Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/yZCiF6eDj-Pd22afZSdL8w7P_sk.roa
File: yZCiF6eDj-Pd22afZSdL8w7P_sk.roa (raw, json)
Hash identifier: ZkUtXEyj460p+bz66NWxkLzZ24pM9HTfJ7UUKQlSGE0=
Subject key identifier: C9:90:A2:17:A7:83:8F:E3:DD:DB:66:9F:65:27:4B:F3:0E:CF:FE:C9
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EEC
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yZCiF6eDj-Pd22afZSdL8w7P_sk.roa
Signing time: Mon 10 Feb 2025 14:16:13 +0000
ROA not before: Mon 10 Feb 2025 14:16:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 163.24.0.0/14 maxlen: 14
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3820 (0xeec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C990A217A7838FE3DDDB669F65274BF30ECFFEC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:72:fb:ed:de:20:9a:4c:b6:0d:60:1b:a6:cc:
b3:c9:7b:56:87:19:68:56:76:18:4f:0a:96:f1:72:
ab:fc:1b:45:d2:81:af:f7:cc:88:d1:54:98:98:e6:
02:18:a0:7a:c2:ab:94:62:6f:80:0b:85:05:30:ca:
3a:2f:78:8e:df:82:f7:af:58:0d:0d:02:71:db:42:
4e:a1:16:87:6a:e1:1d:fe:94:54:a0:54:3e:5c:96:
f4:2b:6b:e6:2c:47:2a:db:fd:45:62:7f:2d:d1:5e:
5c:93:ae:91:74:82:7a:05:70:d2:fb:a2:a0:c6:44:
75:dc:c9:5b:60:60:20:1d:f1:83:6d:61:61:64:f3:
28:a7:59:bc:db:5b:7b:7c:65:4a:01:d2:27:69:31:
b4:5a:17:cf:69:5e:7f:96:94:9b:61:19:e6:51:b2:
5a:f1:22:74:66:f5:c3:31:cd:f2:71:f1:93:f4:2d:
92:36:00:50:51:14:66:cd:67:dc:42:df:5f:a5:f3:
fd:c2:54:51:05:ca:5b:6d:a1:3f:da:ee:3e:19:ea:
88:00:64:c2:9e:6b:2e:86:fa:a3:fc:54:48:77:63:
38:13:cd:a2:96:6c:07:be:64:b3:a5:cc:3c:21:d4:
f7:03:8c:6d:96:69:55:71:4f:d3:e5:35:70:47:85:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:90:A2:17:A7:83:8F:E3:DD:DB:66:9F:65:27:4B:F3:0E:CF:FE:C9
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yZCiF6eDj-Pd22afZSdL8w7P_sk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
163.24.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a0:45:c8:9d:2e:50:a7:2d:a8:a0:49:41:bd:b2:c4:3d:33:b3:
db:39:1e:ea:9c:1b:d4:68:03:91:77:e6:1c:d6:7d:5d:a9:53:
b2:29:a3:d5:d9:a3:2b:9b:9a:d9:4a:dc:37:83:bf:46:a5:f3:
40:cd:a5:9f:ec:aa:d3:36:a7:7d:22:ab:99:c7:1a:dc:9b:0f:
27:4b:48:5e:25:45:29:e9:77:21:ad:a5:5f:94:9a:eb:7f:53:
58:ed:aa:7d:08:92:74:06:4d:d6:96:e0:e8:06:a8:1d:ed:5f:
8b:f1:41:4b:f0:98:ea:34:2b:f7:03:bf:ae:c2:47:47:db:1d:
07:c2:f5:82:b6:35:da:2f:45:31:fe:b6:94:35:3c:f2:cb:45:
d7:42:4d:f9:cf:31:22:f6:a0:b6:85:58:b4:a6:5d:ff:66:a5:
98:09:10:0a:3f:c2:66:2e:9d:ef:6b:2d:8d:8d:f3:8c:8d:9c:
90:08:01:5d:ef:74:dc:a5:9f:75:6c:9d:59:19:51:67:81:5e:
c9:94:13:59:9b:ea:75:2f:ea:75:10:93:11:74:28:e7:64:9d:
69:73:46:f5:30:f6:09:74:8f:54:fe:a2:03:c1:97:8f:45:b8:
f7:5b:b8:23:92:8e:c2:fa:9d:2a:5a:3e:cc:34:d5:84:6a:b5:
09:31:ae:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:26:26 2025 by rpki-client