Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zH5KQHECPQcURrUZSIHiZwwqGQ0.roa
File: zH5KQHECPQcURrUZSIHiZwwqGQ0.roa (raw, json)
Hash identifier: QvCdVoPQ7qNgVbAGA/mMS7wyvcdF0lsXJDQ2M0thL5o=
Subject key identifier: CC:7E:4A:40:71:02:3D:07:14:46:B5:19:48:81:E2:67:0C:2A:19:0D
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F5E
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zH5KQHECPQcURrUZSIHiZwwqGQ0.roa
Signing time: Tue 18 Feb 2025 01:27:21 +0000
ROA not before: Tue 18 Feb 2025 01:27:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9916
IP address blocks: 120.105.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3934 (0xf5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:27:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CC7E4A4071023D071446B5194881E2670C2A190D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a3:40:f1:a4:7e:81:08:7e:52:39:a2:e6:51:
af:5f:83:aa:ab:e9:8e:b4:6d:fb:5c:23:1e:3c:be:
13:c7:7c:c3:b6:39:a6:a4:09:f3:a6:db:14:24:5f:
96:13:05:f2:68:23:77:f2:86:5b:be:13:43:c6:19:
e8:23:ad:9a:af:8b:5b:d5:43:39:4c:8c:b7:bc:28:
64:12:7d:6a:52:59:93:a7:5c:01:d8:53:f9:d9:21:
8c:79:ac:97:54:e9:38:8c:e5:ae:7b:50:fa:fd:5b:
b4:a7:23:da:14:21:03:0f:33:6f:09:b8:e7:15:ad:
93:69:3e:07:90:4f:bf:fc:5a:2d:be:88:28:b6:e3:
15:91:2d:71:55:99:ac:84:f4:d2:ab:1b:58:39:1d:
13:b4:78:fe:63:5e:0e:52:d3:47:60:f3:b1:c3:50:
af:c6:66:b6:97:29:86:04:6d:c6:07:7b:76:64:67:
88:c9:d1:41:12:e4:e5:f6:d0:d1:e7:e7:96:87:94:
ff:35:5a:61:27:8a:11:7b:bb:31:8b:72:8b:5b:b0:
0e:9a:df:b9:fb:fa:be:f7:33:93:03:47:e0:d0:9a:
b7:da:08:45:20:6a:c3:22:fa:99:cf:e5:9a:34:2d:
87:89:a8:a3:48:df:46:ab:db:99:8c:3d:47:d5:a2:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7E:4A:40:71:02:3D:07:14:46:B5:19:48:81:E2:67:0C:2A:19:0D
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zH5KQHECPQcURrUZSIHiZwwqGQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.105.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3c:6b:93:3a:18:d1:36:88:5a:2c:12:08:04:3d:2e:ec:02:ae:
14:1c:62:5c:22:5e:b2:a6:0c:47:69:03:ac:83:1b:8a:c0:ac:
33:5a:1d:a0:8b:90:dc:70:6e:3a:a5:89:39:c3:07:9e:5f:1e:
ac:d6:75:0e:ab:a1:11:0d:8d:cb:1f:63:43:fe:1c:35:8e:b4:
0d:9f:91:64:07:b9:89:92:43:d8:70:76:29:8f:4d:9a:72:7d:
45:47:09:2b:44:99:e1:13:aa:e6:09:9c:ec:14:40:46:dd:88:
c6:9e:e4:e5:47:05:77:5b:ef:15:1f:41:b1:7b:74:d1:dc:7d:
13:51:b8:9d:36:a4:4d:f5:8a:e6:77:d3:b4:f7:8d:a2:66:60:
b8:a1:47:95:85:c3:7b:54:23:b4:3f:38:0a:8e:e6:a4:08:db:
ff:13:94:73:0e:93:c6:b1:4b:c5:2c:94:d6:97:ed:c3:8f:d8:
1d:a6:1b:08:c7:be:c3:f3:66:b0:f6:7c:16:32:48:ea:5e:2e:
61:f7:6e:f6:44:29:ad:3d:45:f5:30:4c:4a:0a:82:32:11:f5:
73:20:85:1c:17:5e:26:68:a8:9f:5f:96:cf:98:03:d6:2f:f6:
0d:e2:b3:df:b3:72:20:62:21:d8:1d:e3:19:39:c0:a3:4e:d7:
12:ac:87:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:33 2025 by rpki-client