Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/l2tDURp2k15M1LJfv_8eq8uWJVw.roa
File: l2tDURp2k15M1LJfv_8eq8uWJVw.roa (raw, json)
Hash identifier: uaLr2OmcfxObPqNkpNJ74OAsCXTYYMLtlC+GNE6LAEo=
Subject key identifier: 97:6B:43:51:1A:76:93:5E:4C:D4:B2:5F:BF:FF:1E:AB:CB:96:25:5C
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E5F
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/l2tDURp2k15M1LJfv_8eq8uWJVw.roa
Signing time: Mon 26 Aug 2024 05:27:20 +0000
ROA not before: Mon 26 Aug 2024 05:27:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 210.243.0.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3679 (0xe5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=976B43511A76935E4CD4B25FBFFF1EABCB96255C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:78:29:15:6d:2a:eb:e8:79:11:24:45:0c:79:
a3:f3:00:b2:f3:73:88:ba:0a:e9:71:48:47:f5:43:
e0:b8:05:b7:e8:e5:20:19:74:06:e7:e4:98:2f:34:
e9:27:f4:e8:68:e4:43:89:1d:be:70:3c:63:79:a7:
bd:a0:a9:e6:02:ba:05:1c:63:77:52:fb:67:7f:51:
91:ed:d8:f9:73:98:8b:f2:0b:8b:8e:56:77:ee:a2:
9e:b3:b4:ca:11:0e:c9:47:2a:30:58:e3:d7:f2:4d:
54:28:69:fd:82:b3:1a:78:8c:ba:b5:bb:1d:fb:b5:
96:52:84:2c:b4:05:40:11:f7:9f:11:cf:35:d2:5f:
9f:1f:53:2d:2b:95:9f:4b:59:3f:38:5b:8e:4c:d7:
ae:46:e4:3c:b7:a5:ea:07:2b:9e:4c:16:8f:be:91:
16:e9:5a:a8:88:25:0c:c8:31:d7:80:02:41:e9:31:
a5:88:38:c9:b6:9e:6f:19:05:07:23:b8:b3:46:fb:
6a:37:f6:23:0a:6c:85:a0:42:89:a9:92:6d:08:6d:
46:3a:f9:9d:7c:af:6e:0f:dc:65:0d:ae:f4:9a:b8:
28:96:65:81:47:b1:77:f9:e3:a2:00:eb:80:75:af:
70:53:d0:15:94:09:b1:57:e6:ec:17:cd:ed:46:0a:
9d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6B:43:51:1A:76:93:5E:4C:D4:B2:5F:BF:FF:1E:AB:CB:96:25:5C
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/l2tDURp2k15M1LJfv_8eq8uWJVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.0.0/18
Signature Algorithm: sha256WithRSAEncryption
83:48:05:8b:49:90:3c:b4:2f:3a:f8:f9:8c:49:31:3a:f0:dd:
73:96:b7:e6:6a:c1:25:e1:30:1b:b1:2c:ed:b8:bb:bd:72:e4:
2e:96:21:60:2b:c6:ba:07:b3:98:6c:c6:4a:2f:42:99:74:b3:
33:d1:41:7b:97:9c:ac:d7:24:ee:f2:b4:51:c2:5c:5c:07:29:
65:5c:e7:09:9c:b6:fd:f4:50:e5:c7:3e:16:26:cf:f1:0f:98:
ab:dd:c4:86:eb:21:44:36:40:c5:79:12:11:a3:87:6a:cb:1b:
1e:e8:d7:71:af:f0:75:c4:36:06:53:ce:c0:b5:de:57:ee:40:
b3:da:b5:ce:d4:f4:53:30:be:48:0f:c3:47:51:84:34:cf:f3:
0e:44:9e:15:5f:4f:12:dd:d0:9a:15:2a:fb:83:c5:dd:07:67:
63:77:97:65:b8:33:3a:bc:d7:23:57:37:95:93:d2:95:61:41:
26:df:44:a6:90:b6:69:eb:4e:8a:c8:b1:db:70:b5:d6:e7:31:
e3:7e:6b:b5:50:5f:a6:df:e2:ae:91:a2:0d:83:cc:f4:e3:99:
48:d7:fb:e2:d5:44:7c:29:ec:ad:9b:c3:09:f5:7e:63:03:29:
56:77:55:f0:54:50:ae:3f:b5:40:e8:94:4e:6f:05:cf:07:9e:
25:dd:c7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:54:10 2025 by rpki-client