Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/6z9OrOvILjugeNuCY2ksmMDwZq4.roa
File: 6z9OrOvILjugeNuCY2ksmMDwZq4.roa (raw, json)
Hash identifier: ySSpNDMZ0NboJOA0NPBWwTLhHe+vWQ91sayH7KOUWyo=
Subject key identifier: EB:3F:4E:AC:EB:C8:2E:3B:A0:78:DB:82:63:69:2C:98:C0:F0:66:AE
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E57
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6z9OrOvILjugeNuCY2ksmMDwZq4.roa
Signing time: Mon 26 Aug 2024 05:27:16 +0000
ROA not before: Mon 26 Aug 2024 05:27:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.32.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3671 (0xe57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EB3F4EACEBC82E3BA078DB8263692C98C0F066AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1a:3b:9b:c9:55:3b:df:0b:38:83:b8:8d:87:
ef:af:a2:aa:fd:35:1f:b5:68:89:be:c3:f1:6e:2e:
b9:20:e2:f8:c1:b0:d4:73:c0:c9:62:ae:19:c3:0c:
77:64:c7:2a:92:79:a8:fe:5b:80:32:d7:91:4e:b6:
b7:eb:15:f7:e7:0c:76:0a:d4:e5:16:df:6e:69:92:
4e:7d:7b:0a:46:8b:ec:15:ba:ff:44:04:a5:93:ae:
bd:68:6e:65:68:0b:f4:72:62:61:b9:c5:cf:69:2f:
ec:87:bf:d3:51:39:ed:29:90:a0:b4:b8:e6:67:0c:
26:4b:9d:d5:21:a4:72:5b:a7:79:49:d2:35:db:fe:
44:bd:28:cd:bc:52:aa:e6:47:b2:3f:4c:ab:83:7e:
63:d6:c8:5a:0c:4e:ba:aa:ae:b2:3b:16:a5:a5:6d:
3d:23:66:35:7f:f2:5b:14:ba:c1:32:52:ba:90:54:
27:34:ef:7c:d9:58:10:aa:e5:6e:60:fb:c2:31:e3:
dd:87:c1:70:91:b4:27:8c:aa:88:3d:b0:d6:b9:32:
79:95:e6:16:bb:3c:88:44:9d:85:1a:0e:d7:8d:c6:
01:2d:f0:f0:b7:96:6f:da:a6:63:a0:12:97:63:f2:
1a:17:32:80:b9:2e:b2:dd:55:46:63:a0:32:c0:62:
97:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3F:4E:AC:EB:C8:2E:3B:A0:78:DB:82:63:69:2C:98:C0:F0:66:AE
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6z9OrOvILjugeNuCY2ksmMDwZq4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
15:0a:09:c5:fd:10:21:49:a6:2c:54:f9:db:ee:b5:88:91:bd:
ae:df:db:72:5e:e8:6a:16:0c:04:35:bb:a0:28:4f:0d:03:a8:
b6:ec:17:5e:07:75:53:ad:af:38:57:fd:aa:29:6e:9b:79:e0:
f7:2a:09:23:22:87:79:25:f9:ca:5c:25:42:a0:4f:a5:c5:8a:
cf:9f:63:e1:01:a9:c1:67:60:cf:a2:af:a7:e0:9f:39:a4:9e:
48:64:33:6f:f4:87:ad:eb:dd:9f:c8:cb:87:1d:78:ca:fe:5d:
29:31:40:0c:cf:39:b6:26:cd:57:5c:ea:1e:05:fa:d1:5f:f7:
db:18:ac:f8:64:79:b7:72:5c:5a:48:ea:d8:2d:84:2b:e6:3d:
3c:d6:3b:3e:d6:95:3e:15:b5:58:98:34:c1:d1:3e:b1:a9:79:
c2:4c:08:be:82:66:b7:83:29:c3:1a:5e:a4:a8:b5:72:17:01:
7e:34:d0:67:ab:f0:a8:9c:41:36:fb:06:a6:30:3a:c3:28:9c:
8e:a2:2d:ec:c5:4c:a9:84:1e:15:4e:31:a4:bf:4c:bc:39:d1:
fe:0c:dc:0f:7e:45:62:c2:c9:66:21:61:0d:82:2b:a4:a1:ff:
a0:4a:4d:1d:18:cc:a8:e5:88:b4:fc:20:3c:5e:94:33:fb:e8:
bb:e3:f2:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:33 2025 by rpki-client