Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/4S0Rf3yknLIek5qO167x0s13tY8.roa
File: 4S0Rf3yknLIek5qO167x0s13tY8.roa (raw, json)
Hash identifier: 5dHW9CQZn66PKSQKZxKegP0pjT+B4S4GvFAby2Ng9AY=
Subject key identifier: E1:2D:11:7F:7C:A4:9C:B2:1E:93:9A:8E:D7:AE:F1:D2:CD:77:B5:8F
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0CD9
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/4S0Rf3yknLIek5qO167x0s13tY8.roa
Signing time: Mon 26 Aug 2024 05:26:17 +0000
ROA not before: Mon 26 Aug 2024 05:26:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3289 (0xcd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 26 05:26:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E12D117F7CA49CB21E939A8ED7AEF1D2CD77B58F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d2:a7:13:f5:08:7e:79:7e:29:5f:89:99:14:
49:36:b2:63:cc:de:07:ac:9e:9c:68:fc:e8:a5:cf:
a2:38:ff:64:43:26:d2:a2:f9:23:44:bf:87:5e:11:
76:ba:69:a4:82:3a:79:93:d5:84:14:f6:2b:8c:e6:
64:d9:96:36:b6:26:ab:88:2a:88:fa:24:0f:55:c9:
42:3d:e3:d3:3a:0f:16:d0:a5:d4:e2:67:95:ee:6b:
4a:fc:aa:53:4e:a9:28:4f:50:57:12:91:7c:75:9a:
12:a2:de:4b:f3:5f:82:c5:a4:7b:2a:02:66:f7:a1:
65:9b:90:09:4f:81:14:ba:a3:73:29:0f:0c:9d:bf:
3e:16:c8:02:2a:9f:71:8f:12:8b:07:64:6c:3f:ca:
63:07:e4:74:49:33:a5:4d:e0:eb:12:d9:3e:17:d2:
60:81:51:43:1b:bf:38:58:a7:94:74:cb:76:a4:67:
0c:b3:c3:2c:31:f2:5a:0f:be:23:90:a9:36:e8:c4:
23:31:79:59:b6:fa:97:b2:48:04:cb:dd:97:0c:ed:
cb:ae:c8:a0:6d:b5:ea:2c:3b:2a:a9:13:7d:06:c8:
a2:0a:37:50:96:3f:dd:57:99:92:2d:c3:78:8b:2c:
bb:91:c4:f4:73:0d:ae:0d:80:b1:bd:61:47:6e:1d:
2c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2D:11:7F:7C:A4:9C:B2:1E:93:9A:8E:D7:AE:F1:D2:CD:77:B5:8F
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/4S0Rf3yknLIek5qO167x0s13tY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
23:8e:3b:b6:93:fa:1f:19:98:64:f8:e7:82:11:4b:84:16:e7:
b9:b1:8f:64:a7:96:91:84:ec:80:5b:27:6b:f1:18:e5:f4:50:
77:7c:71:2e:a1:1d:63:94:91:96:6b:47:b2:02:3f:1a:2f:e4:
59:24:65:09:4c:02:91:1e:25:81:68:f4:a4:37:85:5a:49:30:
eb:9a:2a:67:92:e7:02:7c:48:0f:57:4e:81:a8:5c:3b:43:b1:
32:7a:31:0e:24:39:2d:96:67:03:1a:72:6b:e3:cb:db:d4:e0:
1d:f3:be:46:05:6e:73:5a:c5:dd:e9:fb:fc:d8:bf:d8:31:b1:
78:5c:f8:16:99:c4:01:ba:95:1d:6d:af:d7:53:5b:45:79:30:
7c:54:e4:8f:58:dc:e6:22:19:50:77:ad:cb:dd:9d:10:20:0e:
6e:53:83:ef:f2:8e:d9:c7:bf:28:88:ee:36:0a:ad:17:44:c7:
85:a8:f7:0e:65:73:27:fc:07:d0:1d:35:58:1f:b5:34:cf:84:
92:21:9e:0f:39:20:c1:92:ca:bb:91:69:c9:48:0c:0f:8e:a8:
6a:d3:4c:7b:cc:35:4b:76:b0:29:ad:a6:1b:12:57:bb:b9:c7:
d2:9d:10:19:9c:31:e5:0f:22:1d:7e:8e:92:ea:f0:14:d8:ed:
e3:a6:d1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:48:02 2025 by rpki-client