Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/gCwj5hddZXVubEECeGVYWPjjGqc.roa
File: gCwj5hddZXVubEECeGVYWPjjGqc.roa (raw, json)
Hash identifier: 3x1+KGtAxzPLI3WmRZ4JsVMT0JpjgaU7poSJfvVmDv8=
Subject key identifier: 80:2C:23:E6:17:5D:65:75:6E:6C:41:02:78:65:58:58:F8:E3:1A:A7
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EEB
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gCwj5hddZXVubEECeGVYWPjjGqc.roa
Signing time: Mon 10 Feb 2025 14:16:13 +0000
ROA not before: Mon 10 Feb 2025 14:16:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131150
IP address blocks: 163.32.136.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3819 (0xeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=802C23E6175D65756E6C410278655858F8E31AA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3a:61:7f:70:de:28:18:80:8a:e9:d3:69:cd:
8c:80:91:67:12:53:b1:b7:8d:f2:00:b7:c3:f2:36:
00:50:28:78:6a:5b:31:5c:c6:a5:6a:4d:c7:fb:72:
cd:8d:83:12:94:4b:03:6f:34:ab:d2:51:1c:6d:cd:
1a:b7:90:c3:c2:94:4b:37:dd:12:c3:c2:09:16:99:
6f:fa:5e:33:97:12:1d:18:09:ee:53:30:91:f0:84:
18:46:a2:1a:be:09:89:06:4d:73:56:88:6b:83:ba:
5a:8a:fb:b5:c2:e3:3c:0f:33:44:e8:c0:0d:e9:89:
67:a1:e6:d7:7f:84:df:6e:74:49:b2:ea:b6:18:52:
3a:cf:db:2b:96:53:23:03:a7:39:40:22:63:72:4c:
f4:18:c1:66:ed:44:5a:f2:4b:66:b6:ac:66:c5:64:
3b:1c:72:fb:cb:cc:5d:64:16:b4:56:3c:f1:40:1e:
37:91:d6:04:33:e2:86:e0:27:e3:2a:04:db:42:d6:
89:49:37:5d:6d:ed:c3:2b:ce:31:7f:49:a5:ac:05:
72:10:02:17:a8:29:15:d1:17:e2:7f:8a:da:35:cb:
2b:15:03:46:e6:3e:8d:a4:df:fc:da:e9:7b:73:96:
ba:d6:5a:44:28:96:42:e7:88:ab:d1:26:ff:8f:5f:
d7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:2C:23:E6:17:5D:65:75:6E:6C:41:02:78:65:58:58:F8:E3:1A:A7
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gCwj5hddZXVubEECeGVYWPjjGqc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.32.136.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:70:07:f7:ae:de:75:cb:b2:98:4f:f0:79:f4:e3:ad:5c:d1:
c9:4e:da:f5:15:3a:06:c4:ee:2d:83:c9:ec:ed:d7:dd:95:b5:
69:75:e3:26:1f:41:f7:28:1d:a8:91:b2:58:8d:ba:cb:53:ac:
de:9d:ec:de:71:a1:5f:d2:2b:c1:94:13:4a:e7:51:b6:30:62:
9d:66:5d:57:17:a4:ea:c4:8a:fa:26:0a:4c:8e:c8:77:e6:62:
53:ef:89:ad:41:8b:81:d8:69:c5:49:6b:76:b2:d7:1f:7f:f3:
e7:92:02:9d:56:3b:8e:1d:30:66:ce:96:9b:8d:d4:7d:31:0b:
3f:4d:c8:89:54:53:82:c6:13:d0:f4:93:76:74:67:d5:25:cd:
79:94:ba:aa:ae:22:50:d1:ef:bc:92:c0:d1:93:6f:34:8b:d6:
53:b3:c1:50:84:a6:39:1b:f4:18:d0:80:1c:c7:c8:89:5c:45:
cb:aa:e1:52:7e:c4:bd:c4:42:68:fb:2c:7d:95:c9:23:55:70:
92:30:ac:f4:12:3e:9e:2a:48:26:7b:32:32:9e:e2:58:9e:44:
5d:48:ac:18:7f:ef:83:c3:90:b7:df:1d:21:cb:13:b0:fa:b3:
4f:c4:70:fc:ab:6f:a7:e4:71:64:05:cc:7c:87:0b:3f:4f:2c:
61:07:77:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:38 2025 by rpki-client