Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/YSuyIyyNeoYh_NYcoqjnuFZKC3A.roa
File: YSuyIyyNeoYh_NYcoqjnuFZKC3A.roa (raw, json)
Hash identifier: DaaKXDZPW14OHlzQ+Sw3jXaflR2ul2rziMmzTr3zDi0=
Subject key identifier: 61:2B:B2:23:2C:8D:7A:86:21:FC:D6:1C:A2:A8:E7:B8:56:4A:0B:70
Certificate issuer: /CN=A61402819401D363CB1F9BFBD538875F41F211C3
Certificate serial: 0C57
Authority key identifier: A6:14:02:81:94:01:D3:63:CB:1F:9B:FB:D5:38:87:5F:41:F2:11:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phQCgZQB02PLH5v71TiHX0HyEcM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/YSuyIyyNeoYh_NYcoqjnuFZKC3A.roa
Signing time: Mon 10 Feb 2025 14:21:40 +0000
ROA not before: Mon 10 Feb 2025 14:21:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 56179
IP address blocks: 211.76.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3159 (0xc57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A61402819401D363CB1F9BFBD538875F41F211C3
Validity
Not Before: Feb 10 14:21:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=612BB2232C8D7A8621FCD61CA2A8E7B8564A0B70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3f:68:2f:5a:5b:84:be:5a:ec:a3:6d:a8:4c:
82:ac:52:6d:42:e8:db:63:2c:c4:1f:c2:be:ef:84:
05:e0:19:98:2a:01:98:1b:56:f4:40:f0:95:81:14:
0e:e6:7c:42:df:ad:b7:3d:40:83:55:fc:de:ba:c0:
9a:1d:5e:27:97:d6:76:6c:5c:63:cf:35:22:c8:5b:
05:09:01:ba:00:eb:ba:41:f5:2d:ff:8c:1f:d3:8c:
c2:78:c3:10:cc:ea:66:62:fb:48:93:24:e2:88:2b:
74:f1:36:9a:cd:fc:9c:fa:76:0a:bf:a4:ae:56:36:
a1:37:ea:90:0a:62:4d:b3:12:da:92:8a:82:3d:71:
54:47:21:ee:8a:d1:aa:e1:72:ea:ac:b9:0a:82:bd:
27:bf:33:be:bf:e3:44:dd:bf:c0:1e:96:09:c2:37:
07:35:f8:bb:c7:2a:47:a4:cf:2f:d0:4b:a0:8f:c3:
0c:c3:e4:68:39:65:03:4b:e9:8a:33:12:d8:22:b8:
d0:aa:58:ac:57:76:d0:5b:e4:c9:19:c7:96:d9:39:
b9:ce:76:e9:04:94:90:f5:2c:6a:33:5f:16:ca:25:
75:bb:89:24:3e:9c:90:f6:e0:3f:c2:4a:6f:0b:08:
11:3f:73:e4:9e:a7:68:6e:4b:9f:02:c1:da:26:2d:
f3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:2B:B2:23:2C:8D:7A:86:21:FC:D6:1C:A2:A8:E7:B8:56:4A:0B:70
X509v3 Authority Key Identifier:
keyid:A6:14:02:81:94:01:D3:63:CB:1F:9B:FB:D5:38:87:5F:41:F2:11:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/phQCgZQB02PLH5v71TiHX0HyEcM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phQCgZQB02PLH5v71TiHX0HyEcM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYMPHOX/YSuyIyyNeoYh_NYcoqjnuFZKC3A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.128.0/20
Signature Algorithm: sha256WithRSAEncryption
9a:11:92:5a:92:81:f9:58:c0:c1:04:1f:ad:f3:38:dd:cb:4c:
f0:eb:be:27:39:bc:a5:1e:4d:29:24:05:fa:c8:0d:74:c1:a3:
b9:10:99:c8:92:d3:ef:92:3a:0a:ca:b4:23:b1:fa:93:f9:ea:
46:d4:62:64:99:8d:64:71:c6:6c:71:7e:f7:ed:12:a7:41:86:
74:60:93:8f:bc:51:23:9e:ff:ef:9a:9f:8d:4e:9d:60:62:62:
a5:b6:85:0c:f1:13:bc:04:16:51:5a:e9:4f:cb:c4:c0:04:44:
af:5c:35:10:22:6b:6d:b0:25:20:2d:f9:93:b5:c0:87:fe:93:
9b:eb:35:60:32:06:a2:24:9e:1c:93:d6:62:ad:8b:d1:b4:d1:
45:e5:50:20:7d:2c:5d:3e:27:55:68:b5:b9:18:48:67:fa:e0:
6e:6d:60:02:20:01:e5:c3:18:78:a8:f7:33:ce:8a:58:89:08:
69:c0:2d:ff:4b:d4:c5:bd:f0:c9:25:92:10:49:8e:07:dd:2f:
14:99:77:d1:1a:9c:27:81:09:a8:3f:a1:84:d7:75:96:de:ba:
d9:75:68:e1:b6:6a:e2:53:75:18:a1:44:91:d2:0c:e1:a6:24:
bd:6c:c7:99:8f:15:48:3a:90:3f:57:93:c0:2e:ff:32:9a:ee:
ae:e7:96:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:50 2025 by rpki-client