Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/FfX5iblgG0tFxmu3Y5irf6dqoKc.roa
File: FfX5iblgG0tFxmu3Y5irf6dqoKc.roa (raw, json)
Hash identifier: YIH2Z4hwuJfsZnqfF9bhLV+OItE3NlBHAxZcC/j3StE=
Subject key identifier: 15:F5:F9:89:B9:60:1B:4B:45:C6:6B:B7:63:98:AB:7F:A7:6A:A0:A7
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0EFA
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/FfX5iblgG0tFxmu3Y5irf6dqoKc.roa
Signing time: Tue 18 Feb 2025 07:45:53 +0000
ROA not before: Tue 18 Feb 2025 07:45:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 140.132.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3834 (0xefa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 18 07:45:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=15F5F989B9601B4B45C66BB76398AB7FA76AA0A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f5:1d:0d:d6:42:98:8a:6a:4c:30:4c:b6:49:
43:d7:18:64:df:7c:be:2b:6f:13:9a:d6:d7:81:54:
87:f7:9c:48:14:74:4d:f0:23:74:2c:ac:75:e9:a5:
98:40:58:51:c1:6a:4e:72:55:70:f7:7d:1e:42:7a:
97:92:bc:9f:ae:c7:2a:5a:6e:b3:81:05:f2:2a:e0:
02:40:25:00:0a:1b:69:38:c7:d5:20:0b:42:e5:0c:
82:40:ec:ba:a7:b2:cb:78:74:7d:78:76:52:d9:32:
a0:97:8a:72:09:f3:6a:23:8e:07:f4:24:a3:6c:5b:
51:37:a9:36:99:2e:bb:fe:7e:23:b1:18:11:27:18:
b1:9e:1f:8e:f1:aa:71:81:33:4f:69:b3:2b:99:93:
9c:b7:ad:e3:93:a4:2a:22:d6:97:c8:54:ac:96:ca:
dd:17:b9:d9:93:45:95:30:d2:51:fc:ad:0a:09:39:
7f:37:10:2e:68:7f:8e:e8:47:dc:61:d9:03:42:24:
a7:33:d0:d9:97:09:bf:4c:7f:41:d7:f0:30:70:08:
2b:92:f6:9f:7e:63:d6:74:e0:19:88:f3:ab:ac:c9:
bd:49:fa:f7:fd:58:73:4c:c2:2b:0d:c1:e7:af:9f:
5a:58:3e:9d:d3:9d:17:17:8f:f1:18:2e:cb:6b:53:
8e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F5:F9:89:B9:60:1B:4B:45:C6:6B:B7:63:98:AB:7F:A7:6A:A0:A7
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/FfX5iblgG0tFxmu3Y5irf6dqoKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.132.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3f:6d:ec:0b:45:5b:2c:62:e2:f6:71:ee:39:ab:27:4c:87:08:
64:41:9a:73:9d:ce:56:78:97:18:77:db:30:c2:20:b4:ce:6c:
95:1d:24:e9:22:e2:59:07:e9:f3:43:89:4d:26:7b:6a:ad:1e:
5b:f6:37:64:f8:66:af:22:99:1e:b6:f9:85:da:48:68:45:e3:
bf:a8:31:ca:99:e5:1e:15:52:28:52:0c:af:f2:b8:f5:74:ee:
86:53:88:53:a0:6d:a0:67:b4:d2:4e:3e:14:61:43:f0:29:89:
11:d5:44:13:84:f1:8d:3b:fb:d6:57:9e:76:1c:ea:c4:8e:68:
6e:90:31:aa:b8:69:c1:a0:cc:b4:bf:ff:a7:0d:56:1a:a9:fc:
8c:51:2a:12:e3:8b:a4:a8:09:12:19:51:39:bc:7d:b4:19:2d:
34:d5:fd:43:62:14:94:f2:d1:db:a9:89:d2:17:c8:47:ef:a3:
41:63:1e:eb:01:e3:05:3e:8f:c9:dd:ff:6d:a1:2d:ec:23:78:
5d:da:92:4f:75:83:57:e5:b1:92:ff:e7:12:43:50:9a:d9:79:
8c:00:71:ad:dd:1c:b2:f3:d5:fb:5e:b3:d9:cb:4c:51:73:e8:
b2:60:af:f2:09:f1:71:5b:30:45:62:76:55:c9:ec:7f:4e:48:
6a:60:dc:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:51:16 2025 by rpki-client