Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/gkL3iPwUvRJdFOuH5h_esEYOv1g.roa
File: gkL3iPwUvRJdFOuH5h_esEYOv1g.roa (raw, json)
Hash identifier: D5sAaYrXC1iNIJEWzZH50ED8PYgdqHVtXy1apR/w+ts=
Subject key identifier: 82:42:F7:88:FC:14:BD:12:5D:14:EB:87:E6:1F:DE:B0:46:0E:BF:58
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F62
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gkL3iPwUvRJdFOuH5h_esEYOv1g.roa
Signing time: Tue 18 Feb 2025 01:33:59 +0000
ROA not before: Tue 18 Feb 2025 01:33:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 120.108.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3938 (0xf62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:33:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8242F788FC14BD125D14EB87E61FDEB0460EBF58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:27:f1:09:77:95:45:c9:73:2a:c5:28:78:9f:
e7:63:54:c1:60:f9:ff:8b:f2:73:ad:b2:e4:c0:47:
a5:3a:48:fc:82:1f:ae:ed:bd:1b:04:23:c8:fa:78:
83:97:e3:e7:de:f1:2e:87:b2:be:fd:bf:64:2e:d7:
89:97:20:f0:b6:64:c1:2f:11:09:2f:4f:e9:3c:50:
d6:1b:b5:32:3f:3d:66:c3:fa:05:4d:20:81:af:37:
6f:d6:30:df:4e:cf:8b:7a:ee:95:b9:4a:17:3b:98:
3e:25:04:65:3a:15:c7:cb:17:95:25:24:cc:7c:03:
7f:90:8f:4d:35:f2:21:d6:87:ff:cc:3f:46:a4:bb:
a8:eb:1e:c3:95:00:75:25:40:b3:0e:67:fe:8c:29:
98:54:10:6f:58:69:8d:a0:47:08:89:d8:1d:5f:85:
53:70:a7:8f:9b:e9:a5:30:fe:ee:55:49:26:4f:bd:
f9:d4:96:59:9e:a0:fd:ea:c6:61:73:4b:9c:57:1e:
65:3d:69:05:df:36:18:4b:b7:10:39:77:30:21:94:
6c:ba:e1:5c:7d:1d:6d:e1:b6:3e:a9:54:1e:8c:0d:
b4:c2:6b:d7:93:80:75:1f:ad:fc:c3:a8:b1:e4:6b:
73:3b:61:b3:15:23:2f:86:74:3c:11:b0:19:5c:52:
87:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:42:F7:88:FC:14:BD:12:5D:14:EB:87:E6:1F:DE:B0:46:0E:BF:58
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gkL3iPwUvRJdFOuH5h_esEYOv1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.108.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:87:f7:c4:d6:0e:13:e5:da:79:a8:ef:b8:91:59:a8:fe:43:
4c:d9:98:c5:e6:07:86:4a:22:7e:fe:87:16:57:d1:4e:7c:0e:
ba:a1:36:20:69:86:3e:56:72:1b:c4:57:78:fa:08:a9:27:e8:
ee:2e:98:5f:47:b5:63:b7:9c:ab:76:b6:ea:98:62:9f:d4:5f:
53:b7:9e:b7:9b:6e:a4:37:c8:77:7b:13:e8:2a:45:53:3c:38:
a4:6e:13:46:af:2c:1f:d4:8b:e0:b0:dd:84:75:24:5d:76:ca:
e7:f5:7b:2b:af:29:e0:8c:66:35:39:31:f0:3d:11:93:2f:05:
ab:3f:ef:76:ee:00:ce:01:a8:56:bc:46:d3:23:4e:4c:8d:e1:
dc:77:8a:54:21:bb:d5:bf:3c:eb:c8:a9:24:60:86:bb:f3:43:
59:87:b0:27:45:49:70:ba:d0:1d:fd:57:d5:1c:0c:6b:83:e4:
b3:28:7f:dd:99:63:01:4b:80:37:a2:0f:29:52:32:f5:d1:34:
78:b0:4a:b9:c5:3a:bb:75:09:29:da:30:f4:70:ef:a0:76:6b:
e2:3b:dc:e1:d5:b2:cc:25:8a:4e:79:63:ed:28:d3:08:91:68:
d5:c3:3d:3d:f6:6f:c8:ec:49:f4:7e:26:79:29:84:fe:24:4d:
7e:02:43:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:47:57 2025 by rpki-client