Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/hrHQwh3jFDDGSj_ooXRWRDLgDps.roa
File: hrHQwh3jFDDGSj_ooXRWRDLgDps.roa (raw, json)
Hash identifier: esnMboxmjKkkbYr0P9B0Y/e356Wg6P8mHlKkgi73sdk=
Subject key identifier: 86:B1:D0:C2:1D:E3:14:30:C6:4A:3F:E8:A1:74:56:44:32:E0:0E:9B
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F66
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hrHQwh3jFDDGSj_ooXRWRDLgDps.roa
Signing time: Tue 18 Feb 2025 01:36:14 +0000
ROA not before: Tue 18 Feb 2025 01:36:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 120.110.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3942 (0xf66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:36:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=86B1D0C21DE31430C64A3FE8A174564432E00E9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:c7:6b:2d:82:d0:e6:c4:73:91:02:3e:26:78:
d3:7f:4f:53:29:28:39:bd:cf:91:a9:4d:7d:50:84:
13:ed:57:a3:f4:f5:75:4d:7a:37:a5:b4:49:7a:b3:
51:30:47:f6:ef:e1:18:a1:dc:b9:c7:83:fe:19:4d:
81:cb:64:9c:4e:68:08:b9:ca:9c:d7:91:5c:ae:e0:
2b:25:ce:55:08:10:95:3e:4b:ee:56:e6:b9:9a:81:
ad:76:77:0e:85:a8:ed:d8:ac:bf:a6:83:d4:83:fa:
71:17:ef:81:08:4e:ac:a0:d8:19:bc:4d:eb:e3:ff:
41:48:ea:c3:99:9d:e6:fc:78:7f:f0:68:a0:44:43:
3d:19:be:45:68:5b:36:c1:e3:58:89:e5:f5:10:cd:
43:ae:26:df:59:7a:af:6b:c8:1d:95:34:51:74:ce:
df:7a:e2:23:cc:96:db:17:5b:5d:46:dc:02:37:8c:
8b:68:0b:c7:6b:88:dd:85:00:b0:e6:7c:b8:b8:53:
c5:de:d3:ca:cf:62:88:71:2f:1d:93:d1:26:07:20:
ea:d1:cd:44:8a:b5:ad:ff:4e:7c:b2:d7:32:9f:22:
ab:09:2f:2a:6c:07:0e:25:4e:36:27:40:4e:85:bb:
67:3e:2a:a0:dd:ae:24:37:bb:4d:0e:35:d2:4a:e6:
89:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B1:D0:C2:1D:E3:14:30:C6:4A:3F:E8:A1:74:56:44:32:E0:0E:9B
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/hrHQwh3jFDDGSj_ooXRWRDLgDps.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.110.0.0/16
Signature Algorithm: sha256WithRSAEncryption
81:46:d3:32:ce:30:ed:ea:4e:2a:b7:c5:c0:13:c4:57:a9:49:
16:07:be:59:07:ba:6e:9d:68:9d:6b:25:3f:49:76:3a:e0:51:
5d:15:9c:7d:5f:d0:ba:1c:67:1d:7d:2c:5e:52:1f:51:4c:8d:
2f:87:1a:70:ea:79:df:1d:04:a4:80:22:b6:86:12:e3:25:1c:
8f:46:06:06:e7:f1:e7:eb:23:cd:49:87:df:ca:65:2e:b3:15:
96:d1:6d:06:ca:53:40:93:62:f1:13:b5:30:87:30:9b:64:d8:
2c:aa:03:58:2f:27:d7:82:b1:83:40:71:28:94:a7:b0:a5:c0:
e0:94:14:61:f3:a8:9c:42:71:d4:f6:4f:12:ea:92:5f:51:6a:
1c:43:13:42:1b:e7:d9:80:8e:73:37:b6:2b:c3:0c:6a:f0:91:
f7:53:fd:3d:41:68:78:df:ee:54:b7:18:f4:02:ae:3e:27:74:
dc:ac:4a:3f:9f:82:a4:33:62:98:71:6f:88:c5:1e:3f:d4:6b:
9e:17:eb:a3:7e:9e:25:b5:66:27:1e:c5:34:78:15:8d:d3:af:
31:40:96:fc:68:d8:d9:84:27:1e:48:30:e3:f6:15:1d:5f:8d:
b3:21:98:4e:cc:02:6d:cc:f6:a4:0e:34:2a:d5:1c:18:4d:3c:
21:aa:e9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:02:50 2025 by rpki-client