:98:ce:
e1:34:19:82:a9:c4:3a:a8:e1:f1:9c:25:9c:57:76:
bf:2a:80:e3:2e:44:e5:d9:93:1f:21:68:35:d7:b1:
16:87:8a:e9:32:20:70:7e:b0:85:fb:9f:8e:68:e1:
ff:60:7a:8b:e2:5b:c8:20:ed:af:48:fc:be:da:b1:
b9:df:d0:53:42:e9:0b:86:f3:2c:7d:56:5c:10:17:
3d:b2:ad:c0:4c:c6:67:da:d5:8c:4a:5f:bf:1d:91:
2a:e5:5b:c5:43:3d:fc:7f:7e:1d:fa:34:a8:30:cb:
a0:c1:de:e6:85:7d:15:31:38:1c:53:c9:5f:07:47:
37:c1:9a:14:c9:6f:03:d6:8e:e1:a6:9b:a1:75:cd:
b5:0c:6e:55:eb:38:3d:de:62:8a:fd:0f:28:c6:13:
a7:0a:07:f9:8d:29:46:0d:74:7e:77:b5:ee:bc:c9:
ee:97:63:ad:fa:ad:c8:7f:3f:f1:70:26:8a:d6:45:
49:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9E:B2:ED:04:32:52:E3:C3:B9:38:4F:C4:84:EF:85:C8:61:BC:6C
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/2J6y7QQyUuPDuThPxITvhchhvGw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
67:f8:c7:64:a9:c0:a0:b3:20:2d:20:50:fe:2f:5f:68:2c:fb:
13:10:3a:35:e0:7c:db:56:56:a6:a6:88:d0:76:af:5e:4c:8e:
94:b6:b7:79:2c:47:1c:05:14:59:fd:cb:4f:6a:61:74:78:7c:
07:0b:34:32:09:59:a6:10:bf:e1:4f:31:a7:13:8c:a6:6e:8f:
c3:92:73:da:f4:8e:e0:9f:1f:6c:8b:18:78:a3:9f:35:96:fd:
5b:b6:32:89:38:d2:88:57:71:b0:ac:fd:7c:ee:c8:87:b4:18:
c2:34:30:b9:11:e4:f6:55:7a:fb:23:1a:87:8f:05:04:07:2d:
22:9b:e4:c6:81:87:29:28:5d:1f:98:0c:56:a6:74:63:4d:53:
8e:a5:f1:3c:a8:20:16:27:5a:e9:a5:09:86:c0:fe:85:33:8a:
b6:e2:f9:ed:f5:a2:8c:3b:0f:83:f9:4a:3b:25:6a:67:a4:87:
13:ea:e1:7b:d7:bc:13:82:dc:ec:63:57:9c:43:e0:c3:cf:b8:
ca:d1:3f:e2:99:13:5d:7e:35:b9:41:a6:28:15:10:31:54:7d:
2a:b7:ac:0a:f4:8a:51:bf:e4:ed:1b:c0:c4:ad:01:46:33:a0:
c3:be:d5:91:1f:8b:0e:ea:18:ac:ec:bd:24:a6:9a:26:cc:5e:
06:8a:a2:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:48:06 2025 by rpki-client