Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/-L1NfcVyIo4fF6KC0OJowZlKcUY.roa
File: -L1NfcVyIo4fF6KC0OJowZlKcUY.roa (raw, json)
Hash identifier: MIzGQM3GPFfTv74S7Ss6xJ5UhEKjkdzQMsxd3MalCeI=
Subject key identifier: F8:BD:4D:7D:C5:72:22:8E:1F:17:A2:82:D0:E2:68:C1:99:4A:71:46
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DE4
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-L1NfcVyIo4fF6KC0OJowZlKcUY.roa
Signing time: Mon 26 Aug 2024 05:27:17 +0000
ROA not before: Mon 26 Aug 2024 05:27:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17713
IP address blocks: 140.117.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3556 (0xde4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F8BD4D7DC572228E1F17A282D0E268C1994A7146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:48:58:f4:0b:c8:43:7a:3f:6e:f8:73:d0:4f:
52:b8:29:05:78:bc:94:9d:03:02:aa:18:a3:43:41:
11:1d:07:d5:b6:dd:ac:d5:ad:27:30:e5:57:b0:6e:
b9:5d:16:42:7b:59:c1:5e:40:86:8c:52:01:43:3d:
4f:c4:ff:b9:41:2d:86:d8:01:67:52:39:4f:c3:da:
11:9d:49:3f:93:f3:39:50:e4:00:c3:58:c5:dc:23:
4c:89:63:a5:27:d4:3e:4a:dd:28:38:ed:2a:e4:60:
90:ed:36:a7:63:26:0f:55:65:a7:27:e7:62:cb:36:
16:0c:e5:2e:df:99:21:86:1e:fa:38:a3:a7:18:51:
c6:35:25:90:6c:ce:9c:13:4d:8b:ce:ab:c1:18:ea:
cc:cb:d9:dc:d3:df:63:23:6e:be:af:31:72:69:ff:
61:f5:67:39:6c:cb:4a:ac:81:98:eb:94:7f:f1:c5:
38:8d:2d:88:3a:41:e6:8c:0a:78:2c:dd:74:c2:bc:
3a:92:35:34:af:e5:d9:6f:d5:62:92:45:c4:5a:e3:
a4:71:b1:f7:a9:08:c1:ae:ba:0a:12:c7:d5:67:0c:
51:66:2a:9a:29:8c:3c:74:3a:aa:0b:88:9c:bc:17:
c2:57:38:8a:5c:47:6f:e5:99:11:e8:ba:61:4f:e1:
0d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BD:4D:7D:C5:72:22:8E:1F:17:A2:82:D0:E2:68:C1:99:4A:71:46
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-L1NfcVyIo4fF6KC0OJowZlKcUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.117.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2c:69:50:b2:50:7d:90:1f:cb:0d:ab:c9:a1:c5:af:5d:26:8d:
40:fa:3e:dc:89:22:15:e2:a7:99:e5:6c:9d:25:7d:3b:9f:99:
ca:02:ca:8d:05:71:25:25:fd:d5:ae:25:76:28:d3:40:7b:27:
2f:d2:ef:86:23:bb:78:6c:b2:5e:af:6f:ca:27:15:6d:21:ce:
d5:37:0f:de:ba:48:69:11:6e:a3:36:00:a0:fe:d4:f2:fd:09:
b5:10:72:01:bb:85:db:ad:52:78:4f:fb:51:f1:cf:1f:e4:2e:
2c:fb:23:66:ef:e9:10:22:06:2d:22:ab:16:54:d6:53:1b:92:
f9:0b:32:dd:5f:60:89:33:15:94:53:06:20:b5:f0:dd:b2:e4:
af:96:78:8c:dd:74:ba:8b:81:0c:14:bf:2a:91:90:53:5a:ab:
bd:c6:2a:33:de:50:de:22:de:ec:91:12:d4:7f:30:c5:7c:df:
d6:db:96:4c:84:88:98:4e:04:7d:13:93:ec:c6:79:1a:0c:3f:
4b:fe:ed:d2:0c:75:f7:9d:55:01:cb:ad:4b:3c:4a:c9:23:27:
e1:6a:c0:0f:0b:f2:3a:5e:c8:f0:9f:5c:7d:b9:6a:e0:d6:c0:
43:2e:e8:74:53:42:fa:34:14:3d:c9:be:4f:1a:3f:86:9c:9e:
14:9b:95:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:33 2025 by rpki-client