Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XOJZkVkl31iARtV3AHmXuV1TMIc.roa
File: XOJZkVkl31iARtV3AHmXuV1TMIc.roa (raw, json)
Hash identifier: sYfPgqfI8YkLz6vAweOU0WUibxWYpXtKMYdcOChjmtY=
Subject key identifier: 5C:E2:59:91:59:25:DF:58:80:46:D5:77:00:79:97:B9:5D:53:30:87
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F0C
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XOJZkVkl31iARtV3AHmXuV1TMIc.roa
Signing time: Mon 10 Feb 2025 14:16:20 +0000
ROA not before: Mon 10 Feb 2025 14:16:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38844
IP address blocks: 210.60.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3852 (0xf0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5CE259915925DF588046D577007997B95D533087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:88:e6:42:12:f8:4f:fc:34:a6:46:2e:86:31:
f7:d5:60:46:3a:b6:5a:ed:25:b2:f9:45:b1:17:cc:
5f:dc:9e:b8:26:b5:30:85:e0:e1:ce:ad:8c:5f:98:
dd:31:e1:fb:9b:2d:4d:57:b2:63:e1:d9:83:33:85:
6f:46:4e:ac:aa:2e:f9:4e:9f:5d:2c:c6:7b:0c:0f:
e3:3d:9e:18:8e:4f:5a:e3:a5:66:db:1a:ee:b1:7a:
74:92:5e:ff:b1:ac:25:67:fe:87:58:8a:66:ea:bb:
96:2c:aa:45:eb:d2:4a:4f:0a:ed:b6:ef:dd:26:bd:
06:b3:7d:c3:71:7b:38:5a:23:10:78:2e:8a:bb:4e:
13:94:af:b9:66:fb:e4:30:8b:d9:82:76:c2:42:12:
27:33:f5:a2:32:83:76:d3:87:dd:97:63:a9:74:58:
43:32:cf:7c:84:a7:0b:0e:e7:8f:85:dc:04:af:aa:
41:16:31:84:39:35:38:59:36:3a:57:5f:fc:d5:e2:
6a:ee:01:fb:36:4a:c1:82:17:90:1c:b8:55:8e:ce:
0b:dc:13:15:65:e6:af:89:fe:e4:a5:1f:ac:0b:7d:
f9:7c:22:e9:ad:07:1d:16:7b:ac:2b:e6:d3:67:e3:
a3:06:ed:48:da:15:90:c4:c2:39:6f:37:9d:1d:71:
78:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E2:59:91:59:25:DF:58:80:46:D5:77:00:79:97:B9:5D:53:30:87
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XOJZkVkl31iARtV3AHmXuV1TMIc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.150.0/24
Signature Algorithm: sha256WithRSAEncryption
27:5f:25:67:96:05:50:9d:82:6c:ce:41:46:8f:fd:12:a7:82:
33:d4:05:78:f5:e8:f4:e8:e2:43:d6:d5:92:c7:78:1b:e7:48:
73:3b:26:b7:f1:56:5c:d8:fa:7d:b5:be:99:90:e4:87:59:96:
62:24:53:96:90:b1:f2:dc:36:97:42:a1:2a:1d:97:33:64:2a:
f2:f5:59:cd:e5:c5:5a:0d:61:09:43:1a:ba:9c:0b:a8:4f:37:
96:3a:f2:9f:ea:3d:11:65:96:fc:fd:96:6c:a1:e5:05:e9:64:
b8:1a:2b:3e:72:1f:b3:5f:d3:7a:4d:88:b1:01:ac:02:b3:a7:
e8:36:93:7e:4f:d6:77:1d:8c:c1:1a:14:13:ba:3c:e2:36:8f:
ed:ce:6b:93:b7:29:54:ff:40:58:76:d6:bf:90:55:b0:48:70:
ff:bf:66:c1:d7:a6:36:26:ee:73:8a:d3:b4:ab:53:3f:65:b0:
e0:8c:b9:20:f7:86:12:b1:de:07:a6:f6:44:07:7a:f7:6a:0a:
00:f1:59:c0:bf:57:0d:f3:ed:78:31:9a:5d:c6:7b:a8:00:b3:
25:c4:48:1f:61:cf:6e:cb:71:84:7c:12:b1:e6:7b:d9:e4:9c:
ab:b5:4d:ac:3e:3f:49:aa:b8:75:63:e5:55:b9:77:91:78:9b:
e9:4a:65:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:30 2025 by rpki-client