Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/B4w9IW-kZebClI-jto3pxg42wBE.roa
File: B4w9IW-kZebClI-jto3pxg42wBE.roa (raw, json)
Hash identifier: 0Tp/+UslRyPRY1S7hrm0v91EH/8DUapnrRXKT0+tCEc=
Subject key identifier: 07:8C:3D:21:6F:A4:65:E6:C2:94:8F:A3:B6:8D:E9:C6:0E:36:C0:11
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EFE
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/B4w9IW-kZebClI-jto3pxg42wBE.roa
Signing time: Mon 10 Feb 2025 14:16:17 +0000
ROA not before: Mon 10 Feb 2025 14:16:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 203.72.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3838 (0xefe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=078C3D216FA465E6C2948FA3B68DE9C60E36C011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fd:76:34:55:97:96:e1:88:e7:44:e3:3e:06:
e9:ca:c5:ba:ad:09:74:80:fd:4a:64:8a:02:4a:59:
e3:6b:d4:df:10:35:e8:1f:30:4c:90:81:ee:e1:0d:
62:3b:8a:71:6d:29:0a:ef:87:03:50:9d:d7:57:75:
ca:88:99:46:68:bf:b5:6c:3b:48:4e:9b:3a:bb:25:
d8:71:42:af:22:17:1e:75:f7:41:d7:e0:86:dc:2d:
a0:13:df:28:5a:3b:5a:3f:2e:7c:bb:1b:04:d2:ff:
5f:65:ed:55:af:3c:18:ed:14:8e:0e:f5:3d:66:4f:
17:4c:52:fe:55:cf:ab:63:c1:f2:ac:e9:6b:d5:74:
cb:81:ae:b9:a4:c8:28:ef:5d:f4:ae:94:71:76:45:
da:d6:cf:45:27:53:f0:f2:e3:5d:e5:54:dc:f2:84:
56:9f:38:af:b2:c6:e7:40:61:20:6d:50:ca:72:1f:
a8:19:1b:3d:16:78:07:87:7e:f7:6c:2a:c6:0c:3b:
49:2d:e6:3c:6d:2a:d8:cb:82:82:ec:ad:f2:f1:0a:
2b:de:16:a1:35:87:ac:d4:09:2e:62:06:a6:7d:58:
b2:5e:19:02:df:27:92:b3:4b:10:e6:b7:c5:c1:e7:
14:62:32:03:79:91:a0:e8:70:f7:3c:ed:78:e0:8b:
a6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8C:3D:21:6F:A4:65:E6:C2:94:8F:A3:B6:8D:E9:C6:0E:36:C0:11
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/B4w9IW-kZebClI-jto3pxg42wBE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
25:83:75:15:2a:e4:48:29:0b:da:73:bd:dd:2a:0a:3c:22:69:
3e:41:e9:20:d9:93:0b:5b:f1:b9:b9:31:29:22:51:22:85:99:
17:24:61:87:93:23:c8:a5:8c:f5:e2:da:a0:a6:fa:26:64:ab:
17:da:0a:b0:97:f7:4f:15:a3:47:f3:2b:47:cf:a2:4b:a3:25:
df:e3:cb:d5:a8:d6:0e:26:91:7d:87:fd:19:fa:48:53:8b:fe:
cb:d4:91:06:d4:21:e8:ea:22:a4:15:09:02:57:03:4b:38:a2:
13:19:7b:ff:3f:de:2d:7f:3e:59:5f:4b:0d:eb:db:85:19:ea:
75:0c:e6:05:ce:09:62:38:b9:07:39:f2:78:8e:47:6f:ad:26:
cc:4d:19:d5:89:9e:9e:8c:3d:79:45:04:9f:ca:9b:5c:25:4b:
2e:18:71:d8:0d:02:d2:77:69:92:41:36:fb:25:bb:ab:63:f2:
3e:41:54:c0:d5:74:9e:f8:53:c2:1d:e3:76:58:3d:2c:7f:a2:
91:3f:76:bf:a9:c4:4b:3a:49:0b:c0:42:08:f8:89:0a:9b:f9:
a0:10:e9:39:83:e7:6f:97:e5:db:40:90:6f:c3:5a:55:07:0c:
36:82:82:fb:93:de:65:f3:46:38:44:22:68:95:e2:a0:de:b7:
90:18:6e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:50:50 2025 by rpki-client