Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/m8JZKVJM60J2i6s6B1gIoWi1AY8.roa
File: m8JZKVJM60J2i6s6B1gIoWi1AY8.roa (raw, json)
Hash identifier: 5TKfUkvaH9or1AZnkMeIjidMlv7V6PAJCBMWBj5WFAs=
Subject key identifier: 9B:C2:59:29:52:4C:EB:42:76:8B:AB:3A:07:58:08:A1:68:B5:01:8F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F60
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/m8JZKVJM60J2i6s6B1gIoWi1AY8.roa
Signing time: Tue 18 Feb 2025 01:29:11 +0000
ROA not before: Tue 18 Feb 2025 01:29:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9916
IP address blocks: 120.106.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3936 (0xf60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:29:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9BC25929524CEB42768BAB3A075808A168B5018F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:92:be:22:fa:a0:be:6a:a8:c1:3b:d4:de:
2c:bf:be:d4:b0:58:d9:5a:7b:e7:88:fe:7a:b7:5b:
78:09:0d:48:40:36:b7:c0:d7:73:60:b3:d6:2a:c2:
e2:35:8c:ae:49:b7:0c:85:7a:c3:b0:a7:7d:61:c8:
ae:91:01:ee:b7:11:2f:f0:37:8d:4f:6c:57:60:52:
a3:ca:99:df:20:cb:ad:de:73:6a:8a:59:f2:5e:89:
2f:6e:bf:ab:c9:c9:31:fc:e1:99:7b:94:3b:ed:dc:
2c:d1:66:74:13:2f:49:45:7a:a0:ea:1b:ef:99:1d:
fb:de:38:0e:f3:c7:7d:22:97:49:56:9b:3a:23:01:
56:c7:a2:25:c3:51:49:cc:13:80:89:cb:45:0a:e9:
80:51:75:98:99:58:30:cd:14:6c:3e:d1:55:ba:49:
4a:21:16:b8:3b:13:93:f3:29:a8:bb:e5:b1:75:bd:
79:17:32:41:3f:87:47:63:52:17:4e:f1:9b:03:7c:
91:f9:ba:ed:b4:1b:b3:88:d0:dc:75:8d:c7:66:02:
b8:8f:a8:dc:40:c5:b9:cc:85:41:21:cf:72:5b:a5:
a9:0e:dd:1e:85:a7:cc:61:95:d3:3d:e2:19:82:66:
03:f4:c9:18:80:38:dc:6f:40:2d:cd:4e:73:52:12:
4a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C2:59:29:52:4C:EB:42:76:8B:AB:3A:07:58:08:A1:68:B5:01:8F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/m8JZKVJM60J2i6s6B1gIoWi1AY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.106.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a3:84:9d:ca:70:54:6c:b5:e2:24:a3:2a:29:a2:b6:ad:5b:50:
3e:6a:f4:74:a4:8a:40:ed:8c:26:5c:5e:62:79:fd:84:b0:53:
63:f2:cc:30:69:16:de:0d:70:2b:1b:ba:93:12:43:ae:1c:15:
65:6f:d5:4a:20:57:03:90:d7:4c:f5:d2:b5:62:d8:6a:d2:b5:
5c:2f:02:de:23:7a:f7:b0:65:b7:4e:5f:22:83:01:8c:88:7a:
f5:83:f8:32:8d:ac:4e:a0:cf:17:3e:51:d2:35:c1:81:0f:68:
2a:0f:40:e5:76:d3:e4:6a:55:54:32:c7:1a:62:76:0e:ff:bb:
ab:9a:fb:04:1a:0b:4c:4a:45:74:82:ec:42:c1:1c:c4:ed:36:
d4:fa:8f:01:66:b7:75:8b:a0:91:22:54:69:e7:0d:1b:04:2e:
d0:28:ba:56:77:27:53:b5:35:62:f7:dc:cb:22:47:c3:29:9a:
68:1f:9f:45:36:76:75:c4:95:9c:45:06:1f:4a:90:5a:52:6d:
f7:40:79:2a:df:d6:e2:e7:9a:91:ca:f9:8f:9f:43:15:94:7d:
fc:07:96:75:19:84:48:29:77:fc:78:43:b3:0a:57:3e:aa:3e:
bf:93:45:ea:91:16:9f:4f:e3:fc:aa:bc:33:1b:ca:80:0c:ca:
6e:6f:bb:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:52 2025 by rpki-client