Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/uksCHO7B8KlHaIjqGK4byZ_4j4U.roa
File: uksCHO7B8KlHaIjqGK4byZ_4j4U.roa (raw, json)
Hash identifier: TJBGdKElEQPrE3Ci7kdjHxOEK4prHhrmDAXs4AwjJuk=
Subject key identifier: BA:4B:02:1C:EE:C1:F0:A9:47:68:88:EA:18:AE:1B:C9:9F:F8:8F:85
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E66
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uksCHO7B8KlHaIjqGK4byZ_4j4U.roa
Signing time: Mon 26 Aug 2024 05:27:25 +0000
ROA not before: Mon 26 Aug 2024 05:27:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.24.0.0/14 maxlen: 14
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3686 (0xe66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BA4B021CEEC1F0A9476888EA18AE1BC99FF88F85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9b:fc:5d:47:05:4b:d1:ef:3c:d4:e2:e1:0f:
42:20:a8:3d:92:30:06:45:db:ad:ec:01:6c:82:18:
f0:17:6d:66:8d:ba:a9:80:2b:29:0a:32:f1:0b:bd:
34:37:8f:cf:e6:4d:7d:9d:57:bf:e5:b0:b9:d5:f7:
60:ae:13:5b:69:06:6b:04:17:30:c6:e5:52:c5:55:
4a:05:9b:17:d5:7d:84:20:9e:50:ad:52:b7:d8:15:
4b:61:d5:f3:56:77:67:b3:45:60:fa:fa:62:a5:80:
da:c1:ed:40:f5:92:43:78:0a:7b:e3:41:01:6d:1a:
03:1c:78:1f:67:ec:9f:fe:42:29:5b:c4:8c:62:ab:
24:9e:3d:3a:0d:88:b5:98:f0:9a:03:20:7a:03:ec:
03:12:e6:09:13:09:0f:34:1b:da:10:49:68:e5:81:
f6:61:89:be:c2:42:70:bf:d1:32:95:4c:95:49:c3:
2e:4b:6e:c9:d4:62:c1:f3:45:f2:16:85:40:ca:d3:
5e:af:03:db:72:42:36:62:47:4a:03:d9:6c:81:cd:
ea:67:76:7f:93:b6:9c:a2:4d:14:57:3c:5a:9c:ed:
b0:f2:6c:3c:1d:10:88:1a:20:57:20:b0:b5:b2:18:
27:29:3e:7b:e7:71:a3:12:f7:13:73:11:9c:39:23:
87:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4B:02:1C:EE:C1:F0:A9:47:68:88:EA:18:AE:1B:C9:9F:F8:8F:85
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uksCHO7B8KlHaIjqGK4byZ_4j4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.24.0.0/14
Signature Algorithm: sha256WithRSAEncryption
99:ab:37:44:30:f3:f0:b7:85:e7:b3:22:6a:e0:77:21:3c:5f:
d7:38:24:56:ac:b3:48:ee:22:6a:c1:15:51:e9:1c:84:e8:d2:
41:5a:b6:3b:da:c0:09:24:68:90:97:f4:f5:16:fe:b2:45:48:
82:17:18:e3:0b:55:41:a5:80:46:b1:82:c2:7c:af:9c:4a:e9:
16:fd:57:30:d3:19:a0:c2:17:ed:c6:07:49:64:42:4b:6f:f8:
cd:d4:20:12:70:05:ed:b1:d3:78:50:7b:cc:46:70:a5:68:5d:
26:59:0e:a0:2d:52:a9:a2:37:21:38:8e:94:8f:6f:da:ef:1b:
64:0f:a3:55:ad:a9:b2:43:6c:fb:ef:7c:e0:86:5e:2b:a6:60:
22:f9:f0:68:29:7b:aa:d8:99:be:6c:a5:cc:10:d0:72:8e:a1:
3e:10:b1:e2:77:d3:cb:9e:b9:89:65:4a:e2:b2:43:73:d1:0c:
d5:f8:36:f6:2a:0e:ad:af:8c:f3:f3:68:f6:5f:d8:c9:cc:5d:
d3:10:4d:5c:10:31:dc:b0:2b:da:65:4b:36:01:aa:97:8a:ad:
80:93:a4:ad:e1:5d:5e:9e:6e:3a:39:fd:fa:69:ca:0f:27:79:
ba:bc:c1:e5:28:01:20:81:0f:43:87:d1:fb:55:30:df:25:57:
26:79:82:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:30 2025 by rpki-client