Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/if44tGaUHf0ZPxa9pQzi6llZakw.roa
File: if44tGaUHf0ZPxa9pQzi6llZakw.roa (raw, json)
Hash identifier: 52p2Hd9BpRFvDzBoyHNqUaQOCmT0X98Kul4QMpwYTmw=
Subject key identifier: 89:FE:38:B4:66:94:1D:FD:19:3F:16:BD:A5:0C:E2:EA:59:59:6A:4C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F76
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/if44tGaUHf0ZPxa9pQzi6llZakw.roa
Signing time: Tue 18 Feb 2025 01:42:55 +0000
ROA not before: Tue 18 Feb 2025 01:42:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 120.124.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3958 (0xf76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:42:55 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=89FE38B466941DFD193F16BDA50CE2EA59596A4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b8:a5:a2:29:2b:1f:d1:8c:8d:ca:c9:be:81:
37:df:7d:98:45:bc:eb:8a:42:19:ba:34:9e:09:e2:
7d:6d:ae:8e:a6:e7:b9:65:26:04:a2:de:8a:ea:de:
c0:ac:43:f9:a2:68:dc:b2:46:fd:a2:57:86:bc:cc:
e9:d4:cd:3a:3d:4f:4b:9f:a6:2c:38:e0:40:8d:e1:
3b:d5:e7:8f:77:3f:bc:27:aa:91:ee:06:09:f9:bb:
e6:26:3a:bd:ea:b4:73:88:37:87:79:01:03:26:fc:
07:eb:81:52:e7:df:00:4e:c9:3d:99:26:c1:93:3a:
76:f5:7c:d0:70:3a:1c:c8:8f:82:94:2b:44:2d:99:
74:d1:02:02:43:da:3e:58:54:50:26:07:05:5c:25:
56:c1:ba:92:65:7b:01:1e:df:f4:5c:28:7b:e6:73:
42:45:b3:cf:5e:7f:6f:99:ec:ff:2f:df:2f:45:5d:
7c:84:7f:a5:63:0a:07:3b:66:c3:b8:69:ec:1b:e2:
37:64:a5:07:8b:95:7d:99:80:4f:a0:70:9d:66:f0:
32:e0:5f:3e:66:58:b5:a4:91:57:4b:5e:3f:3f:8d:
00:bb:b6:fe:9e:c1:de:24:1a:37:60:06:c6:8b:7e:
b2:7c:28:af:de:5b:44:bc:5b:9d:a7:be:de:5f:b9:
37:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FE:38:B4:66:94:1D:FD:19:3F:16:BD:A5:0C:E2:EA:59:59:6A:4C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/if44tGaUHf0ZPxa9pQzi6llZakw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.124.0.0/16
Signature Algorithm: sha256WithRSAEncryption
59:d0:a1:39:1d:de:43:02:77:e6:d9:0f:c9:93:3e:09:c6:f1:
cd:74:c7:f1:e7:8a:0d:b8:b4:b6:7e:19:d8:d5:b3:56:b1:22:
f9:5c:c9:a9:22:f6:ac:ef:76:8a:47:bd:76:bb:01:74:1c:71:
ab:9c:70:cb:cd:b0:86:05:b0:d5:87:98:af:70:e1:a7:ce:1f:
a2:ea:d6:06:ff:c9:1b:b2:f3:bb:5b:bd:74:22:16:88:9c:68:
9d:f8:74:e2:c4:21:d6:87:ad:46:b8:a4:7a:31:19:69:be:60:
61:03:6a:17:ae:34:9b:c2:7d:97:85:86:91:df:54:19:fc:dc:
e6:e5:e1:53:34:70:74:87:4c:5d:c5:03:b2:61:e6:00:12:a1:
b7:c1:0d:2a:22:f3:7e:44:eb:b5:b3:c9:25:76:36:0c:bc:57:
b3:28:a3:81:87:b6:62:6a:1e:a8:89:0c:c9:bd:1a:15:6c:98:
c6:74:82:d6:28:6c:b5:5a:4a:d8:64:3f:06:c8:b7:70:ef:64:
4e:46:58:44:68:bf:dc:c9:ce:4c:fe:f0:40:a3:04:5a:b1:64:
5c:3f:7b:b3:c4:a9:f3:f8:bd:bb:fc:1d:64:c4:6e:69:9f:11:
8f:35:a1:4c:a5:32:42:1f:3a:38:1b:d1:a9:32:9b:22:62:2c:
c5:da:4b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:54 2025 by rpki-client