Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/X_ohQUnXXg08LaBm5BNYT4G5pqg.roa
File: X_ohQUnXXg08LaBm5BNYT4G5pqg.roa (raw, json)
Hash identifier: aKJ6/81tx1YbOcfuIYLYeP44pCCaJyCNAK5IOG4c+8k=
Subject key identifier: 5F:FA:21:41:49:D7:5E:0D:3C:2D:A0:66:E4:13:58:4F:81:B9:A6:A8
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E62
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X_ohQUnXXg08LaBm5BNYT4G5pqg.roa
Signing time: Mon 26 Aug 2024 05:27:23 +0000
ROA not before: Mon 26 Aug 2024 05:27:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 120.96.0.0/11 maxlen: 11
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3682 (0xe62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5FFA214149D75E0D3C2DA066E413584F81B9A6A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:97:a3:b8:30:8a:00:ce:6a:e0:2c:28:53:
e9:a8:21:08:84:f8:dc:c4:04:47:53:2b:a3:e6:6a:
74:a2:cf:1f:99:eb:4d:a4:46:b8:34:37:ca:b8:cd:
d7:04:6a:72:25:b0:1c:0a:05:9b:3e:a3:d1:86:8e:
21:39:fa:84:a2:74:f5:63:98:a5:d7:1d:64:7f:7a:
21:12:16:cb:14:af:63:6f:b9:d4:4e:2d:31:f6:54:
2e:bf:60:df:a8:56:b9:90:d7:7b:cf:7e:f5:59:82:
1e:42:22:ba:b4:bc:76:94:5c:f5:95:98:78:0a:95:
de:c6:5c:d2:65:f0:20:32:c2:af:51:72:3f:d0:ef:
4c:a0:dc:a3:0c:10:fb:4a:ea:f8:7a:5b:6e:ea:b1:
94:00:e6:92:2b:6b:90:c2:9d:44:1d:52:26:0d:5f:
a3:b3:91:74:a5:e7:13:cc:92:77:c6:4e:66:63:d2:
04:c0:ea:ab:12:aa:9c:58:ba:80:92:5d:1c:8c:fd:
39:39:6f:0a:4a:45:dc:c4:c1:73:fc:cb:77:db:6e:
3e:f7:b7:76:e0:53:a9:2d:74:43:3f:ee:d5:6e:48:
b0:b2:35:86:49:1c:95:12:ef:b3:ed:c9:66:85:57:
47:ad:a4:a8:e6:bd:2f:96:05:c6:9e:c9:18:12:1a:
2b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FA:21:41:49:D7:5E:0D:3C:2D:A0:66:E4:13:58:4F:81:B9:A6:A8
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X_ohQUnXXg08LaBm5BNYT4G5pqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.96.0.0/11
Signature Algorithm: sha256WithRSAEncryption
33:96:80:87:4e:5c:63:99:ae:80:a7:2d:aa:f3:e0:92:e5:d1:
62:51:9f:0f:e6:4f:7b:02:45:c0:d7:14:5c:b1:8d:ca:17:79:
4a:d5:35:1a:4e:e5:11:db:ba:98:b9:9e:84:69:66:37:13:fe:
3f:dc:15:a5:34:8a:1c:28:63:91:3b:f4:79:6b:c3:27:59:d3:
3d:3e:1d:c3:02:8d:d6:5c:6f:f5:63:06:eb:67:30:43:fc:ea:
d1:0c:0b:51:85:b6:6a:56:e4:85:fe:7a:11:46:27:9e:4c:76:
ee:fe:04:e5:7d:60:54:ed:63:18:d6:69:60:6b:61:1d:20:e7:
49:f1:9d:d1:6e:0a:de:06:57:39:82:f3:45:12:d6:ce:d6:a2:
aa:c0:48:bd:e6:5e:fe:b7:cf:87:95:75:08:85:18:35:b1:e4:
a0:0e:77:a1:fc:4f:97:5a:8e:e1:8e:4a:b8:9b:4d:c3:4b:9c:
4b:21:f7:fb:12:50:da:53:0f:a7:18:b4:ab:0b:d9:ee:ce:5f:
67:66:8a:18:a7:0d:22:e8:eb:0a:42:c9:a3:24:f3:78:56:b5:
c5:87:68:b6:a3:4b:4a:1f:f9:96:5c:13:e4:07:83:2d:7a:10:
7b:2e:01:74:3e:e7:c0:96:10:31:78:08:51:e0:30:9a:ff:34:
ee:a4:dc:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:33 2025 by rpki-client