Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/8cD602ib3SdQDQ96GauEso6lY3E.roa
File: 8cD602ib3SdQDQ96GauEso6lY3E.roa (raw, json)
Hash identifier: Kk0dnbCLrpqZg9ZnVGq499DYVXpq697UscyYFgWM0Ho=
Subject key identifier: F1:C0:FA:D3:68:9B:DD:27:50:0D:0F:7A:19:AB:84:B2:8E:A5:63:71
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E5A
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8cD602ib3SdQDQ96GauEso6lY3E.roa
Signing time: Mon 26 Aug 2024 05:27:18 +0000
ROA not before: Mon 26 Aug 2024 05:27:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 210.67.248.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3674 (0xe5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F1C0FAD3689BDD27500D0F7A19AB84B28EA56371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:44:b2:cf:be:4c:b5:7d:0a:f1:35:97:99:6f:
b7:7b:be:05:df:1d:e2:6e:e9:91:41:8b:0e:43:bf:
9c:98:c0:73:ce:0a:1b:e4:4d:c2:82:2d:67:2d:7c:
3e:8e:34:19:cb:34:66:e2:c3:9d:dd:86:c0:a4:2c:
30:9a:5b:3e:e1:0f:0e:e1:5b:9e:dd:3b:14:e2:0c:
fc:27:aa:2e:34:c8:4f:4f:a8:ba:5c:8b:d1:f2:57:
74:6c:f1:3f:cd:b4:c4:3a:37:8c:12:16:4a:b9:b7:
69:97:e2:8b:48:02:b3:56:93:ff:1a:2d:80:88:b6:
f2:8e:15:5d:5a:a4:ab:85:19:22:22:bc:0a:6c:b5:
d6:4c:bc:d4:92:73:6a:8c:e0:7c:11:8a:ab:1d:d9:
45:5e:7b:20:8f:7e:8c:90:52:c2:19:be:c4:4c:6a:
00:a7:6e:da:57:03:12:d8:fa:f1:14:1a:84:53:59:
d3:8d:bc:5d:68:98:d3:f2:ad:f3:7b:5a:88:94:e1:
91:7f:66:62:70:bc:a7:56:5e:9d:49:f0:09:d4:00:
02:c9:01:29:18:e0:cf:00:6e:98:4b:45:ea:a1:05:
85:b0:f6:f9:0e:3c:30:b5:14:cb:13:f3:53:fc:11:
29:49:d5:9a:94:22:99:0f:56:8c:e0:2f:93:aa:c2:
d3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C0:FA:D3:68:9B:DD:27:50:0D:0F:7A:19:AB:84:B2:8E:A5:63:71
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8cD602ib3SdQDQ96GauEso6lY3E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.248.0/21
Signature Algorithm: sha256WithRSAEncryption
40:1e:be:37:25:95:4b:e9:80:0e:60:7e:7f:51:bb:66:72:f3:
fd:56:bf:ac:e6:fc:d7:4a:69:42:46:cf:c4:33:d3:8f:45:92:
86:57:d6:73:42:af:10:e3:a6:67:3a:1c:9b:bc:a3:2c:0c:e8:
1c:7f:6e:e6:c6:46:23:0f:77:f7:43:34:8d:33:98:0e:fd:e3:
76:d8:ce:c3:0e:22:59:66:b5:a3:b1:39:b2:99:17:91:cf:5e:
3b:ea:ce:9d:04:cd:bb:41:e1:28:24:d0:6b:bf:27:2e:70:e3:
6c:60:f2:b7:79:0c:7b:b2:64:49:69:de:ea:83:05:7c:d0:b5:
c5:28:bf:b3:21:7c:c3:44:82:08:b4:7e:6f:9d:a5:4d:01:d9:
08:77:04:44:0b:42:8b:43:02:97:7e:73:69:6e:27:e8:28:be:
2f:16:88:84:a1:38:3b:49:1d:ed:ad:e6:f8:80:65:94:fb:46:
53:63:71:f0:fc:e6:5f:a8:f9:1c:5f:f2:f9:60:21:85:07:a6:
37:37:da:56:50:b9:c7:96:31:ad:ca:bb:6b:3d:c5:f4:db:fb:
e1:d2:65:29:95:b4:1a:40:7f:98:cc:6e:54:73:97:38:95:d6:
09:3f:54:9a:68:6a:5b:b6:dd:88:d4:5b:08:ff:01:08:2b:12:
74:53:26:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:58:39 2025 by rpki-client