Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Kk-s7UxhdA-yTuD4wtddWtNMEZk.roa
File: Kk-s7UxhdA-yTuD4wtddWtNMEZk.roa (raw, json)
Hash identifier: 0gMSczEZHU4B2l5JOuzScC3A6sd4AlGiUkb5mHdlMfg=
Subject key identifier: 2A:4F:AC:ED:4C:61:74:0F:B2:4E:E0:F8:C2:D7:5D:5A:D3:4C:11:99
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EE6
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Kk-s7UxhdA-yTuD4wtddWtNMEZk.roa
Signing time: Mon 10 Feb 2025 14:16:12 +0000
ROA not before: Mon 10 Feb 2025 14:16:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 120.96.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3814 (0xee6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2A4FACED4C61740FB24EE0F8C2D75D5AD34C1199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:89:43:cd:30:93:1f:c4:45:bd:bb:97:fc:83:
fb:a7:0f:fd:51:96:3c:7e:5c:73:c1:42:1a:5f:9f:
d8:ef:64:21:cf:d0:ae:61:df:25:fc:f8:bd:d3:6e:
cd:55:1e:46:12:21:3d:c2:17:26:bc:7b:38:56:86:
3b:b6:fc:dd:33:1b:1d:35:39:26:73:ed:b1:94:46:
6f:ba:ef:33:d4:7e:4d:65:f8:75:64:59:35:6b:72:
d0:dc:fc:47:79:a0:97:f6:5e:97:ac:fa:b2:f7:9a:
16:24:d9:97:15:49:22:45:16:4d:18:c0:67:e5:98:
d7:f8:99:9e:96:10:22:96:e9:dc:29:27:2b:4a:07:
aa:5f:7a:fc:7c:b0:f3:bb:de:ad:c7:5b:d9:ca:86:
12:d1:09:ed:cd:10:ff:5e:49:3f:ed:8e:da:64:32:
64:b6:b9:58:82:24:3d:39:34:3e:48:a8:02:11:83:
ce:f2:62:b3:4e:ce:93:e1:8e:17:21:e9:60:59:bc:
2a:9a:1c:57:3b:92:fe:6b:2d:4b:cf:2f:93:06:bc:
be:ad:70:51:d0:00:9f:66:45:53:67:f6:40:ba:5f:
7f:d6:28:9c:a0:aa:b9:79:9d:3a:9b:fd:3d:ba:b2:
ae:fb:e1:45:61:de:12:36:b6:36:2b:ec:6a:05:f6:
dc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4F:AC:ED:4C:61:74:0F:B2:4E:E0:F8:C2:D7:5D:5A:D3:4C:11:99
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Kk-s7UxhdA-yTuD4wtddWtNMEZk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/19
Signature Algorithm: sha256WithRSAEncryption
67:72:f7:b0:bf:d7:d4:59:c5:68:09:85:2c:74:d4:53:4a:e1:
eb:ab:74:02:1b:b4:5f:7b:f0:b9:ef:67:72:16:91:87:24:8e:
c5:74:f2:5e:23:e3:32:36:c2:31:3d:bb:e9:60:21:1d:80:63:
cf:fe:f4:2c:c9:d8:3e:b3:a5:75:ec:b1:66:06:78:38:a7:ad:
cc:46:6f:e6:6f:18:e9:19:ef:66:8c:d3:49:39:30:0e:77:b8:
49:d6:11:bb:a9:81:6d:ee:07:ca:0b:09:ef:a8:fd:80:09:82:
98:2e:53:a5:32:61:d4:7a:dc:08:b3:18:31:1c:87:bf:0d:6e:
f5:ea:ab:31:23:d1:33:26:9d:81:b7:30:98:a7:e6:88:54:f8:
f7:7c:c2:ad:8d:5e:40:c1:7c:d7:d8:80:fc:e9:e5:26:1f:cb:
2d:b3:69:7e:c9:af:2b:72:4c:b3:ad:b2:5b:14:e0:13:6b:90:
85:e0:ef:a2:a0:20:8c:20:a4:17:dc:97:01:00:7d:80:b5:ff:
f3:26:60:5b:e4:bf:69:df:e0:f8:b7:85:2b:81:9a:ec:f2:79:
31:99:4e:69:49:e5:e3:cc:1d:95:0f:b2:cd:15:d9:4a:58:74:
d2:72:2f:ea:13:2d:7e:6f:48:1a:6a:b4:45:29:e3:ea:da:53:
30:5a:5e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:16:43 2025 by rpki-client