Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xV1ipbkDyFQi4xLf_o-bx8VV-4g.roa
File: xV1ipbkDyFQi4xLf_o-bx8VV-4g.roa (raw, json)
Hash identifier: GNz1QvzRNleN7ofwbmtJFhw6P+RY9W/tAhKzXmBejak=
Subject key identifier: C5:5D:62:A5:B9:03:C8:54:22:E3:12:DF:FE:8F:9B:C7:C5:55:FB:88
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0EEB
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xV1ipbkDyFQi4xLf_o-bx8VV-4g.roa
Signing time: Tue 18 Feb 2025 01:50:19 +0000
ROA not before: Tue 18 Feb 2025 01:50:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 140.124.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3819 (0xeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Feb 18 01:50:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C55D62A5B903C85422E312DFFE8F9BC7C555FB88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:32:49:f4:5f:47:12:55:0a:44:3a:25:5b:cc:
f0:1b:b9:39:74:a9:90:6e:38:74:88:99:1c:9c:78:
04:f0:26:9f:28:7e:81:e7:5e:80:c8:79:8d:a5:22:
fc:1b:a7:11:27:d3:ac:0a:fc:b7:f5:75:a9:06:39:
26:66:1e:01:20:65:16:13:eb:cd:d1:76:ff:51:cb:
38:57:f5:46:fa:1c:60:93:f8:45:c0:a0:c0:2e:5c:
15:a7:af:73:e2:c5:50:51:68:14:4b:89:c3:e6:f3:
03:8c:d1:80:52:fd:05:c0:e4:10:97:93:b1:a3:5c:
39:79:f4:67:7c:31:b0:c5:41:40:32:e5:75:a2:3d:
d6:20:81:48:14:8c:18:8d:7a:6f:e9:e6:03:79:32:
4a:49:be:64:43:13:79:e9:e9:3b:f7:a3:90:cd:32:
4e:ce:ce:41:c7:52:06:cd:b1:f1:ae:24:47:e4:45:
1d:04:d2:ef:46:56:e2:22:50:b1:67:99:eb:42:df:
5a:3c:0e:f0:23:1e:e8:40:8b:d4:dd:52:55:7f:76:
78:28:e0:25:b6:98:40:c5:1f:a2:80:b0:b6:c1:73:
b2:21:a5:02:8c:e9:2c:93:70:1a:60:80:ed:59:36:
f4:37:d8:3d:54:65:9b:c4:42:ec:3f:94:fc:d7:a2:
46:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5D:62:A5:B9:03:C8:54:22:E3:12:DF:FE:8F:9B:C7:C5:55:FB:88
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xV1ipbkDyFQi4xLf_o-bx8VV-4g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.124.0.0/16
Signature Algorithm: sha256WithRSAEncryption
26:1e:df:9b:0c:fd:91:8f:11:b5:0b:8d:7a:bd:c4:57:5b:c0:
84:7b:11:a9:27:69:4c:5c:e1:1d:04:18:6a:1f:97:95:9f:72:
3d:44:85:a9:3e:e3:06:9e:26:e6:73:f2:88:a5:44:eb:f5:16:
96:57:84:b2:2e:e3:2a:fd:ab:04:ad:b9:3e:9d:64:31:8d:a7:
69:e0:34:32:9c:da:85:3c:24:92:a8:57:76:6d:39:39:01:bb:
3e:10:db:a7:ae:25:ce:50:b6:b6:b3:17:48:29:96:3b:55:15:
1f:a1:37:2d:0b:d5:4e:a1:ee:21:37:b8:05:fc:d7:14:70:87:
4c:aa:de:bc:c9:1c:bf:e6:0e:d7:4b:25:72:9f:a1:16:9a:d2:
61:2f:3f:0d:de:c0:c8:60:af:c8:85:91:ae:58:f0:c9:a9:6c:
a7:2f:f7:85:66:18:f0:84:b7:e7:f9:26:c8:da:70:a1:05:cf:
28:62:23:28:7e:2a:d4:f8:54:ec:19:cd:cd:d3:8a:2b:6e:6d:
77:b1:5a:9f:b2:09:27:ad:7e:a4:ce:ca:c1:21:1b:d3:b4:37:
3b:4e:ea:2d:4d:4f:4b:02:41:57:a8:93:6e:80:8e:2b:8d:63:
9e:ba:7d:4d:44:17:6f:5d:1c:6e:ac:ed:d8:d0:c1:ea:8d:d3:
b6:4b:e4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:07:28 2025 by rpki-client