Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/z_0tDqcaxg4icyKASdhj4TUR3hY.roa
File: z_0tDqcaxg4icyKASdhj4TUR3hY.roa (raw, json)
Hash identifier: 3/RIxb0xmdF9HN16jg6D4PitJc9dZuzYQFsrVH08Uhs=
Subject key identifier: CF:FD:2D:0E:A7:1A:C6:0E:22:73:22:80:49:D8:63:E1:35:11:DE:16
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0F51
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/z_0tDqcaxg4icyKASdhj4TUR3hY.roa
Signing time: Mon 17 Feb 2025 09:47:01 +0000
ROA not before: Mon 17 Feb 2025 09:47:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17716
IP address blocks: 203.68.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3921 (0xf51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 17 09:47:01 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CFFD2D0EA71AC60E2273228049D863E13511DE16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0b:e3:6b:64:f3:e1:92:1c:d3:11:39:92:6d:
1e:b3:f2:a4:db:9f:f9:55:28:2a:20:91:23:d2:bc:
7f:0a:c1:41:d9:33:10:72:70:d7:1e:64:72:d9:cd:
33:1e:cb:72:1f:a3:2f:d2:4b:8f:3c:99:a5:d5:5e:
51:65:e5:b0:0c:62:92:6f:07:81:70:e6:6d:ee:32:
2a:86:94:b4:4d:f0:11:3b:fa:0e:b6:97:e3:16:98:
a2:20:4a:58:92:5b:46:da:28:9f:3d:ed:e0:75:72:
56:98:6c:1a:3e:59:ff:b3:1e:cd:53:82:06:b3:e5:
25:27:2d:be:75:2e:bd:f0:79:fc:59:ff:15:f8:9e:
54:d5:9e:0e:f1:d3:2b:62:1f:7e:94:7b:b8:49:7c:
7c:c2:e7:00:f1:8d:02:4e:ea:9f:a7:07:01:52:2e:
a4:7d:7b:1b:7c:63:6e:12:1c:ea:88:97:c4:b5:2b:
0a:8f:f4:98:bc:a2:a4:4e:b8:3a:18:38:3a:3c:9c:
6e:16:5c:4b:b4:12:d0:e9:de:52:23:b8:ba:aa:db:
c7:05:ad:6d:93:97:48:4a:d6:8d:c1:57:3a:a7:c1:
13:52:d3:ea:48:6c:cc:86:69:36:27:e0:48:ca:9e:
70:e8:b0:d7:b5:08:01:de:a4:88:90:44:33:a3:eb:
b4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FD:2D:0E:A7:1A:C6:0E:22:73:22:80:49:D8:63:E1:35:11:DE:16
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/z_0tDqcaxg4icyKASdhj4TUR3hY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.68.168.0/24
Signature Algorithm: sha256WithRSAEncryption
31:7a:c5:20:55:53:f4:de:ef:a2:d5:13:45:06:0b:ed:d7:48:
e5:08:e0:c3:5f:93:97:57:45:42:df:ae:cb:51:c5:be:c6:8a:
91:f6:4a:11:9c:93:d8:fd:52:25:15:ac:47:89:9b:05:8f:69:
09:6b:e3:11:3d:7a:b5:47:68:b1:12:b6:d8:7e:05:4f:fd:78:
e4:27:e5:0f:10:99:47:7a:5e:76:a1:04:87:6f:62:c6:a4:4a:
23:88:b5:fe:fc:d1:f2:2f:81:08:51:c8:3f:75:e3:37:d2:88:
88:90:05:1a:7e:4a:c0:67:11:fe:06:05:69:d0:77:17:c4:44:
9d:32:f1:c2:37:bb:9d:b1:f4:9c:61:62:58:57:26:b2:fc:ba:
b6:e7:ad:3e:78:80:99:11:60:07:8a:7e:b9:bc:40:ad:cd:23:
99:6c:b2:ca:bd:e7:a0:22:59:d7:fe:b4:6a:2e:9b:2f:b3:6c:
85:8f:bc:04:a6:f4:75:e9:be:bc:7a:8f:85:f8:31:46:6a:50:
6e:51:12:c6:c2:2c:99:d7:20:eb:d2:b9:1a:64:8f:3a:e2:e1:
07:a7:da:02:8d:9f:45:a5:d1:52:6d:37:5c:6e:a4:65:8e:a9:
f4:a8:59:70:97:ab:c7:a3:0c:c0:46:ad:e2:60:04:17:e1:f1:
3a:fc:ef:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:09:50 2025 by rpki-client