Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/OvDHEVzrNPLmKookGT5ACgPKIO4.roa
File: OvDHEVzrNPLmKookGT5ACgPKIO4.roa (raw, json)
Hash identifier: /m/1GKZYA18JkViIEcLJRFokk7fsTKDOdRV6f4veaXA=
Subject key identifier: 3A:F0:C7:11:5C:EB:34:F2:E6:2A:8A:24:19:3E:40:0A:03:CA:20:EE
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F38
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OvDHEVzrNPLmKookGT5ACgPKIO4.roa
Signing time: Mon 17 Feb 2025 07:53:10 +0000
ROA not before: Mon 17 Feb 2025 07:53:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131150
IP address blocks: 120.119.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3896 (0xf38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 17 07:53:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3AF0C7115CEB34F2E62A8A24193E400A03CA20EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:57:96:05:b6:d4:8d:8a:82:2f:c5:a2:10:c6:
83:89:f2:9c:70:c1:9d:4b:10:86:af:a7:3e:c4:51:
6e:6b:05:e9:a2:99:66:f0:b7:a9:24:f8:66:d8:4a:
d5:86:ff:a5:04:62:f4:04:cd:c1:8e:0a:80:e2:08:
27:2f:2d:dd:3c:97:b9:b1:80:41:c1:1d:c7:00:1c:
f7:e1:0d:d2:64:b3:e0:78:c0:9c:27:78:c6:8b:2c:
92:18:a0:a3:83:b2:e7:7b:68:e3:94:2f:66:0b:26:
6f:2b:45:91:11:ec:cf:b0:65:a5:9f:da:18:5e:21:
df:af:d4:e0:08:af:93:2a:6f:6e:92:37:aa:ef:8e:
ee:3d:dd:be:f5:55:c4:4f:9c:ab:3b:91:47:de:c1:
24:a3:7e:65:86:3b:ba:01:a9:43:6e:d6:5c:d5:d3:
72:73:68:23:85:85:2c:ea:0e:16:d7:44:56:7c:53:
f2:0a:50:f1:f3:e1:64:f3:05:b3:09:d2:d8:b0:f4:
c9:8c:bf:56:dd:bf:dd:a0:46:1a:21:52:b5:0a:8e:
d9:3f:07:e6:60:b7:da:b1:1a:64:3c:c2:34:0a:2d:
4d:9b:f9:e0:16:7e:0c:9d:d6:a3:3e:19:35:65:02:
75:d9:2e:2d:17:b3:6a:e8:ae:d7:18:f0:9f:65:7b:
07:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F0:C7:11:5C:EB:34:F2:E6:2A:8A:24:19:3E:40:0A:03:CA:20:EE
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/OvDHEVzrNPLmKookGT5ACgPKIO4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.119.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ad:67:47:d8:39:c2:42:b7:21:f4:be:6a:94:de:c4:3a:12:1b:
e6:b2:64:06:d2:ee:08:92:73:96:b4:1a:0c:a9:5a:c4:3e:15:
90:c3:6b:00:0c:33:64:0e:bb:c1:14:5e:22:23:b5:db:0f:8f:
1d:d9:17:4f:92:7e:1f:b8:76:12:d5:a4:f5:e9:a6:8e:50:36:
fa:3d:e6:3d:7c:51:f8:93:24:32:c1:3a:10:c2:c3:32:e5:87:
96:c4:d7:9f:f7:76:ce:da:40:30:fa:23:79:67:d5:f9:ee:d5:
0d:af:c8:ca:05:d8:65:37:6d:7a:c5:c3:a6:42:bf:14:15:4e:
72:cd:28:cd:c7:22:01:51:6e:78:fb:c4:9b:ff:01:a6:60:da:
14:83:ef:85:1e:a4:7b:28:ca:c3:be:92:2d:f2:0d:a6:8a:cd:
16:c6:ad:5b:89:b8:37:16:62:80:45:c5:d7:d2:1d:17:cb:85:
97:8a:26:62:d0:ee:57:a7:6f:e1:96:3a:08:a0:8c:c7:07:32:
6c:3f:9b:d2:ae:4c:57:1a:8e:17:16:db:82:78:d0:0e:07:e0:
55:c8:22:38:de:8e:6e:b1:1a:fc:7b:8e:05:96:8f:6c:9e:c9:
60:12:ca:df:1d:a5:68:f8:ff:54:90:08:b5:5c:6f:92:05:a4:
59:a8:75:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:04:09 2025 by rpki-client