Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/kUhTX3SG71N9NI7EZi8r7CYZXyA.roa
File: kUhTX3SG71N9NI7EZi8r7CYZXyA.roa (raw, json)
Hash identifier: ZlQn5p/dhTUwH6kIg8lDOPz/7mRsnrGYoC0w2KtRxO4=
Subject key identifier: 91:48:53:5F:74:86:EF:53:7D:34:8E:C4:66:2F:2B:EC:26:19:5F:20
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F55
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/kUhTX3SG71N9NI7EZi8r7CYZXyA.roa
Signing time: Mon 17 Feb 2025 09:50:40 +0000
ROA not before: Mon 17 Feb 2025 09:50:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 210.60.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3925 (0xf55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 17 09:50:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9148535F7486EF537D348EC4662F2BEC26195F20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b2:9c:ab:ec:3e:75:11:7a:0c:95:30:7f:d4:
60:c1:e6:a3:ed:ff:ab:eb:c8:ff:9a:84:15:6d:79:
2e:07:60:63:b0:ae:2e:6f:7a:ed:d6:c2:1f:c3:d3:
f6:3d:b8:46:84:47:af:03:7b:60:d8:24:65:e9:b5:
1a:4f:2d:74:f2:e5:35:c4:2f:fd:bf:37:3e:14:c5:
ac:1e:41:aa:80:71:84:81:64:c4:d2:30:ec:2b:5f:
75:bc:04:e5:ba:dd:4c:e4:ec:20:15:19:06:a9:4c:
5d:e7:6f:8c:76:2f:58:da:77:af:46:a8:d0:1c:a1:
49:8f:7d:b5:2b:f9:c5:3f:41:7d:63:17:6e:d4:cf:
1e:c3:4b:e7:08:db:75:01:38:d1:b4:4d:62:d9:7f:
38:0a:91:79:bd:e6:4f:78:ae:29:bb:c7:a1:e6:2a:
bf:23:f3:95:fd:c4:ab:e0:6d:52:bd:b4:38:5a:ab:
b4:ae:93:0f:3d:be:b6:b8:6f:ea:a8:14:eb:85:6c:
5b:1b:5a:26:64:63:90:5b:85:b0:fc:3c:18:6a:18:
3c:35:dc:ad:3f:f1:69:a4:b2:54:97:fa:04:7c:9a:
85:5e:da:ee:ed:8b:2f:7a:23:fa:ff:5a:12:07:d5:
10:7f:1d:5d:61:50:93:a4:d3:58:6c:c9:ce:17:6f:
0e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:48:53:5F:74:86:EF:53:7D:34:8E:C4:66:2F:2B:EC:26:19:5F:20
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/kUhTX3SG71N9NI7EZi8r7CYZXyA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.149.0/24
Signature Algorithm: sha256WithRSAEncryption
27:be:61:d1:d2:11:d0:e0:59:d2:94:21:50:33:46:32:86:6f:
06:3f:17:bc:1b:bf:f7:3d:e8:8a:82:73:47:c1:ea:98:30:4b:
bb:6c:47:02:c3:5d:ec:ce:56:97:f0:02:8c:fb:d7:ca:0e:a7:
ab:e3:4b:4a:04:5e:c7:db:db:42:c7:79:e3:82:59:e7:c7:bd:
8f:87:51:85:a1:19:c4:19:8f:3b:ac:c7:c1:3a:38:36:5b:d9:
db:a7:33:7c:5c:96:84:75:9c:8f:16:b4:5b:bc:81:ae:bf:0e:
ce:7a:71:fd:8c:7c:db:07:4a:39:4c:e2:db:bf:3e:d9:3c:55:
36:17:64:81:6f:82:a6:c3:37:0c:42:54:f1:74:2e:bf:91:05:
6b:52:e6:22:c0:9f:fb:a2:78:13:a8:96:2f:50:8c:76:1f:bd:
07:ed:a8:2c:69:7a:60:21:25:90:20:20:a9:62:35:65:00:44:
94:1e:1b:e1:8f:7c:e7:f3:8c:44:97:d1:10:5b:a9:1d:26:3d:
13:ba:9e:ae:de:1f:e2:e5:e9:73:46:c3:3c:39:6c:c1:2d:95:
35:31:97:7f:e1:47:14:78:db:d3:8c:e8:33:5e:54:76:0f:47:
89:48:40:da:f7:c9:6b:eb:13:ef:03:cf:6a:4b:dc:21:16:a4:
c0:54:6c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:28 2025 by rpki-client