Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/SNu-xiqg_Zio6yyTGhp-eNR5P_0.roa
File: SNu-xiqg_Zio6yyTGhp-eNR5P_0.roa (raw, json)
Hash identifier: F2hIyD2nRNsFupTwATmx8hKNBeKjqJdU4w9Q+uIbOZ4=
Subject key identifier: 48:DB:BE:C6:2A:A0:FD:98:A8:EB:2C:93:1A:1A:7E:78:D4:79:3F:FD
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F00
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/SNu-xiqg_Zio6yyTGhp-eNR5P_0.roa
Signing time: Mon 10 Feb 2025 14:16:17 +0000
ROA not before: Mon 10 Feb 2025 14:16:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.32.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 15 Apr 2025 01:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3840 (0xf00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=48DBBEC62AA0FD98A8EB2C931A1A7E78D4793FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:27:7a:0e:23:64:8c:61:ad:8b:05:28:20:6d:
39:c0:d8:3e:75:e1:ba:64:87:5f:6b:3a:7e:64:eb:
47:bd:78:89:91:11:23:7b:30:64:f7:c1:fe:67:65:
4c:48:37:50:ec:3b:8c:6a:94:fa:45:8a:2a:0c:7a:
4c:66:24:b7:c4:a8:0d:1d:8f:a1:f0:c7:c2:75:7d:
7f:95:6e:f4:12:9f:f5:1b:b2:7e:82:18:15:9d:85:
ac:26:bf:33:ef:95:8f:90:c1:21:dc:d5:cd:2f:ce:
8c:25:4b:c8:f6:1e:11:62:15:a9:8a:00:bb:22:08:
1e:76:c8:11:dd:d4:ae:d9:d2:1d:cd:cb:1f:2a:77:
33:b4:a4:63:93:84:90:60:78:18:8a:13:3e:f7:48:
e8:21:1c:4a:0f:c5:9c:f8:9b:cc:aa:bf:ce:3b:ac:
e9:36:01:3d:ea:6b:a3:14:70:e3:a4:9d:ab:c4:7b:
1a:fd:0c:68:97:d2:2e:93:30:da:d1:be:dc:9c:7b:
32:9f:3e:a1:91:ac:48:7d:2b:af:5a:3e:94:b5:c7:
5f:f0:7c:c4:0f:92:39:4e:de:cd:96:03:3f:c0:69:
41:bb:bc:98:72:cd:0e:83:16:6f:61:9a:85:08:4a:
ef:dd:2e:a7:22:67:d2:ed:bc:f7:b3:39:2b:00:31:
72:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DB:BE:C6:2A:A0:FD:98:A8:EB:2C:93:1A:1A:7E:78:D4:79:3F:FD
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/SNu-xiqg_Zio6yyTGhp-eNR5P_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:51:10:05:00:a0:8d:87:be:8b:03:d8:f3:e1:5e:5b:da:92:
aa:e3:d2:e3:c1:9f:e0:13:79:06:ae:2a:4b:b0:f6:36:74:df:
b4:07:99:5a:a0:5c:bf:8f:8f:8d:68:d6:af:62:c1:a2:24:33:
07:a6:e9:8c:e8:5d:2f:4f:d7:92:d2:66:2e:f6:e2:56:de:fa:
d8:c3:5c:68:5d:5f:53:2e:19:f9:80:02:11:f6:3c:00:1f:93:
47:59:1e:51:e8:d4:d6:cd:c3:b2:59:53:e0:e1:cc:6b:24:e2:
01:71:09:ce:b0:5d:a1:44:11:51:4e:58:11:c0:ce:b7:f9:12:
bc:94:8e:6f:9f:c1:54:bd:1f:1f:25:0a:bf:2d:b4:67:f4:a0:
57:6e:66:6c:76:f1:12:1d:4a:54:16:bf:9f:6f:8e:45:47:5b:
a0:79:fc:9c:f1:de:d5:47:3c:50:56:8b:e7:50:2f:7a:43:48:
e1:53:e9:9c:2d:3b:16:52:e5:a0:e5:6e:68:34:d2:98:3a:09:
15:79:48:1d:56:09:78:b1:7d:7d:03:5d:02:c7:aa:f7:b6:26:
ff:40:b7:df:7a:72:ef:1a:e7:bc:28:96:fb:dd:17:68:c4:9d:
38:ae:f4:c2:93:5f:09:45:d5:b6:84:24:78:65:ec:d8:c1:e6:
71:f9:f7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 00:01:14 2025 by rpki-client