Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/BSxc9drfn2i0sIaZvygobOISrhY.roa
File: BSxc9drfn2i0sIaZvygobOISrhY.roa (raw, json)
Hash identifier: 3Iatil06nfeWnPi9pEgeE3CPd3BVuCcvHCz8lrxpp7Q=
Subject key identifier: 05:2C:5C:F5:DA:DF:9F:68:B4:B0:86:99:BF:28:28:6C:E2:12:AE:16
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F04
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/BSxc9drfn2i0sIaZvygobOISrhY.roa
Signing time: Mon 10 Feb 2025 14:16:18 +0000
ROA not before: Mon 10 Feb 2025 14:16:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18185
IP address blocks: 120.117.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3844 (0xf04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=052C5CF5DADF9F68B4B08699BF28286CE212AE16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7a:76:45:7b:dc:1d:12:ec:02:ed:bb:36:9d:
b7:70:f1:a3:4e:00:6a:a2:6e:29:48:2d:2f:0f:0a:
9b:bc:e2:5e:00:32:52:54:55:48:6e:a5:b8:39:5f:
1b:e3:ef:a7:43:1c:ab:74:91:55:7d:d0:5c:29:ae:
7a:91:b6:d1:cb:a6:f6:ca:33:a9:9d:41:df:46:bc:
85:cf:c9:e9:f4:f3:ce:ee:97:3e:a1:80:21:c4:33:
f0:e5:fb:b9:fb:14:af:4a:88:e7:d4:d1:fb:a1:5f:
fa:10:5a:5b:65:24:c2:94:76:d3:02:6f:4f:22:6e:
e1:35:45:85:f1:60:fb:35:7b:60:bd:5d:b0:01:a4:
e6:ab:01:79:af:3e:f1:7f:e9:eb:dc:e8:1b:21:1e:
f3:92:03:3b:52:70:70:44:80:67:5b:59:94:29:a5:
30:a9:60:b4:07:d3:b0:2b:54:ad:d3:30:85:1e:6a:
dd:3a:48:71:3e:b8:bd:53:e1:ea:1c:ba:5b:19:7b:
95:f5:f9:4f:b0:b3:64:6c:19:29:23:b4:b9:b7:6f:
3f:36:bd:3f:71:34:6e:0f:de:6f:b5:7b:03:e4:da:
59:3f:83:b8:3b:40:d9:0b:ad:3a:e7:65:ea:50:7b:
2f:d3:5c:58:17:a0:28:0c:e0:2b:aa:01:d3:29:a4:
39:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2C:5C:F5:DA:DF:9F:68:B4:B0:86:99:BF:28:28:6C:E2:12:AE:16
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/BSxc9drfn2i0sIaZvygobOISrhY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.1.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:9c:8a:c6:71:5a:61:7a:30:e6:ef:7f:f6:a2:46:49:5f:0c:
e6:d9:a0:d3:6f:86:c3:63:5b:b8:68:72:2a:2a:1f:07:87:e5:
06:6c:f1:39:95:ee:cb:36:65:85:9a:f2:5b:7b:97:fb:d6:1a:
87:dc:3f:ef:f1:34:5f:fd:9c:41:35:8e:b8:8e:45:1e:27:2a:
74:7b:14:a1:b0:4f:4c:f4:d5:6a:77:24:c6:8f:87:a9:b8:c2:
7e:4f:93:e7:8b:12:9c:b0:ed:e7:3b:2b:49:f2:09:60:07:94:
f5:78:ac:59:32:8c:02:5e:ce:29:bf:fe:61:6e:78:90:60:31:
f1:13:c7:d3:d1:1b:20:6a:32:57:0f:bf:ec:d0:47:7a:d2:04:
1e:e3:43:dd:27:bd:a6:15:e1:23:46:49:87:91:aa:1a:c0:c2:
9b:3c:2f:44:65:53:83:5c:a4:cc:7f:b1:c9:61:c8:f6:5b:66:
4a:e2:62:c1:89:93:99:cb:9b:c9:33:0c:51:63:06:f8:d8:75:
b6:24:cf:a9:ea:ba:e7:66:76:f9:c4:36:81:69:a1:16:db:3b:
6f:a0:cc:3f:b5:cd:96:e2:6b:0b:4f:9a:72:2e:5e:29:ce:23:
4c:a7:ee:d3:ff:fc:3b:60:cb:1a:f1:56:ba:f5:12:98:5c:67:
75:dc:41:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:55 2025 by rpki-client