Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/5D2qfwB8pB2sd_UBIPc-dHvA-Zk.roa
File: 5D2qfwB8pB2sd_UBIPc-dHvA-Zk.roa (raw, json)
Hash identifier: pqQPXpp09Ms67qUgiMxYn3CCM3mablGJ0Q8TEsEI/+8=
Subject key identifier: E4:3D:AA:7F:00:7C:A4:1D:AC:77:F5:01:20:F7:3E:74:7B:C0:F9:99
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EFC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5D2qfwB8pB2sd_UBIPc-dHvA-Zk.roa
Signing time: Mon 10 Feb 2025 14:16:16 +0000
ROA not before: Mon 10 Feb 2025 14:16:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 210.60.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3836 (0xefc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E43DAA7F007CA41DAC77F50120F73E747BC0F999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ca:6f:5a:aa:39:e2:17:0b:71:e7:61:21:01:
fa:fa:47:4d:ae:c0:2e:63:c7:ce:03:5d:f4:61:12:
b5:a2:2d:d3:93:3b:c4:4d:83:9e:9c:9c:02:7c:5f:
32:34:91:ba:30:94:0f:32:85:b9:f0:6b:1b:88:36:
96:03:be:0f:d3:ee:53:f3:4c:0a:39:7a:15:63:aa:
df:5f:13:46:0e:56:26:5d:51:be:60:e0:f9:9a:57:
20:ac:a9:fe:d4:39:ac:67:82:56:7a:98:d3:df:36:
52:4a:df:90:75:e3:12:45:f9:88:6c:69:75:5a:11:
f8:3d:48:02:34:03:c6:f4:6f:29:f4:12:07:65:f1:
c7:dc:df:01:00:4e:ee:09:88:0d:8d:9d:88:ab:99:
6e:12:f4:03:74:84:5f:62:c2:70:ee:2d:29:cf:37:
09:59:db:37:a1:2c:34:aa:b6:15:84:bc:80:c1:68:
48:90:cc:06:c4:4c:0c:6b:8b:17:be:63:46:29:77:
40:f2:43:6e:8e:20:61:87:f9:11:95:dd:eb:13:6d:
2f:ae:22:04:dc:42:65:29:17:72:68:50:b2:2c:92:
ca:c6:c3:cb:7b:7b:36:74:5b:f0:40:7c:0b:40:3c:
dc:72:6c:34:78:8d:5a:63:43:2a:20:95:53:20:50:
8c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3D:AA:7F:00:7C:A4:1D:AC:77:F5:01:20:F7:3E:74:7B:C0:F9:99
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5D2qfwB8pB2sd_UBIPc-dHvA-Zk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.0.0/16
Signature Algorithm: sha256WithRSAEncryption
39:e3:19:bb:89:e9:6f:28:90:1c:eb:41:f5:fc:56:4a:e0:5d:
ac:9c:21:a6:80:9b:0b:89:32:3e:3e:6b:92:64:a7:4a:eb:67:
87:5e:2c:b9:1d:e4:e7:94:88:38:3a:9e:d4:94:ba:91:87:66:
1c:3e:1e:2d:ff:39:96:f4:df:de:cc:c5:47:f1:95:64:97:2d:
44:90:cb:14:13:04:75:31:55:06:02:e5:b3:5d:56:51:c7:e8:
9a:3a:35:e3:35:4a:b2:21:58:08:f7:fb:15:8d:0d:9e:a8:ee:
7e:fd:3e:53:46:58:95:34:4f:f3:81:15:6c:7a:b8:ee:72:f3:
02:98:38:3c:02:19:e1:85:7c:38:c3:da:c7:99:6c:02:7f:cb:
dd:7d:be:25:38:a5:63:98:a3:33:21:e9:33:df:61:1f:c3:08:
9b:79:7a:d9:30:b5:45:6c:94:81:2b:f2:25:ce:0c:0a:eb:12:
e9:b9:6e:f2:6c:c3:14:55:92:99:19:42:70:eb:cd:7b:b8:d7:
98:ac:19:ad:56:8a:4f:b4:b4:bf:b0:31:c1:89:14:6c:97:d4:
62:c2:c4:29:5e:20:db:c0:6c:d9:58:a5:01:31:56:54:95:aa:
9d:68:94:17:cd:06:a2:52:d1:70:a5:d4:5b:c7:07:ee:d6:c1:
51:36:24:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:39:11 2025 by rpki-client