Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/OECv0SKQp4Scu3VGlAGq5ezu47I.roa
File: OECv0SKQp4Scu3VGlAGq5ezu47I.roa (raw, json)
Hash identifier: IpYIckjpktkKRl2WhAvnt5a2BlrL2zV07g6E6iWpuLE=
Subject key identifier: 38:40:AF:D1:22:90:A7:84:9C:BB:75:46:94:01:AA:E5:EC:EE:E3:B2
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EE8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OECv0SKQp4Scu3VGlAGq5ezu47I.roa
Signing time: Mon 10 Feb 2025 14:16:12 +0000
ROA not before: Mon 10 Feb 2025 14:16:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.13.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3816 (0xee8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3840AFD12290A7849CBB75469401AAE5ECEEE3B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a8:36:8e:d5:08:58:f2:54:3d:17:1e:a9:e9:
b4:90:a3:d4:68:47:b5:4f:36:7a:a8:0b:3e:21:16:
86:85:68:11:2d:bf:6a:28:9f:f9:3d:55:00:d2:66:
63:ed:c3:54:5d:da:e0:98:8e:be:03:e6:30:12:2a:
ad:6c:86:ff:37:a0:60:1b:e1:cd:79:0e:23:0d:cd:
e3:0e:16:5b:e1:4a:c4:0d:d3:a4:e8:c3:19:9e:3d:
f6:37:fc:31:2a:82:0b:4a:06:b7:69:93:ee:26:ec:
dc:5c:ac:12:64:7c:a8:3f:ff:19:07:04:88:11:c9:
89:d4:f1:5e:ec:08:3b:1e:d4:3a:10:1c:67:d7:e7:
45:f3:f2:92:a8:83:8a:c8:12:0f:0d:03:be:ae:5f:
40:8e:aa:c7:30:4a:a0:a4:4c:81:90:37:ff:7d:73:
1d:1e:d9:8d:45:aa:b8:0f:e1:be:65:66:62:74:fd:
fd:07:be:51:ae:09:89:f9:10:30:4a:2f:72:6b:aa:
6f:c9:7c:ba:3e:a8:73:03:f7:61:ca:8c:25:ce:bd:
78:96:1e:93:89:fe:52:48:93:9a:aa:3b:28:aa:3f:
9d:38:bb:e5:00:bf:4a:99:38:3c:73:87:8b:6d:8c:
2d:41:96:34:b4:3b:6d:24:91:7d:d5:e0:e3:3c:28:
b6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:40:AF:D1:22:90:A7:84:9C:BB:75:46:94:01:AA:E5:EC:EE:E3:B2
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OECv0SKQp4Scu3VGlAGq5ezu47I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.13.0.0/16
Signature Algorithm: sha256WithRSAEncryption
17:db:85:d4:96:39:1c:7a:49:60:3a:15:a0:96:f8:cb:fe:c5:
19:a3:a0:e3:80:f1:9e:61:79:16:c4:00:68:f4:83:88:00:15:
e5:fc:55:b9:1b:5e:27:ac:4d:03:f5:0b:ac:5c:2e:af:41:15:
79:d5:76:14:09:dc:8a:84:d9:6b:d9:f2:f1:fc:f7:8e:40:e6:
88:84:27:9e:ce:07:d6:5e:15:cc:8e:c9:90:62:2e:0a:a4:7c:
27:78:2f:2e:c1:79:14:a0:80:98:78:2d:46:f7:2a:eb:58:20:
59:2e:ed:2d:c1:99:45:c8:eb:af:7f:84:41:f9:1d:1e:ac:ce:
78:68:c9:6d:33:ee:2b:ef:21:da:f2:f0:88:be:e8:65:ef:fe:
48:2f:3b:00:fd:24:9c:cc:95:29:9b:ca:b6:82:34:45:8c:a5:
28:07:86:81:35:f1:7f:3b:6d:2c:d2:91:2d:ec:a1:ad:15:f4:
ad:d5:e2:c9:1e:bb:04:24:d9:45:38:a3:60:77:0a:e5:cb:5b:
5d:e9:88:c5:72:b2:1e:d9:6a:f6:5e:8c:21:52:33:12:09:0b:
e3:6c:64:2d:f0:12:d2:92:10:66:34:33:93:df:a2:e3:6b:96:
c0:28:54:e6:75:6f:4b:d0:38:e3:ca:d1:0b:1d:b1:8a:54:37:
30:4a:e3:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:39:25 2025 by rpki-client