Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_xnpT_rj4Rs3Tc4LRpp3_saknII.roa
File: _xnpT_rj4Rs3Tc4LRpp3_saknII.roa (raw, json)
Hash identifier: yo6nN7c4zNHUflSSPqD6wZX2Biq8LJ1rGW8jkBaSTbs=
Subject key identifier: FF:19:E9:4F:FA:E3:E1:1B:37:4D:CE:0B:46:9A:77:FE:C6:A4:9C:82
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0E87
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_xnpT_rj4Rs3Tc4LRpp3_saknII.roa
Signing time: Mon 10 Feb 2025 14:16:27 +0000
ROA not before: Mon 10 Feb 2025 14:16:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 140.112.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3719 (0xe87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 10 14:16:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FF19E94FFAE3E11B374DCE0B469A77FEC6A49C82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c0:7b:f4:f0:da:89:ca:99:dc:6e:b9:b5:27:
8d:14:bd:75:1e:9e:bc:6e:fe:a2:e1:a9:45:5e:9d:
95:87:03:23:74:be:f4:ef:8a:e3:5e:c5:05:3f:b9:
d4:27:d2:43:25:72:a1:44:09:5d:d2:ef:8e:30:85:
8c:25:cc:31:da:c3:7e:1c:8c:85:e1:94:4c:21:82:
ba:69:82:79:e1:2c:32:01:06:fe:49:82:aa:13:40:
01:3c:57:9e:b3:02:ca:e4:8b:21:e6:1c:fd:d9:f9:
cd:29:6b:29:14:bb:7b:f1:07:4f:e8:e1:08:b9:32:
f7:24:a7:4e:33:a7:6b:d2:c2:57:2f:c0:75:48:8a:
86:b2:d1:37:0b:41:4b:2f:de:49:7c:40:ca:0a:c9:
8f:a3:99:b6:cc:13:86:c7:83:a7:57:be:72:6c:21:
b7:be:3b:de:15:39:06:10:01:cc:ba:1f:0a:3c:90:
ec:86:47:c6:14:21:d1:14:ca:93:b5:e6:2f:1e:83:
59:e2:fd:06:3b:ab:ee:82:0a:7a:e5:49:2c:99:24:
b0:7f:54:a1:91:2e:eb:a7:21:a8:ed:e8:6e:7e:3b:
53:49:5a:94:ba:de:76:e5:6c:87:07:39:3e:2f:5c:
45:c4:61:74:19:83:c5:cb:55:41:66:83:c4:62:26:
43:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:19:E9:4F:FA:E3:E1:1B:37:4D:CE:0B:46:9A:77:FE:C6:A4:9C:82
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_xnpT_rj4Rs3Tc4LRpp3_saknII.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.112.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:a6:60:5b:2e:ba:9a:aa:31:6a:27:bb:03:a3:94:58:da:ca:
d0:f1:8a:6a:ce:0e:f0:ca:4b:c5:c9:80:e4:62:36:8b:43:ef:
9b:77:37:47:c1:37:2e:6c:e2:ce:d8:0a:62:ab:1a:b6:21:d5:
6a:38:de:ff:b0:fe:ba:ce:cd:b9:e6:75:99:4d:25:c8:25:01:
2c:90:dc:c4:f3:f9:ec:97:31:66:9c:fa:d8:ab:54:0f:f8:9b:
e4:07:77:2e:e8:2a:b9:c1:a4:e1:17:2e:1b:31:c5:01:fa:e6:
e3:75:d3:57:c3:37:ee:9b:fe:25:84:ef:0c:6b:18:83:d0:3d:
31:d4:27:b0:ae:58:4f:d7:73:84:f4:e1:3f:3a:0e:96:fc:fa:
9d:0e:9e:80:6d:ce:fe:0b:4f:d7:6d:40:91:2e:02:1b:22:ce:
fa:30:69:60:76:ed:73:cc:b5:1d:b0:c8:0c:dd:2e:50:91:2f:
13:76:15:e0:ee:e1:9e:3b:3b:a0:93:a4:df:d2:b8:ca:88:c0:
d8:07:3f:17:0f:e7:17:f5:6e:96:e1:40:ef:f7:5a:9b:99:35:
44:60:ff:9f:7c:0b:1e:0d:47:f4:e6:27:36:c2:41:26:ee:a0:
b7:2b:e5:fc:5a:13:8c:23:a5:2f:cb:1e:d3:6a:1e:32:8e:a6:
cf:fa:e9:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:17 2025 by rpki-client