Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/t1jSSZI5r1cbfuWooSYwkGfrx1k.roa
File: t1jSSZI5r1cbfuWooSYwkGfrx1k.roa (raw, json)
Hash identifier: YhhwImZ7Eye+Cd0mkwgJyO/vrHSqQm4/pigdKF62+5Y=
Subject key identifier: B7:58:D2:49:92:39:AF:57:1B:7E:E5:A8:A1:26:30:90:67:EB:C7:59
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F74
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/t1jSSZI5r1cbfuWooSYwkGfrx1k.roa
Signing time: Tue 18 Feb 2025 01:41:59 +0000
ROA not before: Tue 18 Feb 2025 01:41:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17712
IP address blocks: 120.123.0.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3956 (0xf74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:41:59 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B758D2499239AF571B7EE5A8A126309067EBC759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:14:dc:7a:4b:df:70:d4:5b:20:d2:91:82:1f:
76:36:1e:84:bb:38:5c:21:46:73:03:39:50:ed:9d:
08:8c:47:2a:b8:39:27:64:d5:af:da:c6:57:78:72:
5f:f5:cf:67:c1:46:eb:01:2d:a1:62:2e:e4:02:c9:
71:99:fa:af:f8:03:63:c8:05:79:f8:49:07:1c:c5:
56:3a:8f:26:77:09:d8:60:98:d2:ba:94:1b:d1:a4:
6a:18:80:c8:2e:eb:61:9e:ed:ed:55:67:bb:27:03:
e5:e9:65:1a:03:53:da:4a:fe:89:10:51:ba:51:c7:
ed:a5:e6:a5:b6:5b:1a:f1:40:fe:c6:90:d4:c8:96:
1f:c1:1c:ad:6b:c0:94:fc:ee:79:2b:e8:61:49:fa:
f5:cf:07:79:14:e5:bc:11:4b:7a:41:41:86:a2:95:
73:49:23:7c:b4:ae:c5:9d:21:51:af:24:00:d8:4e:
be:88:ff:19:e4:7b:d6:47:b6:fb:b3:e8:65:90:43:
36:d0:7e:61:f2:99:5c:c0:d7:a6:fb:db:c6:65:73:
4e:30:21:2c:93:0b:dc:cc:00:48:0a:2e:41:3a:0f:
08:17:d4:a8:73:86:c1:82:d5:6e:9f:22:81:22:a8:
aa:3d:fa:e7:0d:4f:05:45:b1:aa:c6:1f:c5:2b:7e:
81:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:58:D2:49:92:39:AF:57:1B:7E:E5:A8:A1:26:30:90:67:EB:C7:59
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/t1jSSZI5r1cbfuWooSYwkGfrx1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.123.0.0/18
Signature Algorithm: sha256WithRSAEncryption
30:02:72:12:98:62:78:82:df:16:2f:c5:03:72:ad:c6:5e:52:
22:db:8f:5a:84:a1:c6:4e:02:ac:3a:88:cc:1a:f5:00:42:b7:
9d:71:f4:05:0c:32:39:3f:2f:b3:0c:1c:27:5e:80:4b:ec:38:
dd:6d:2b:fa:54:9e:73:f9:ae:61:9e:e9:4c:f4:da:94:c7:65:
34:42:44:97:c2:71:aa:3c:c8:95:b3:52:48:97:78:66:06:43:
24:65:b8:f8:43:8b:1d:8d:3e:e6:bb:52:4c:7a:65:46:28:14:
f5:00:ef:1c:2b:79:06:06:81:9f:0e:ba:c4:97:9b:8d:d7:af:
04:b3:c3:1c:12:8f:d4:cb:84:04:cb:15:47:49:fd:3d:be:10:
8a:fd:20:b5:60:54:98:f7:ba:be:cd:04:b4:c1:9d:75:7b:06:
ec:44:d9:fe:8b:d6:ca:fb:d4:7f:87:b5:bd:c0:b0:6b:2a:2e:
3c:04:16:d9:e9:20:d9:a7:a2:98:18:d7:fc:4b:6a:4c:c0:35:
3e:19:44:f2:fa:b8:8b:61:73:c4:28:bd:6c:85:ae:6e:5e:47:
5f:e1:4f:a6:ce:56:46:ca:aa:bb:2d:e7:e8:8c:2d:a1:3e:e0:
6e:bc:98:5d:72:be:8b:e0:af:87:4b:b8:87:a8:66:3c:c4:ac:
63:df:a0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:04:13 2025 by rpki-client