Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/yheAmdWWekdqGWEDjQN1Ze1T6HU.roa
File: yheAmdWWekdqGWEDjQN1Ze1T6HU.roa (raw, json)
Hash identifier: 2CyJ0LdVamgGw/mk+KrROmbRm480h1wc30J+qRkaSQ0=
Subject key identifier: CA:17:80:99:D5:96:7A:47:6A:19:61:03:8D:03:75:65:ED:53:E8:75
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E68
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yheAmdWWekdqGWEDjQN1Ze1T6HU.roa
Signing time: Mon 26 Aug 2024 05:27:25 +0000
ROA not before: Mon 26 Aug 2024 05:27:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 210.240.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3688 (0xe68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CA178099D5967A476A1961038D037565ED53E875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ea:59:26:c6:20:6e:78:9c:98:6b:17:ee:49:
82:a4:58:d6:ae:2d:36:fa:7c:c7:b3:bd:fd:87:a2:
6d:2a:70:84:b1:1b:f0:a1:97:1d:8f:4a:76:0f:57:
8d:15:0d:49:70:ab:3b:e9:98:99:3e:27:b9:ba:a9:
22:50:41:9c:b8:de:22:dc:88:73:d8:c8:79:60:b1:
ca:f3:c5:5e:eb:fc:b5:a9:3d:75:fa:0b:66:fd:7e:
0c:73:0e:82:f7:13:c9:77:ce:6d:60:ac:14:c1:b9:
5a:c1:4d:6c:85:03:51:0d:73:bd:09:84:ef:57:6d:
38:36:f6:e2:9c:5b:82:96:b6:51:83:45:cb:ec:10:
a1:77:64:bf:72:76:a5:3c:ae:20:14:0e:5e:ca:53:
e7:1e:c2:fd:5d:b3:6b:48:11:b4:0d:62:79:25:a6:
69:f8:44:80:ca:4d:75:d9:53:b7:f6:af:ff:ef:37:
50:47:91:4c:40:37:e4:4d:69:46:63:42:eb:b9:96:
fb:4e:67:d4:6f:1f:46:60:7f:b4:a2:d1:04:d1:04:
fa:d0:d6:c7:b9:74:b0:f9:e9:e1:15:74:5e:79:e3:
dc:31:95:ba:df:a6:04:f1:2b:79:f1:80:99:bb:21:
e0:dc:2c:6b:21:02:6c:82:40:5e:6e:42:c2:98:68:
7a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:17:80:99:D5:96:7A:47:6A:19:61:03:8D:03:75:65:ED:53:E8:75
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yheAmdWWekdqGWEDjQN1Ze1T6HU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.240.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:f1:fc:cd:a3:c2:34:2a:fc:9f:25:59:e3:ac:98:11:e3:05:
3e:e8:0e:f1:d7:a4:2a:cc:e2:4b:45:20:b6:b1:46:1e:5f:09:
7f:49:ca:47:d9:28:68:82:e2:fa:67:10:28:c0:eb:c8:0f:26:
71:69:a2:10:86:7c:79:70:bb:e1:3f:bb:0d:79:49:0e:61:e3:
27:34:d9:e5:3f:8b:7a:f4:51:87:d9:04:df:ff:ce:bf:28:90:
f0:0a:84:1c:31:f6:df:5f:4c:79:2f:fd:15:48:65:cb:2f:d2:
48:b5:09:63:e0:d2:4f:59:77:07:e8:85:77:ab:f1:f8:17:1e:
1a:83:96:85:b8:56:d3:a3:1c:30:6d:9b:3f:a1:54:1a:af:f5:
e6:08:7c:b0:28:02:e7:e5:15:dc:cb:f7:f0:e5:59:6d:f0:8e:
2a:a8:c8:38:82:3f:ac:3d:d7:17:9d:51:c9:41:2e:fd:1e:8d:
77:5b:e6:fd:ae:e8:79:91:f3:65:42:15:6a:60:ac:13:17:d0:
13:ce:30:a8:0a:77:d8:77:77:d5:3f:5e:4c:f8:6b:1b:eb:41:
1f:bf:72:42:ad:aa:ea:2e:66:3f:0f:cb:b9:aa:62:92:ed:08:
3c:1f:fe:21:9d:83:36:d9:6b:9c:f8:a9:cb:07:81:6a:2b:ae:
14:3b:35:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:42 2025 by rpki-client