Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/T98od9D5v0LWqwHy52syGDersV8.roa
File: T98od9D5v0LWqwHy52syGDersV8.roa (raw, json)
Hash identifier: 7Uia5tBBJwh/S+s7tlu+c81WkW3TCvb9sPyBJEAQ1VA=
Subject key identifier: 4F:DF:28:77:D0:F9:BF:42:D6:AB:01:F2:E7:6B:32:18:37:AB:B1:5F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EE5
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/T98od9D5v0LWqwHy52syGDersV8.roa
Signing time: Mon 10 Feb 2025 14:16:12 +0000
ROA not before: Mon 10 Feb 2025 14:16:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131150
IP address blocks: 163.32.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3813 (0xee5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4FDF2877D0F9BF42D6AB01F2E76B321837ABB15F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:90:62:c7:95:3a:65:5b:95:48:fc:ab:64:
17:c8:38:c8:2d:7b:cb:24:d9:7a:fd:a8:6b:a0:4e:
3f:2b:bc:21:6f:0e:35:94:a6:c0:b3:b4:13:9d:dd:
e6:62:7c:68:43:8e:4d:a3:9f:2a:01:eb:2f:aa:89:
45:4e:d9:5a:43:10:5b:b0:8f:e8:c4:71:21:df:a1:
05:a2:9a:e7:37:c0:99:92:36:9d:6c:a0:5e:b8:e3:
f5:2e:c7:11:85:ca:9a:99:58:fb:5b:07:e9:06:d1:
d2:a2:22:d9:85:83:2b:39:e3:87:60:e8:78:26:55:
11:8d:3a:aa:40:b3:05:13:4f:f5:21:db:dd:03:e6:
20:91:cd:60:58:94:a4:22:ee:97:91:29:f0:e4:a1:
31:23:6b:5f:5e:dc:b5:73:99:a2:e4:f6:56:60:a8:
2a:68:12:e8:53:af:1a:de:f7:30:50:b9:bc:fc:c3:
ac:58:6e:cd:94:b7:02:56:17:cf:2d:e2:16:65:2c:
f2:88:76:aa:16:fc:bb:f1:42:20:cb:fb:28:d3:ea:
b4:7a:26:bf:fd:8a:62:88:af:2b:92:1f:b6:14:b9:
1f:72:88:ec:a2:5c:59:fb:42:91:04:87:32:61:07:
98:0a:78:30:ee:89:ec:c2:ef:ce:c3:51:70:9b:71:
a2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DF:28:77:D0:F9:BF:42:D6:AB:01:F2:E7:6B:32:18:37:AB:B1:5F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/T98od9D5v0LWqwHy52syGDersV8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.240.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:a4:90:cc:a0:74:2e:00:b6:d6:d4:6d:27:f6:1a:29:d1:01:
31:bc:80:d3:68:2c:c3:69:f4:a1:a2:e1:95:0e:9c:a8:33:d2:
79:a5:30:6a:d0:dd:04:29:c8:85:87:d0:fc:ec:07:fb:1a:4d:
e3:de:30:e1:24:45:23:ab:57:4c:33:64:ff:1f:c4:51:be:aa:
e5:0c:70:3c:52:0b:38:7a:56:d3:88:d7:0b:dd:51:2b:c3:44:
aa:a0:6f:04:3f:14:f6:5f:b5:92:48:8f:60:07:1e:fa:b3:41:
6c:f1:10:ef:50:ad:87:33:25:c5:53:6d:d2:5d:4d:18:26:3a:
d0:37:58:80:1e:4e:27:a9:d9:72:86:af:25:ee:c1:88:56:9a:
3a:7c:97:e3:1d:47:1a:93:dd:05:0f:ee:2f:f5:c9:e6:e4:8c:
1a:8b:e9:da:a9:99:6b:98:b4:8a:4a:39:00:42:e6:1f:c3:94:
55:fc:8b:4a:06:18:59:12:8c:d6:4d:33:be:2a:37:2d:55:c2:
a7:68:d6:33:03:39:f5:d2:83:9c:ff:bc:58:0d:1b:d1:f2:c4:
3f:3b:5e:7e:49:c2:de:46:44:f5:cf:89:14:32:23:63:fe:fa:
ec:7e:92:75:18:0c:14:93:0f:63:f9:8c:4c:7c:2f:82:68:3d:
78:70:e6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:04:11 2025 by rpki-client