Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa
File: CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa (raw, json)
Hash identifier: OUv6tfFdW3/HY3fSt3nLKvsmofYHDFz18DoMP6P8rvk=
Subject key identifier: 09:60:7B:51:B7:37:97:84:72:E8:BB:AE:FE:61:93:6F:2C:42:36:CF
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E43
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa
Signing time: Mon 26 Aug 2024 05:27:10 +0000
ROA not before: Mon 26 Aug 2024 05:27:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9916
IP address blocks: 120.126.32.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3651 (0xe43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=09607B51B737978472E8BBAEFE61936F2C4236CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:db:02:34:b8:33:26:6c:2e:98:d8:0b:10:cb:
55:b3:7a:09:aa:08:f7:9d:ab:2c:21:06:f7:5e:7b:
b0:da:b7:07:58:a7:0c:6a:fd:c4:01:79:dd:a9:53:
f0:52:04:ab:dc:88:bc:6a:fc:8d:38:39:57:81:82:
66:9e:8d:bd:16:2a:8f:6b:17:8d:a0:2b:d4:14:e4:
9b:8f:af:4b:10:06:96:54:c0:6c:4d:90:d8:0b:60:
48:85:9b:01:d1:0d:e8:20:3c:64:54:85:8e:94:83:
ee:a3:78:e2:1d:36:7f:f1:05:30:92:32:89:a8:91:
59:91:53:75:5b:68:c5:ba:fa:08:77:61:82:e1:a4:
ad:ab:69:5d:b1:57:f8:0b:34:4f:37:f8:d2:c9:23:
50:bb:c5:dd:a8:52:c5:e2:e4:a2:cb:58:4a:53:39:
8c:43:9a:5d:8a:87:17:1e:fa:9d:a6:fa:7e:cc:98:
0c:73:dd:4a:13:74:db:bf:40:1c:6e:03:16:96:b6:
c7:4a:8e:2a:3f:95:74:87:96:02:8f:20:4f:00:6d:
b7:ad:45:cf:ff:ac:47:4e:04:d0:a5:73:69:89:be:
d5:11:2d:a0:ed:6b:b5:16:22:c3:73:ac:dd:20:64:
7a:e5:e6:62:79:0b:ef:b0:18:c1:68:ad:67:e9:a1:
ce:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:60:7B:51:B7:37:97:84:72:E8:BB:AE:FE:61:93:6F:2C:42:36:CF
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.126.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b7:6f:dd:db:b7:78:c5:d3:29:89:1a:95:43:64:3f:59:b6:5e:
ac:f0:74:c3:2a:03:30:c4:4a:43:7d:4e:31:1b:0b:f1:b6:b7:
0f:4e:ca:c7:09:33:ad:b1:90:59:6c:f5:a8:9b:99:e1:f0:ab:
5b:78:4d:5a:34:c0:f8:e0:60:f1:0f:1d:0e:aa:d5:87:c6:bb:
f5:ea:6c:86:96:aa:c8:4b:61:dc:ab:15:08:bb:cd:22:06:9f:
cf:0e:d6:52:35:89:ad:fc:67:db:ff:df:ed:8d:dd:e2:d9:f1:
67:f6:bf:ca:c4:39:27:e6:86:f3:b3:8b:f2:f6:ce:6d:95:95:
20:16:a9:dd:06:d1:f6:f9:9a:c1:1b:52:b5:c6:d8:1a:84:d7:
e4:2e:ed:47:ac:82:12:90:c7:2f:98:f1:c7:ea:e0:b9:68:f3:
d2:7f:28:f7:5d:ce:d7:6d:a0:ef:49:42:bd:24:73:8f:c9:38:
bf:08:bb:10:92:65:b0:7f:54:63:d7:5e:bd:91:34:5c:72:1a:
3f:47:99:57:0d:b7:2a:d3:26:8e:2e:c4:ec:d5:a0:08:bc:73:
6f:eb:3d:fb:49:e8:d7:f2:f7:f7:d2:ea:f4:6b:a1:eb:b5:7f:
72:c2:1b:e0:de:0a:a0:18:d3:b7:42:46:0a:f1:74:ab:e8:c3:
76:2b:6a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:06:19 2025 by rpki-client