Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/elNhJZb2hLl4XPYlqU3ogzzB2CM.roa
File: elNhJZb2hLl4XPYlqU3ogzzB2CM.roa (raw, json)
Hash identifier: p7UGRnIY+61/0ajZGnKLlyLEBTNcRhvi4lFw27G/bi8=
Subject key identifier: 7A:53:61:25:96:F6:84:B9:78:5C:F6:25:A9:4D:E8:83:3C:C1:D8:23
Certificate issuer: /CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718
Certificate serial: 8E
Authority key identifier: EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/elNhJZb2hLl4XPYlqU3ogzzB2CM.roa
Signing time: Mon 10 Feb 2025 14:13:55 +0000
ROA not before: Mon 10 Feb 2025 14:13:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 215470
IP address blocks: 160.30.99.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142 (0x8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718
Validity
Not Before: Feb 10 14:13:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7A53612596F684B9785CF625A94DE8833CC1D823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:57:8a:dd:07:7d:9b:59:66:a8:ea:a1:40:be:
5a:e4:b3:9e:5f:01:3f:e7:0f:90:b6:11:66:20:69:
bd:7b:e4:17:1f:70:86:d0:e8:97:3f:ca:fc:d9:b9:
1c:f4:be:65:a1:79:c1:89:8d:38:7c:35:39:1b:6a:
da:46:6d:c3:7e:36:af:7c:0b:33:c7:6b:00:ec:8a:
8c:ac:a0:87:fa:a0:b2:2d:89:45:61:96:56:a8:f6:
ba:08:ce:f8:20:8f:94:8b:54:cd:db:2a:9c:38:b1:
09:2b:ea:be:1c:fc:51:7a:da:e5:67:47:f7:d2:21:
3e:f6:96:a5:32:62:62:2c:eb:d3:6d:33:2b:34:ca:
fe:86:be:77:d3:eb:af:fa:20:69:ee:c3:e9:54:e7:
1a:81:27:a2:a1:73:4f:75:90:af:5a:36:63:34:b2:
ac:04:cf:27:ff:b5:9f:d9:81:91:fb:a8:c2:c6:40:
c0:c9:64:0c:19:a3:04:c2:3a:f3:21:f8:31:e8:c3:
37:01:1b:24:bf:4d:f6:6c:88:87:4b:5b:cc:9b:de:
7c:d4:54:f7:d3:f7:21:d9:98:e3:07:4e:1f:b3:1d:
ea:1d:8c:d7:60:04:8d:85:e6:a4:9a:76:af:75:51:
84:d6:22:3c:5a:2e:e9:f5:32:df:03:98:4f:39:41:
50:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:53:61:25:96:F6:84:B9:78:5C:F6:25:A9:4D:E8:83:3C:C1:D8:23
X509v3 Authority Key Identifier:
keyid:EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/elNhJZb2hLl4XPYlqU3ogzzB2CM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.99.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ee:bb:fc:d2:57:d1:fa:2f:8b:5a:a4:69:40:14:43:74:a9:
1a:ee:57:58:2d:54:3b:08:63:3c:6a:99:31:1e:db:da:8a:2f:
f9:a7:e6:a6:2b:08:e5:38:30:73:f9:56:af:55:89:a9:92:99:
85:0e:eb:9c:51:ac:5b:f9:f6:b2:9a:e0:79:e0:2a:60:76:c5:
24:38:76:0c:81:68:2e:64:c0:32:82:b6:6d:e6:08:00:9a:ae:
5f:ff:09:d9:ca:23:68:2d:40:3c:df:e7:f8:66:44:be:94:94:
68:41:b7:23:35:2a:0e:fe:6f:9d:49:bf:98:c8:f1:f6:3b:c6:
db:8d:77:6b:52:12:c5:bb:49:20:bc:ff:31:9a:08:31:08:f8:
12:a0:ce:41:d1:8e:63:fa:6e:34:ca:c3:45:ab:58:dd:b1:7b:
c1:26:97:d7:51:1e:5e:3d:eb:71:86:d4:0b:f1:5f:c7:40:82:
43:18:4b:96:3e:c2:4b:f8:42:01:40:79:ab:c7:30:ed:ed:dd:
83:0a:2d:0a:6f:70:6f:d1:44:e5:61:32:be:28:fc:89:fa:7d:
94:c8:5d:01:38:cc:b0:ab:33:81:be:9c:03:0a:82:8b:eb:d1:
aa:63:0e:34:26:be:b5:3a:fc:c0:11:65:81:fd:84:1b:3c:e6:
d8:c2:89:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:19:35 2025 by rpki-client