Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/TI3UKkgKNhlPTHdpMAbOusbxI0A.roa
File: TI3UKkgKNhlPTHdpMAbOusbxI0A.roa (raw, json)
Hash identifier: NM/7R6qVlbjHqzlUsmsUORl618ol64YxCmmC2oRo2Aw=
Subject key identifier: 4C:8D:D4:2A:48:0A:36:19:4F:4C:77:69:30:06:CE:BA:C6:F1:23:40
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F70
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TI3UKkgKNhlPTHdpMAbOusbxI0A.roa
Signing time: Tue 18 Feb 2025 01:40:12 +0000
ROA not before: Tue 18 Feb 2025 01:40:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18177
IP address blocks: 120.117.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3952 (0xf70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:40:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4C8DD42A480A36194F4C77693006CEBAC6F12340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f5:1f:56:6f:e6:72:f4:08:fa:07:ca:51:20:
93:0f:90:3d:66:07:21:22:cf:ac:80:c5:0a:05:f1:
a6:94:4a:6c:67:96:98:da:e6:e1:73:49:9c:8a:09:
bc:1b:1c:9d:58:58:97:d2:88:d8:67:15:02:7b:f2:
b5:9d:0e:6d:e6:f1:24:3e:c9:0c:a0:0d:0d:92:5b:
1f:4e:25:b5:cf:b3:c5:ea:ae:f6:7c:80:07:15:14:
09:c4:18:80:ea:05:9b:6e:3a:84:79:a4:83:34:1a:
4b:1a:27:5d:8b:f6:3d:6e:8e:af:f7:1e:70:fd:db:
0f:3a:f1:dc:ad:c8:09:eb:56:d7:12:aa:23:9f:5c:
1d:60:d5:7b:8e:6f:e4:63:4a:c7:4e:24:27:6c:bc:
2e:fe:f6:47:43:f5:ac:df:f9:e4:32:88:67:a8:f0:
aa:0a:e1:ce:eb:17:eb:4e:2e:0e:18:cb:0b:84:cd:
af:69:6d:82:a7:08:d7:a2:f3:b2:28:fc:f3:06:09:
89:09:83:2a:95:c5:b8:a1:b1:0e:c3:9f:90:70:00:
29:36:f5:d6:cf:62:7d:d3:4d:dc:c6:1c:e8:a0:d0:
13:c6:55:0f:6d:df:0c:92:1f:d2:91:07:9f:65:7a:
45:b1:c6:73:6c:d4:45:80:83:61:70:49:16:5e:2c:
42:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8D:D4:2A:48:0A:36:19:4F:4C:77:69:30:06:CE:BA:C6:F1:23:40
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TI3UKkgKNhlPTHdpMAbOusbxI0A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.117.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:2b:78:46:8b:94:da:1e:e7:85:08:2a:a4:b5:9e:be:5e:1e:
b2:d5:ce:c9:5f:f4:59:0f:8b:b9:69:cd:03:02:6c:09:5b:90:
64:32:10:53:e9:a1:76:64:3e:3a:38:f1:46:28:2b:52:69:f2:
7c:58:1f:03:52:89:e1:b2:91:8e:08:99:f4:71:63:02:f7:5f:
2d:5f:ff:30:9d:fe:c6:7e:25:34:a8:3a:da:cb:88:cd:9e:62:
dd:03:58:5d:cf:c8:7e:34:cb:e9:79:87:b1:26:38:73:12:24:
5a:ba:f6:b4:37:93:65:76:22:d2:ac:02:6a:b8:19:f7:72:22:
6e:bf:10:08:15:fa:1e:a1:45:a1:e2:d6:dc:3a:99:08:11:a0:
29:fb:b8:aa:90:ed:59:0d:f8:24:cb:92:b7:fd:81:15:34:78:
2a:e2:d9:f5:c2:d4:ea:74:2b:a8:92:a2:be:33:2c:66:99:46:
45:b2:89:2b:2e:00:12:3b:35:04:1c:39:e9:ab:65:33:2a:07:
bd:29:29:07:9a:02:3e:c8:8c:44:44:d9:8b:64:46:db:fa:1d:
b2:b4:6c:7f:46:7b:ce:45:a6:a8:66:70:5e:d8:84:73:e5:de:
d2:c8:39:2c:80:88:84:60:77:bd:99:77:d5:70:5e:1e:86:45:
c2:f0:9c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:18:07 2025 by rpki-client