Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/P1OMzwAkV5LP56rcX04voZxSl-U.roa
File: P1OMzwAkV5LP56rcX04voZxSl-U.roa (raw, json)
Hash identifier: D+u443XBESRAptWzg+6amQ9LyQyTxCkUctJT1OI1ILo=
Subject key identifier: 3F:53:8C:CF:00:24:57:92:CF:E7:AA:DC:5F:4E:2F:A1:9C:52:97:E5
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E63
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/P1OMzwAkV5LP56rcX04voZxSl-U.roa
Signing time: Mon 26 Aug 2024 05:27:24 +0000
ROA not before: Mon 26 Aug 2024 05:27:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 210.59.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3683 (0xe63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3F538CCF00245792CFE7AADC5F4E2FA19C5297E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a4:b5:f6:ea:97:34:5e:eb:3d:e8:bc:e2:c7:
af:41:e8:ed:ee:79:f6:2c:f1:f0:90:d5:7a:b7:88:
23:6b:14:4f:09:aa:91:35:55:f9:ad:3d:99:7c:c4:
95:32:51:0c:fd:19:62:c4:9d:91:8d:6e:fd:91:29:
8e:eb:ab:ff:25:62:68:8e:be:d5:65:ed:02:3a:4b:
43:26:38:d7:8d:fd:7f:d6:f1:41:99:93:35:1e:64:
02:37:42:b0:b6:36:71:6c:54:fe:56:3c:6e:c8:20:
d0:70:67:dd:46:7f:e9:8a:fb:a5:6b:57:8d:06:e6:
4b:43:0c:cf:ce:a5:69:dd:a0:59:67:ac:45:7a:9f:
77:e0:34:3d:06:8b:45:3b:d7:4a:49:0a:11:a1:ab:
fa:50:90:eb:7e:32:02:40:59:b6:a3:05:82:18:a8:
ff:83:54:ac:c4:25:40:92:e0:5d:91:d3:6d:4d:c1:
0c:f3:b4:a8:98:07:b9:92:38:5b:72:7d:87:fe:18:
cd:fb:78:81:9f:53:a0:8b:67:b6:69:3e:f6:bd:26:
b2:43:fe:31:de:da:ae:cd:74:be:90:a1:c6:81:ec:
03:57:4a:86:d4:a3:54:51:be:b0:8a:72:42:e8:aa:
91:c8:36:9a:90:bf:58:64:28:4e:e6:7b:ec:07:25:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:53:8C:CF:00:24:57:92:CF:E7:AA:DC:5F:4E:2F:A1:9C:52:97:E5
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/P1OMzwAkV5LP56rcX04voZxSl-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.0.0/17
Signature Algorithm: sha256WithRSAEncryption
8d:aa:7b:75:74:d9:76:7d:1b:f3:d8:73:64:f1:06:d3:4d:37:
fb:e5:57:38:bb:9b:3e:1e:13:8e:f8:7c:fe:f2:5b:03:e6:f0:
36:d1:8c:b8:71:bc:eb:cc:8f:56:63:5e:a2:f2:75:bf:3a:66:
fe:10:75:f0:94:ba:be:f6:59:97:8b:a0:84:4b:3e:d3:ee:09:
72:f9:8b:7f:98:4f:59:f6:91:2b:2d:1e:58:7c:76:96:f8:2b:
48:62:57:b5:c4:36:7e:d8:56:c8:c8:b5:0c:bf:5a:af:40:de:
61:41:1c:66:cd:83:e9:d7:ae:dc:a2:c9:51:8e:a2:f8:31:b3:
30:d9:3f:52:36:92:e3:3f:a4:88:a3:0d:ed:62:fa:18:94:01:
92:17:a6:36:ce:dc:35:24:66:dc:7c:fd:39:25:87:ca:98:17:
29:25:e6:6e:c5:db:40:52:5f:82:68:4c:5e:63:2f:7c:51:8e:
48:bb:6e:ba:11:27:0c:89:29:b8:2f:7a:d5:bc:fb:00:b8:9a:
8a:13:d8:0e:8f:2b:8c:f5:1c:fa:35:2b:96:73:d3:f5:d2:5e:
dc:c0:23:4c:36:2e:55:e8:97:7f:20:a5:07:c7:8f:1e:67:3c:
00:50:93:01:fc:23:2b:bc:07:d0:76:5c:de:d8:7a:33:7d:47:
39:60:50:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:12:32 2025 by rpki-client