Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Dt2QIP_IZcgPrnhzoL806IHRMME.roa
File: Dt2QIP_IZcgPrnhzoL806IHRMME.roa (raw, json)
Hash identifier: Ww1+7pZh1otuD4hLqk2jooA4ORQ34KsOX71UD5bhs5o=
Subject key identifier: 0E:DD:90:20:FF:C8:65:C8:0F:AE:78:73:A0:BF:34:E8:81:D1:30:C1
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EFB
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Dt2QIP_IZcgPrnhzoL806IHRMME.roa
Signing time: Mon 10 Feb 2025 14:16:16 +0000
ROA not before: Mon 10 Feb 2025 14:16:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18185
IP address blocks: 120.117.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3835 (0xefb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0EDD9020FFC865C80FAE7873A0BF34E881D130C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d1:62:b3:47:29:ac:17:a9:5a:ce:ad:a1:ca:
fb:bf:c2:1c:2b:f4:f6:17:2b:db:a8:01:17:cb:0b:
97:a7:2e:ac:af:bc:c8:fb:c4:f9:0f:e1:c0:f0:aa:
85:27:47:1f:bf:a7:29:ec:2b:f9:42:7a:6d:eb:2a:
cf:12:3b:88:19:8b:cc:9d:19:78:bb:7e:20:30:c5:
a9:52:45:a4:63:00:c7:21:5e:65:ce:ff:f0:f2:32:
9e:30:3e:09:17:b7:38:c7:49:68:38:4e:d9:58:73:
c5:02:d1:4a:57:88:32:a3:69:c9:a5:57:50:91:c3:
af:73:90:90:b4:2b:78:dd:96:b6:ea:89:84:64:0b:
00:53:84:1c:6d:08:97:0a:26:17:9f:b1:b3:60:38:
18:ef:48:c3:5f:48:3c:bf:7c:ed:54:66:18:a2:8b:
5a:a6:5c:d5:72:8a:5f:95:5f:7b:5c:3a:ac:c4:e8:
77:99:0d:9a:b8:1e:27:ff:ba:34:8b:f8:59:c4:f2:
bc:56:62:05:06:94:86:cd:52:05:45:b0:44:e8:26:
fd:77:5b:51:35:b5:7f:12:1a:b2:69:71:d6:af:e4:
fd:c4:0a:6b:f9:2e:e3:f3:d6:ce:63:0f:d0:33:52:
49:53:cf:81:63:73:21:1b:fd:54:f4:d6:51:12:c4:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:DD:90:20:FF:C8:65:C8:0F:AE:78:73:A0:BF:34:E8:81:D1:30:C1
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Dt2QIP_IZcgPrnhzoL806IHRMME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.2.0/24
Signature Algorithm: sha256WithRSAEncryption
58:de:da:49:26:ea:d7:38:eb:f3:ca:a6:c6:b0:d9:4f:9c:1f:
64:ad:2a:33:cb:84:b9:90:9b:ce:c1:c8:73:fd:82:b8:67:25:
28:1f:49:87:99:bf:d8:25:2e:25:f5:8c:61:44:51:e9:40:c3:
8a:a1:d4:1a:51:98:15:d3:0c:26:cd:75:ab:ec:4d:c4:e2:fa:
86:1e:d1:fe:09:44:a0:2a:7c:97:86:32:f9:5f:30:88:51:5a:
a8:06:78:b3:28:8c:7b:eb:62:e4:8a:95:47:87:75:52:34:2d:
a3:7e:60:44:47:2c:69:08:a1:08:a8:cf:e7:0b:39:4a:70:ab:
ac:00:c9:c1:7e:a2:a8:90:97:1e:c5:3f:ac:2f:d9:a3:09:38:
fd:2e:fc:22:e8:0e:2f:b2:fc:74:ac:2b:47:83:2d:29:aa:97:
d4:51:15:e0:01:bf:d9:44:c0:32:77:e1:5b:f2:df:d7:e4:b2:
5f:93:0a:fa:c1:64:95:60:f4:c5:83:d4:4d:65:6d:04:43:36:
5b:2a:a8:65:1f:f4:b6:a6:a7:09:3e:ec:b5:29:53:98:59:68:
4e:37:2d:35:a5:c7:ae:82:87:55:17:cb:19:c9:94:a2:2b:64:
1f:1b:12:d7:be:50:18:74:58:26:7e:be:8f:ea:3f:4a:2f:b9:
cd:24:c7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:02:57 2025 by rpki-client