Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/a_myp3uGL31PUw1wlJV5sPnRpjI.roa
File: a_myp3uGL31PUw1wlJV5sPnRpjI.roa (raw, json)
Hash identifier: zyXHG+/yrRGxjlc8BRmx2K7n/lRoshRowC/vbMvwfMo=
Subject key identifier: 6B:F9:B2:A7:7B:86:2F:7D:4F:53:0D:70:94:95:79:B0:F9:D1:A6:32
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E64
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a_myp3uGL31PUw1wlJV5sPnRpjI.roa
Signing time: Mon 26 Aug 2024 05:27:24 +0000
ROA not before: Mon 26 Aug 2024 05:27:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38844
IP address blocks: 203.68.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3684 (0xe64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6BF9B2A77B862F7D4F530D70949579B0F9D1A632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7a:cc:7d:ad:3e:e5:ce:48:b9:cb:68:16:0c:
20:00:cf:9c:f6:e2:86:9c:36:30:95:c0:17:d0:b6:
c5:c2:a8:10:b4:2b:46:66:a6:50:ef:1d:2b:4a:ec:
87:53:80:c6:ae:df:77:ce:12:85:4d:48:47:a7:8b:
1f:36:21:58:2c:2e:2b:13:39:21:72:d5:8d:65:24:
9d:06:e6:58:51:2a:97:26:bc:71:ae:2c:54:4e:35:
aa:55:fa:17:25:cc:c1:8e:4c:27:c2:5c:fb:86:23:
74:c0:41:d1:b4:b5:14:49:87:07:67:cd:39:03:ff:
64:78:08:23:a5:00:8d:07:cb:a2:13:e2:c7:59:71:
0a:0e:7d:ab:35:95:67:5b:6b:ed:b8:05:0c:c7:85:
c5:69:19:d2:80:a2:7e:67:78:82:c7:0a:ab:1d:cc:
cd:aa:51:94:6e:50:c6:93:82:21:13:84:d6:84:ff:
ee:8f:66:33:00:11:dd:c9:04:3d:50:32:ac:2e:22:
5a:7e:81:99:af:d0:6f:93:bd:47:fe:3a:da:76:b6:
24:53:42:1a:02:d4:89:7d:b9:9a:dd:9a:74:2a:5f:
ff:6b:79:77:38:9e:ab:f4:3b:bc:d5:7e:95:b5:1d:
ec:dc:c6:e0:66:a3:14:3c:94:8d:b9:0c:54:01:23:
36:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F9:B2:A7:7B:86:2F:7D:4F:53:0D:70:94:95:79:B0:F9:D1:A6:32
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a_myp3uGL31PUw1wlJV5sPnRpjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.168.0/24
Signature Algorithm: sha256WithRSAEncryption
14:be:78:45:52:4b:c6:90:40:cd:92:2b:c7:b9:76:1f:e7:91:
a6:3b:fb:03:12:d6:73:e9:0d:a8:95:f7:0f:7b:fa:3e:c1:10:
c9:41:8a:a0:9c:30:08:93:95:e9:c3:fa:74:92:6a:a1:e2:1a:
64:bf:78:82:b9:c1:22:de:09:e1:82:47:1b:b0:73:18:9c:8e:
ec:8d:42:a2:67:1d:c1:72:65:e0:d9:a5:8f:41:21:bf:11:7d:
64:09:a8:79:83:2f:4d:98:75:64:9d:89:2e:2a:9a:ce:8f:c4:
ab:b2:c7:ac:92:ad:40:d6:6e:9e:26:d7:1f:68:ad:d0:93:2f:
ff:69:30:80:de:28:9b:17:7c:20:c1:d9:0d:47:5a:d3:c1:79:
4b:42:96:e7:7d:10:f0:a2:eb:49:8d:85:0f:22:1c:b5:b1:2a:
8a:d3:8e:59:f4:44:88:54:8c:9b:93:66:61:8c:7d:4f:2f:ea:
62:0b:c6:43:e5:29:fd:14:ef:e1:87:f1:e9:4b:06:a3:2e:fc:
f1:ad:9c:70:5d:5e:49:bc:59:dd:8d:46:9f:f3:f9:a6:07:22:
e5:ca:ef:a8:12:24:9d:6c:e7:67:94:33:40:ba:72:69:6b:09:
99:bd:91:c2:54:04:17:4e:97:ca:51:d0:2a:32:e2:1f:1e:df:
2e:db:09:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:16:43 2025 by rpki-client