Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/-PBdU9fofnyz-kR_5_pZmjbJWNQ.roa
File: -PBdU9fofnyz-kR_5_pZmjbJWNQ.roa (raw, json)
Hash identifier: U3S0Fw81729lxdhqgOqN4hqvSDqNRD2N+ab7ArJELRs=
Subject key identifier: F8:F0:5D:53:D7:E8:7E:7C:B3:FA:44:7F:E7:FA:59:9A:36:C9:58:D4
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F07
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-PBdU9fofnyz-kR_5_pZmjbJWNQ.roa
Signing time: Mon 10 Feb 2025 14:16:19 +0000
ROA not before: Mon 10 Feb 2025 14:16:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.16.0.0/13 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3847 (0xf07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F8F05D53D7E87E7CB3FA447FE7FA599A36C958D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1c:70:c9:dc:86:e4:94:72:e1:0c:16:ba:f5:
35:34:ad:a8:12:dc:ed:43:98:74:97:b1:2e:25:6b:
51:7c:18:7a:9e:5e:a7:91:cc:31:f4:57:19:bb:6d:
5d:29:91:b8:9c:7a:06:d2:26:cd:63:92:4e:f8:df:
46:c8:da:27:3f:62:1a:61:2d:3b:f1:e3:11:7a:8c:
d3:df:82:e8:e8:e7:39:2b:06:5b:66:f6:44:d9:79:
5a:9b:d2:ab:4c:21:6c:03:9a:a9:c7:40:88:85:30:
3b:08:89:79:02:6d:75:30:54:2e:2f:f1:60:b7:3c:
8f:d4:6d:46:6e:08:4e:f8:9c:7e:f6:bb:19:e1:04:
c8:f7:45:7b:65:9c:af:38:c2:ce:54:ef:c3:7a:e1:
47:09:0a:05:db:9d:2f:cb:43:9c:86:17:fe:0a:e6:
26:fb:13:5b:7e:8d:a0:03:20:59:d8:6b:69:50:44:
1b:18:7a:d0:6e:2d:84:3e:8f:ec:48:b7:b1:63:4a:
77:72:60:5e:b4:d2:65:34:6e:bd:ee:18:0c:ef:e3:
f3:d0:10:2d:22:5e:f9:83:1d:83:bb:54:45:eb:d5:
9b:d0:50:31:a0:54:59:cc:66:23:9f:44:6e:f7:06:
5f:d6:38:19:b4:50:2a:78:83:99:d7:47:dd:ec:68:
22:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F0:5D:53:D7:E8:7E:7C:B3:FA:44:7F:E7:FA:59:9A:36:C9:58:D4
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-PBdU9fofnyz-kR_5_pZmjbJWNQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.16.0.0/13
Signature Algorithm: sha256WithRSAEncryption
67:3c:a1:7d:dd:b3:86:e4:aa:79:24:28:d0:52:20:0a:4c:ed:
12:f9:0f:29:97:31:8e:24:f6:cb:86:10:e0:4a:0d:c1:84:27:
a8:43:fb:7c:8c:d8:72:fb:2a:dc:bd:34:c9:57:39:cf:65:15:
cc:e8:6e:bc:ef:15:8d:2c:fd:f4:a3:9e:19:7b:ad:58:c5:4a:
16:67:20:1d:d6:f0:02:24:08:f8:97:83:a3:54:19:be:6b:5b:
1d:eb:71:2b:c8:5e:b7:34:c4:ae:bc:61:10:7d:d6:d9:ee:e9:
22:8a:3b:97:4d:a3:f2:09:9b:1e:e8:0d:76:db:aa:e6:96:b3:
fc:10:b1:d6:a1:2b:64:88:31:de:2a:f5:ce:e2:7b:3a:5b:0f:
87:ab:3e:bd:0a:80:10:29:64:c6:77:15:47:c3:ce:df:aa:b6:
75:08:46:ea:38:d1:f4:3a:1c:bb:a8:c3:58:ce:75:e5:36:35:
bd:ae:3d:58:ce:53:5e:65:eb:1f:89:a6:6c:a5:29:b9:ca:e4:
92:d8:7a:65:f8:5e:03:2f:85:36:53:29:42:17:4e:2b:03:ae:
76:31:07:84:52:23:1f:63:97:83:db:1e:9b:be:d0:30:96:29:
54:8a:73:a9:92:46:1c:77:d5:b7:1d:c3:d4:92:75:17:bb:2e:
d8:c5:96:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:52 2025 by rpki-client