Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa
File: D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa (raw, json)
Hash identifier: QZijnRhlHzR7lrhEBwsh57oBnXMuoQ0si6XJZ01GntE=
Subject key identifier: 0F:51:3C:17:0D:7F:CD:6B:76:D8:0E:02:09:DC:0B:B2:4E:E1:FC:2A
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DE6
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa
Signing time: Mon 26 Aug 2024 05:27:17 +0000
ROA not before: Mon 26 Aug 2024 05:27:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9916
IP address blocks: 140.113.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3558 (0xde6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0F513C170D7FCD6B76D80E0209DC0BB24EE1FC2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:00:59:c1:76:bf:7a:3e:54:d9:c9:8e:04:61:
e7:c8:31:61:d3:1d:0f:e7:97:66:bd:43:fa:0b:16:
41:08:21:c3:17:cd:f6:02:26:21:e3:1d:c4:34:f4:
20:53:cb:90:88:6a:39:a7:5f:58:38:ed:05:ca:62:
03:23:8b:59:31:70:ec:fe:6e:1e:8d:0d:e2:90:5f:
91:51:25:71:62:e4:f5:d5:d9:c7:e6:fa:a0:07:2a:
c8:19:38:5b:df:5e:c9:bc:56:4c:36:55:db:e2:1e:
25:ac:3f:f5:b9:d7:62:bb:70:96:d9:78:6d:51:d9:
5a:37:d7:13:f0:1c:27:72:22:0d:85:04:6c:a0:37:
eb:66:2b:60:33:d2:e4:e5:49:13:3c:35:18:a6:14:
23:d0:9d:3d:03:ae:c3:98:a3:55:67:5e:1f:ba:74:
35:28:30:4c:e6:f2:9b:7f:1c:f9:d5:c1:8c:e0:a0:
cb:60:8b:f0:59:03:8e:53:66:70:a6:29:46:04:5f:
44:67:66:4f:4b:ac:e1:41:c8:e0:79:c8:b3:64:88:
19:bc:b0:02:14:73:ee:d0:6b:6f:bc:80:8f:c3:d7:
28:f3:58:18:13:0f:47:48:60:39:65:ff:48:ef:a2:
ab:72:31:90:24:fb:f3:53:3e:ec:d8:1d:87:a6:12:
ed:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:51:3C:17:0D:7F:CD:6B:76:D8:0E:02:09:DC:0B:B2:4E:E1:FC:2A
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.113.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:28:47:70:22:4d:54:d7:73:81:57:ae:8f:24:64:5e:73:ca:
ad:58:a5:e2:ce:5f:ef:fa:5b:b0:f7:35:d0:85:e5:4e:5d:7f:
97:8b:b0:9c:8b:54:b5:9c:0f:d7:24:a8:6b:ce:c6:d7:46:dd:
57:e0:fa:ef:ea:7b:1a:75:d0:c5:69:0c:02:16:6d:1a:be:b0:
7b:82:ac:eb:41:38:18:a3:7b:30:3a:bb:2a:4b:27:e2:d6:87:
1b:ba:6f:53:f8:6b:70:a3:a4:40:50:ec:10:25:54:82:16:fd:
00:bf:aa:7b:bc:72:be:17:bd:7c:56:b7:f4:1e:2d:f6:f7:34:
2e:14:30:ce:eb:68:84:71:e1:c8:af:e5:15:97:63:70:9a:c8:
e3:d8:98:92:21:98:1b:93:df:20:94:60:c3:00:75:74:52:58:
2d:8d:d2:af:f0:99:ce:6b:4b:36:a7:b3:1d:f8:c3:c5:6d:16:
e4:95:b8:b4:20:26:f5:3a:bf:b1:a8:f8:be:fa:16:73:7a:72:
33:fd:27:67:22:23:e4:47:a9:d3:54:d5:5e:8a:d3:cc:0a:86:
ad:8d:9a:ae:35:bd:0c:e3:1b:85:28:66:e3:f2:9a:c8:b2:46:
5a:27:e3:6a:ce:ba:2b:0b:87:3e:08:b1:01:8d:59:cf:cc:1e:
a3:4d:2f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:12:33 2025 by rpki-client