Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/5kj3J5jOc61OP9Hesi0hVHRZskQ.roa
File: 5kj3J5jOc61OP9Hesi0hVHRZskQ.roa (raw, json)
Hash identifier: CeiDWyQ8cZRPFG2ttnkXj2hkbnIysTmkZq7J38iqVQw=
Subject key identifier: E6:48:F7:27:98:CE:73:AD:4E:3F:D1:DE:B2:2D:21:54:74:59:B2:44
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EF7
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5kj3J5jOc61OP9Hesi0hVHRZskQ.roa
Signing time: Mon 10 Feb 2025 14:16:15 +0000
ROA not before: Mon 10 Feb 2025 14:16:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9916
IP address blocks: 120.126.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3831 (0xef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E648F72798CE73AD4E3FD1DEB22D21547459B244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:d8:3b:ed:c8:f3:3d:c8:23:8d:3c:2d:f4:
29:aa:71:95:99:cb:1c:9b:ae:b0:c6:c9:89:e4:09:
f9:2b:a3:83:6f:bc:47:cb:f4:25:a1:07:db:b7:23:
2b:d4:6c:bd:90:c7:7c:c5:0e:f7:20:6a:f7:fd:48:
00:73:2b:bf:9b:05:cd:af:f1:3a:b9:68:1d:a6:60:
2b:14:ad:5a:30:e2:83:c9:76:21:1e:f5:ad:8d:db:
85:8d:c9:1c:97:eb:66:9c:aa:c4:e1:15:7f:f7:7c:
7c:e6:6f:be:6d:0a:45:85:2c:cc:76:68:07:b5:95:
8f:2d:a4:75:e0:fe:52:c0:0c:a6:a7:b4:30:8c:b3:
31:ec:21:6e:20:2f:37:55:bc:1b:aa:28:95:e6:b3:
0f:31:61:fc:a7:66:53:aa:62:a0:63:17:9b:32:9c:
1e:0c:96:45:fb:81:fa:40:32:0b:64:c0:d1:ff:1f:
9a:93:e7:d7:97:41:cf:0b:c4:23:ea:26:86:9e:f9:
08:48:0d:20:61:66:01:f0:78:f9:0b:0a:a4:96:05:
26:f9:3b:bb:d4:6d:f5:f2:b0:34:41:4e:18:0c:d0:
5c:5b:1e:ba:eb:4a:02:97:2e:9b:b0:04:17:85:e5:
21:d0:9d:50:13:97:d7:01:39:39:ac:84:5a:dc:51:
4b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:48:F7:27:98:CE:73:AD:4E:3F:D1:DE:B2:2D:21:54:74:59:B2:44
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/5kj3J5jOc61OP9Hesi0hVHRZskQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.96.0/20
Signature Algorithm: sha256WithRSAEncryption
88:ee:df:e5:53:5b:67:04:fd:a9:7a:6e:0c:75:40:d4:33:f0:
b3:d0:42:bd:4b:10:9a:81:b3:f0:76:a2:ed:3c:ff:49:5e:d6:
b4:d2:f0:58:be:95:be:bb:c2:37:c1:8c:cc:11:a9:6c:72:4c:
c1:72:8a:e1:43:aa:ec:0b:53:41:12:9a:e1:3d:4e:44:6b:a8:
aa:e4:de:c1:66:8e:00:70:09:a2:d8:39:75:d5:04:2a:92:55:
ac:b7:a2:f4:5d:39:aa:b4:7c:eb:5f:5e:86:3b:4e:1d:15:a4:
cf:53:ad:41:71:74:20:52:56:1b:89:60:b6:7d:96:00:62:7f:
ac:fd:37:7b:d5:f1:a5:fe:6a:43:8e:85:7b:40:52:d0:45:2f:
10:55:6f:00:e8:35:4a:a5:5e:53:9f:bf:0f:20:38:bd:40:07:
94:92:71:9e:4d:ec:f1:01:e5:17:b2:ce:36:cb:fe:63:6e:f4:
b5:a3:ad:83:80:d3:1c:cb:f1:52:36:92:ca:ca:1e:d1:b4:48:
7e:7e:dc:bf:5f:b7:10:bb:d8:72:e5:de:1d:aa:1b:c1:6d:4d:
6c:f2:46:62:37:be:e4:b0:6e:12:09:97:ca:e7:b7:46:1c:93:
d4:d9:93:06:51:a5:3f:3e:7c:80:8a:e8:9a:08:6a:68:11:fd:
6f:43:6d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:31 2025 by rpki-client