Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/7T7HofmrtpGFX3EtOdv-X_OVZgw.roa
File: 7T7HofmrtpGFX3EtOdv-X_OVZgw.roa (raw, json)
Hash identifier: A3m01yBlbi28Uh3khgitLTsa9AyVef5gNw8eIoGa13I=
Subject key identifier: ED:3E:C7:A1:F9:AB:B6:91:85:5F:71:2D:39:DB:FE:5F:F3:95:66:0C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EF4
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7T7HofmrtpGFX3EtOdv-X_OVZgw.roa
Signing time: Mon 10 Feb 2025 14:16:14 +0000
ROA not before: Mon 10 Feb 2025 14:16:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18185
IP address blocks: 120.117.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3828 (0xef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ED3EC7A1F9ABB691855F712D39DBFE5FF395660C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bd:fd:df:c3:63:4d:d4:e9:6e:94:17:34:19:
04:77:09:cf:84:ed:7d:9c:08:32:8d:e1:c4:02:3e:
bd:f9:06:b3:55:3a:6b:2f:c9:75:63:62:1b:ab:98:
07:b5:77:f8:62:e4:96:7d:ad:76:55:b0:b4:dd:8a:
cc:7a:3c:a3:88:10:4a:9d:18:7e:48:38:2c:fa:9e:
bf:6e:b9:76:14:f3:27:7e:0e:65:0c:f6:39:b3:28:
a8:93:c1:7b:64:64:c1:7e:71:67:20:70:22:c5:40:
f9:aa:a4:93:f1:8a:9b:a2:c7:97:ec:3d:80:82:01:
9a:8d:0e:1e:c7:0e:bf:e3:fa:09:43:d9:d2:e8:f2:
17:07:29:c9:5d:c7:75:17:30:35:8e:51:1c:60:03:
a0:1e:0c:fe:36:41:ee:54:50:30:3a:6b:d8:06:84:
a1:cf:20:cc:07:2a:ba:d7:06:44:cc:9e:72:93:12:
4c:5e:37:78:d7:d2:74:52:bd:52:07:06:e7:7f:fd:
db:9e:5e:27:3e:d8:31:50:08:73:1e:75:db:3d:78:
26:65:d8:c5:1f:9e:5a:18:27:fa:c1:0f:ae:89:4e:
48:3e:eb:b2:42:88:03:f5:79:8c:83:80:b8:24:8e:
27:5f:42:1a:d2:3f:06:7c:3d:f9:24:d8:7f:bb:81:
90:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3E:C7:A1:F9:AB:B6:91:85:5F:71:2D:39:DB:FE:5F:F3:95:66:0C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7T7HofmrtpGFX3EtOdv-X_OVZgw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:8a:27:4a:f2:92:c7:e9:d2:39:6e:b1:98:67:31:b0:c0:70:
49:4d:15:d9:ec:64:29:4d:63:eb:00:13:52:4d:fd:c0:6e:d7:
a6:19:94:c5:04:3f:4f:33:f8:a1:fe:e1:b6:ae:f5:bb:f8:31:
d5:59:bb:ee:ad:e7:05:80:b7:18:6f:4c:c9:c6:47:bb:1d:65:
76:25:e3:a3:3d:64:0a:29:59:c1:03:f1:0b:25:f0:b1:22:40:
5e:1a:3f:23:a3:4f:d4:11:2f:a8:0c:83:65:d7:d0:03:a4:9c:
69:a7:db:1f:6a:0d:8a:b7:0d:74:64:00:3f:98:60:e4:7b:66:
ae:4a:a2:55:1c:22:4c:03:9a:4f:c6:d0:b3:48:a1:14:54:86:
52:5b:9e:6c:be:f3:ee:0c:f0:26:d1:06:e9:88:23:8a:21:5b:
4f:5d:75:1f:3f:ef:02:88:ad:60:62:dc:f4:b4:c5:cf:7b:ec:
00:1e:28:08:31:c7:0b:9d:52:b6:30:3d:eb:0d:55:f0:9f:6b:
b4:19:f4:8c:28:15:19:77:16:5c:b4:bc:73:a0:f6:fa:e3:e9:
99:b3:3a:85:75:cc:0d:3c:a7:f2:15:64:dc:6b:73:55:4d:93:
28:62:dd:8c:cc:b4:ba:bb:8d:be:90:ed:05:b2:8f:23:3d:fd:
66:36:d1:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:02:50 2025 by rpki-client