Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Q2-plPZn31WvWySjQjl6V0Xukuo.roa
File: Q2-plPZn31WvWySjQjl6V0Xukuo.roa (raw, json)
Hash identifier: 5Q1xdtTZ1WRgrzObTfywU0QJ4uK2FdLhEDFOhTfri50=
Subject key identifier: 43:6F:A9:94:F6:67:DF:55:AF:5B:24:A3:42:39:7A:57:45:EE:92:EA
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E5E
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Q2-plPZn31WvWySjQjl6V0Xukuo.roa
Signing time: Mon 26 Aug 2024 05:27:20 +0000
ROA not before: Mon 26 Aug 2024 05:27:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 203.68.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3678 (0xe5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=436FA994F667DF55AF5B24A342397A5745EE92EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d4:31:47:6b:40:a2:d3:d0:27:0f:9c:73:9b:
87:c5:60:af:c0:f0:1d:eb:4d:b3:2a:d7:6f:08:87:
ad:55:a9:27:f1:2f:af:77:6e:eb:19:05:86:cb:48:
2d:3c:6f:5f:7d:e7:b7:aa:41:7d:17:50:b9:34:69:
20:71:87:32:37:c3:90:1c:96:24:a4:fc:80:51:d9:
bb:6f:87:79:5d:21:2a:1b:e5:54:a5:7b:7b:4a:0d:
4a:70:7c:0b:0f:ed:3a:8e:9d:36:ab:9d:9b:2a:c7:
e6:90:4c:b9:00:70:01:67:5f:f7:24:7b:fd:a3:39:
1d:84:ec:b9:32:3c:70:35:33:06:39:bb:b2:c7:8f:
6e:50:27:94:6c:b8:fe:99:36:99:15:3b:d4:8b:b0:
95:4c:de:98:7a:e5:8f:52:ad:0f:9c:54:46:51:ee:
5f:cb:f1:6a:28:6a:bc:64:9c:82:48:1a:0a:70:08:
49:66:5e:91:f0:f6:79:07:9b:d2:2e:e3:59:2d:c9:
04:8f:a4:cf:64:94:17:50:51:f4:03:aa:e1:38:8c:
6d:20:08:6d:cc:00:7a:c1:3e:65:76:10:3e:27:61:
1a:87:44:0c:ca:dd:5a:40:e8:7a:fd:f1:a9:1a:d5:
a3:20:c2:92:19:7a:c2:fe:20:be:ac:fc:4b:90:b2:
b7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6F:A9:94:F6:67:DF:55:AF:5B:24:A3:42:39:7A:57:45:EE:92:EA
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Q2-plPZn31WvWySjQjl6V0Xukuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0f:5e:19:f8:00:ca:28:b0:ba:35:e4:ba:e4:d2:76:c7:28:b2:
82:8b:f6:68:ac:de:2b:02:8a:06:79:1c:af:06:c9:97:da:53:
22:ba:0f:d3:97:e9:cd:c3:b1:2e:60:2f:22:e0:13:65:1f:74:
ca:67:dc:21:0b:b8:f3:aa:a1:2d:71:00:8b:6d:1b:0a:18:7a:
ab:67:39:f5:14:43:58:e5:95:5e:2a:f4:2b:d5:0f:34:9d:8f:
5e:dd:c3:5e:64:9e:d9:87:89:2f:cf:ee:5b:36:90:2b:41:d4:
65:55:1e:80:60:88:a5:d4:ff:ae:4b:a2:60:cc:a8:11:f4:51:
a1:e3:f5:ff:67:90:6e:fe:93:5b:e3:93:0e:2f:a6:a5:0d:99:
c0:c7:48:dc:ae:63:db:7f:33:28:b4:24:29:38:1a:6e:28:ab:
a7:66:ef:70:52:38:84:41:69:1d:df:d4:27:9f:51:8b:a3:9b:
40:28:a5:19:f9:d9:7d:da:9e:63:3d:7b:f8:98:23:4a:b8:3d:
30:47:44:66:79:e2:d7:9e:5b:9d:b5:36:43:47:a9:57:74:6b:
5f:ab:6b:57:7d:08:de:13:fe:b4:ae:ac:a5:da:1b:05:b6:59:
85:7a:1c:40:87:31:4a:ba:58:ff:27:b6:c8:fb:f0:f7:d8:b2:
5d:1f:45:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:32 2025 by rpki-client