Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/0RiPsY5FYj3RHk7B_mS9wZ09mqE.roa
File: 0RiPsY5FYj3RHk7B_mS9wZ09mqE.roa (raw, json)
Hash identifier: ea8m34CBH0ZOqRWPKR7+MF7SGmP1lQ8LqYox08FFlfA=
Subject key identifier: D1:18:8F:B1:8E:45:62:3D:D1:1E:4E:C1:FE:64:BD:C1:9D:3D:9A:A1
Certificate issuer: /CN=4B46CE8F8031BAB75364DA5BD981E888504FB411
Certificate serial: 029A
Authority key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/0RiPsY5FYj3RHk7B_mS9wZ09mqE.roa
Signing time: Mon 10 Feb 2025 14:04:46 +0000
ROA not before: Mon 10 Feb 2025 14:04:46 +0000
ROA not after: Wed 08 Oct 2025 15:30:28 +0000
asID: 62517
IP address blocks: 160.187.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666 (0x29a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411
Validity
Not Before: Feb 10 14:04:46 2025 GMT
Not After : Oct 8 15:30:28 2025 GMT
Subject: CN=D1188FB18E45623DD11E4EC1FE64BDC19D3D9AA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7b:8a:bf:e4:ff:e5:8c:31:63:ff:fe:a3:5c:
e6:df:c8:56:9d:c0:ad:02:5e:3f:9a:95:c1:42:64:
eb:25:f1:8e:33:b3:64:7c:2b:a0:45:4d:dd:8f:79:
ad:de:f8:fc:11:56:49:85:e8:7d:35:28:38:24:9f:
4f:3b:d8:0e:b0:cc:ef:1a:31:25:c2:44:d6:da:59:
9c:5e:3b:d4:2a:4b:3a:19:f5:37:64:9e:0b:2e:6d:
a1:7b:46:48:ae:df:86:82:57:f7:ef:f3:20:fd:29:
59:60:2a:30:6e:03:29:e5:28:1a:80:76:80:ba:8b:
fd:92:80:46:bd:08:db:66:70:53:ca:67:ef:69:55:
27:45:d1:7a:53:6b:b9:8b:69:f5:a6:23:86:03:64:
5f:35:94:cb:b2:37:d7:39:51:36:b9:62:e3:da:f2:
98:e3:d0:42:fe:dd:77:20:ce:06:a9:98:4e:8d:d6:
18:e7:b7:fd:cc:f4:0d:de:82:22:12:9f:71:56:0d:
60:e6:ca:c5:67:12:db:6e:55:f7:e8:8f:94:cc:a4:
dd:41:ce:54:b3:9a:ed:3e:50:c4:c0:bf:c5:5b:5c:
97:f7:92:c8:7a:ed:ed:a7:17:34:76:bf:5f:89:e1:
bc:72:db:23:cb:58:29:ab:4d:75:01:36:f4:7d:9a:
cb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:18:8F:B1:8E:45:62:3D:D1:1E:4E:C1:FE:64:BD:C1:9D:3D:9A:A1
X509v3 Authority Key Identifier:
keyid:4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/0RiPsY5FYj3RHk7B_mS9wZ09mqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.201.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:3a:4b:96:20:d3:2b:1a:9a:c8:20:ce:73:6a:0c:ff:ac:cc:
0e:6c:fd:80:76:65:85:4a:e0:eb:69:0f:89:a6:23:06:01:00:
b3:d5:92:d1:41:c0:d7:ed:24:71:d1:db:47:3c:43:99:51:32:
d3:8f:d5:bf:9a:c8:06:f9:07:88:2e:db:b1:12:7a:de:e1:08:
f7:44:2f:44:49:ad:58:b6:ba:5a:0e:5b:69:67:08:d1:7a:5a:
d4:1b:d6:e7:7e:a6:07:c0:b4:00:7b:a5:47:fd:ca:b0:10:0c:
e1:20:f5:89:a5:7e:5c:e8:36:93:e3:01:9a:76:e4:c3:83:88:
06:89:0a:3f:d8:d6:6f:18:1f:a9:2a:5a:b6:d1:2e:3c:80:ef:
70:3d:a6:32:c1:5a:23:f7:e9:b0:b5:7a:3c:c8:88:bc:46:15:
3f:9f:4e:a7:a1:9f:e2:8b:89:fa:c9:0d:24:45:ba:83:cb:f7:
04:32:37:9b:b8:da:90:a6:87:4c:bd:44:bc:91:9e:81:c7:b5:
b0:45:c1:d4:c1:79:00:13:93:59:7a:94:1f:c5:41:75:47:58:
e3:63:4c:67:2c:70:f9:96:4b:12:84:4b:84:2f:71:f6:8e:ac:
35:73:0e:f4:e2:55:ef:6d:dd:4a:b3:21:e6:e1:dc:82:00:94:
3f:51:d9:33
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Apr 8 18:09:09 2025 by rpki-client