Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/84bzCpM-q0JUycrgFCIi_TiJMWs.roa
File: 84bzCpM-q0JUycrgFCIi_TiJMWs.roa (raw, json)
Hash identifier: EqqP3O5WZHpyvlTGwWHe6V0fkuwY9/eTFJwTyhtW9q0=
Subject key identifier: F3:86:F3:0A:93:3E:AB:42:54:C9:CA:E0:14:22:22:FD:38:89:31:6B
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F06
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/84bzCpM-q0JUycrgFCIi_TiJMWs.roa
Signing time: Mon 10 Feb 2025 14:16:18 +0000
ROA not before: Mon 10 Feb 2025 14:16:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131150
IP address blocks: 163.32.188.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3846 (0xf06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F386F30A933EAB4254C9CAE0142222FD3889316B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:42:bf:cd:2b:9e:e8:6b:2e:c1:2a:fb:81:dc:
c2:38:b1:85:47:49:1e:70:8b:2f:b5:96:21:78:f6:
4b:8e:c9:4a:ec:5d:38:36:53:b7:77:35:98:a3:82:
ef:37:7b:ae:a1:c5:d3:1a:bf:d1:c1:50:d7:50:b4:
35:c3:00:f0:a9:e6:82:4f:c4:48:61:ee:ba:56:43:
a4:29:f5:43:33:de:eb:f3:81:6e:60:81:93:14:b8:
2a:1d:3e:ac:73:f1:27:5c:15:4b:94:9f:c5:ec:53:
ee:d5:38:29:eb:d4:1a:fb:0d:5c:11:8f:26:a2:c1:
68:7b:d0:d4:89:c1:5a:11:f1:d5:04:0f:df:e5:6d:
00:67:15:e1:97:ce:b1:cf:77:c9:59:a8:f9:10:b5:
fa:69:64:38:31:e9:de:0d:80:a8:a1:5a:5b:f9:fb:
b0:57:5b:dd:5f:b8:ca:55:a6:2b:74:9c:eb:b3:c3:
67:3d:82:83:58:d3:69:7a:e9:fa:9a:3d:60:7c:6e:
4a:c5:28:22:b3:18:5d:fe:a9:3b:18:5a:a0:1e:c2:
1d:2f:b4:71:2b:e3:14:7e:4c:2e:89:8c:b4:8b:05:
96:84:23:b8:1d:6e:da:90:1f:59:a1:64:bf:67:f2:
f0:7e:6c:28:35:d7:7a:b0:1d:df:e2:03:a8:61:93:
41:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:86:F3:0A:93:3E:AB:42:54:C9:CA:E0:14:22:22:FD:38:89:31:6B
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/84bzCpM-q0JUycrgFCIi_TiJMWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.188.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:a6:1d:c0:5a:f7:60:bc:d2:ad:f0:15:7d:6c:7d:38:19:41:
d1:d6:b2:9a:49:9d:c8:62:3f:96:52:70:22:42:5f:61:52:d4:
74:10:fa:1b:fe:34:06:2d:41:e5:b5:38:57:3a:0d:30:91:77:
2d:ef:8e:7d:00:e3:ac:3e:73:58:33:67:40:81:8b:e5:64:bd:
20:f7:ec:fd:53:a5:3d:e5:4d:ee:86:d6:bf:0b:16:25:15:8f:
aa:f8:be:f9:ff:ed:f1:2e:69:2c:b7:a1:3b:a9:ea:24:8e:ce:
fa:0f:7b:8f:e5:4f:0d:e8:f0:b6:20:64:a2:31:1d:28:56:38:
87:84:2a:e1:d3:b1:48:e6:99:77:d5:c2:3d:aa:89:3e:0a:49:
61:9d:a3:7c:9e:d5:58:e3:73:be:1d:9b:8c:44:81:c2:20:1a:
25:9a:cf:b5:f8:9b:1c:ce:74:d9:99:72:00:86:a4:f1:a5:2e:
54:6f:0f:09:e1:89:f6:cb:84:b1:fe:30:bb:33:6b:d8:a6:60:
f9:93:85:67:42:e1:c5:88:ff:f8:13:e9:8b:c1:b6:74:d9:cf:
f6:54:c2:71:48:f2:49:70:2a:79:e8:7a:4f:3d:2c:f5:06:fe:
63:49:0f:01:cc:29:81:93:de:da:d2:58:6c:ce:41:72:dd:68:
f3:84:25:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:34 2025 by rpki-client