Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/uVkhVqA46iOFnAsF8pJTL4Cwsj8.roa
File: uVkhVqA46iOFnAsF8pJTL4Cwsj8.roa (raw, json)
Hash identifier: UT3zAiJwazKkgUn4sGEkAh+iXiMt73Jz2LgBWR6eB54=
Subject key identifier: B9:59:21:56:A0:38:EA:23:85:9C:0B:05:F2:92:53:2F:80:B0:B2:3F
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EE3
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uVkhVqA46iOFnAsF8pJTL4Cwsj8.roa
Signing time: Mon 10 Feb 2025 14:16:11 +0000
ROA not before: Mon 10 Feb 2025 14:16:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.14.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3811 (0xee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B9592156A038EA23859C0B05F292532F80B0B23F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:eb:00:e1:1e:e9:7d:7e:a6:3a:3c:29:75:50:
dc:f3:77:c7:b5:fe:4f:32:68:cc:e8:10:87:3c:0b:
a1:56:6d:af:c2:42:3c:e3:6d:8e:92:02:a7:aa:0d:
bc:89:d6:2d:74:1a:db:bd:88:c8:49:20:6f:9b:52:
d7:5c:6f:ab:c5:8c:ea:62:51:d0:65:d1:40:56:94:
91:ea:14:f4:44:26:7b:8b:ed:83:c7:ff:23:07:dc:
b1:5c:89:88:38:81:9e:7c:ec:18:4a:22:6c:85:77:
26:63:5b:91:c5:6b:84:35:af:22:de:ed:44:e0:34:
94:b9:55:9d:a2:dc:4a:11:62:cc:2e:4d:34:b0:4f:
77:9a:a5:cf:77:5d:d1:15:db:ad:51:4a:76:0c:41:
43:f7:e2:d8:8d:f3:e9:20:f5:04:92:fc:f2:24:06:
90:60:48:5f:bf:93:15:97:c4:1b:c0:2a:ad:61:fa:
fc:05:63:d5:52:ac:0a:90:d7:21:a4:51:19:53:cd:
4a:03:29:64:90:6f:06:04:d4:85:de:42:c8:52:0e:
3e:f0:03:8d:57:0d:94:52:f3:e5:ed:ca:99:8c:52:
41:59:dc:7c:d8:4f:e8:70:17:72:90:81:60:4f:87:
b2:ce:59:9e:e2:32:95:8b:da:4a:42:28:27:b1:57:
1e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:59:21:56:A0:38:EA:23:85:9C:0B:05:F2:92:53:2F:80:B0:B2:3F
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uVkhVqA46iOFnAsF8pJTL4Cwsj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.14.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4b:fd:1c:c2:aa:f6:59:51:75:5c:e9:10:24:5b:65:d4:28:0c:
43:fc:81:31:cb:73:02:0d:61:93:12:f0:3d:66:c0:68:bb:75:
23:71:89:47:e7:29:7a:94:4c:de:33:70:64:13:3a:92:4a:72:
a7:7f:41:29:56:b2:b0:90:a3:b5:45:00:88:17:42:f5:1a:e3:
5b:d8:93:b7:c0:b2:de:d6:7b:43:bb:1c:6a:4f:13:31:a8:92:
db:a0:93:3f:61:75:42:a7:dd:a4:da:b4:43:c2:aa:45:c1:39:
04:eb:ad:06:6b:2e:96:9c:2d:57:26:1d:17:de:b4:fb:35:c3:
88:51:48:31:fb:9c:c7:96:9c:78:2a:4c:0e:d9:cc:47:59:4b:
e5:94:88:38:b1:01:33:8d:b9:8b:1e:dc:d9:0e:31:45:db:99:
50:0e:b0:19:d8:97:3a:27:19:60:46:3c:a2:aa:50:9f:0a:58:
76:7b:3c:eb:ed:19:b6:79:2a:41:dc:d0:aa:26:15:1c:03:70:
18:73:44:32:bd:9f:45:12:a2:17:11:45:89:9d:99:12:f0:59:
e4:3b:f9:5b:42:07:ea:6f:b2:0f:36:9a:96:3b:9e:0a:cf:e7:
dc:b7:5c:f4:e0:8b:55:36:eb:86:ab:55:63:24:1f:ad:ee:ff:
1b:fa:16:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:48:43 2025 by rpki-client