Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/zKC-KBAigjxqNf76MZUYxkL71dI.roa
File: zKC-KBAigjxqNf76MZUYxkL71dI.roa (raw, json)
Hash identifier: CoJNMKbGXUpkmp+6Oc3WlDU+f6gzNa47GaYcy5sGZjA=
Subject key identifier: CC:A0:BE:28:10:22:82:3C:6A:35:FE:FA:31:95:18:C6:42:FB:D5:D2
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F6C
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zKC-KBAigjxqNf76MZUYxkL71dI.roa
Signing time: Tue 18 Feb 2025 01:38:54 +0000
ROA not before: Tue 18 Feb 2025 01:38:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18177
IP address blocks: 120.115.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3948 (0xf6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 18 01:38:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CCA0BE281022823C6A35FEFA319518C642FBD5D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3d:23:bd:2f:5a:78:2d:f0:8d:ee:43:69:8f:
a7:42:a3:92:6c:28:d8:32:b5:94:1b:fd:86:cf:a6:
b1:f6:bb:8f:b3:08:a8:01:b7:45:9f:cd:2c:63:cc:
ab:2b:c6:24:01:87:86:4a:e0:43:08:7d:a8:a2:eb:
d3:7b:8d:14:07:7b:3f:06:3c:fb:78:de:cf:e6:8e:
91:e9:36:1a:d3:b5:c3:46:cd:eb:1a:92:b1:fc:08:
46:9b:1a:05:9f:c9:1d:4c:f2:5f:ce:cb:5b:8f:86:
3d:8c:6b:1b:c5:3b:19:f0:82:94:0d:86:a4:78:94:
46:19:67:c3:36:08:41:48:c1:7a:3c:3b:69:4b:ec:
5b:9b:72:59:b4:50:b2:cf:04:25:d9:80:74:1a:9c:
5c:62:71:57:47:8c:d0:bb:d0:88:df:f8:f9:f8:c9:
c7:07:ea:50:4a:04:52:d4:e8:c2:aa:ce:1f:d8:38:
a6:2c:40:a0:ce:e5:b6:5e:75:6c:24:55:20:29:60:
5b:9b:34:c4:c7:7a:a2:35:43:cb:9c:8b:45:3f:b8:
11:5e:6a:8d:95:eb:40:b5:90:10:28:18:e3:0e:2e:
fe:58:6d:25:ea:af:ee:36:7e:6a:2c:39:d6:fa:3c:
69:90:f3:f3:33:26:87:34:d4:8c:00:cc:44:61:2d:
1c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A0:BE:28:10:22:82:3C:6A:35:FE:FA:31:95:18:C6:42:FB:D5:D2
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/zKC-KBAigjxqNf76MZUYxkL71dI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1a:72:7b:f6:79:bd:a0:ba:b7:61:02:4f:af:a1:54:95:3a:41:
a5:5e:b1:4c:87:f0:48:1b:a2:2e:49:5c:31:f3:f0:c8:82:a9:
c5:f0:e5:95:3b:74:cc:58:56:19:c1:fa:ac:41:6b:df:0b:47:
b9:85:eb:76:4f:44:9f:1c:33:75:3d:cb:5b:81:92:2c:31:93:
b9:89:02:78:ab:0e:d8:49:d6:4e:6b:98:8a:c7:d2:f2:77:2f:
af:97:71:29:59:6f:cb:df:b1:b0:4a:dd:ab:c0:08:ff:e4:81:
19:a5:1f:bd:2b:9b:3d:5a:7e:2e:ab:80:f0:de:cf:01:af:50:
da:0f:4e:bb:ab:8f:1a:88:3d:7d:d5:c9:e2:e2:bb:e6:96:78:
35:fe:9e:2c:ec:5b:58:34:1a:c3:e6:3d:ef:c4:07:22:93:e9:
5f:bf:e7:12:9e:70:61:61:fe:c2:91:db:3e:98:a0:fd:3d:26:
c3:fb:fd:91:f4:6e:02:aa:4c:a8:1b:57:d0:39:21:5b:1d:8e:
1b:2f:d8:95:94:3f:ed:b6:c4:81:59:15:b0:c6:b1:e0:02:3b:
1d:00:63:fc:8f:e5:2b:14:22:29:f6:34:df:0b:b4:2b:e3:aa:
ee:53:79:08:4e:a4:90:fd:8a:48:a9:68:af:e8:a4:15:88:3f:
0e:81:7c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:16:43 2025 by rpki-client