Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/-aWiVUWH2huRdD0SJUeYya_ylRA.roa
File: -aWiVUWH2huRdD0SJUeYya_ylRA.roa (raw, json)
Hash identifier: R8XmZfuWmQ3u74YugA5Mco9y8qNmWAX95yEixozfiNw=
Subject key identifier: F9:A5:A2:55:45:87:DA:1B:91:74:3D:12:25:47:98:C9:AF:F2:95:10
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0D4E
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/-aWiVUWH2huRdD0SJUeYya_ylRA.roa
Signing time: Mon 10 Feb 2025 14:05:25 +0000
ROA not before: Mon 10 Feb 2025 14:05:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 58.99.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3406 (0xd4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 10 14:05:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F9A5A2554587DA1B91743D12254798C9AFF29510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:59:1f:6b:a5:41:8e:1f:67:54:d7:14:03:86:
de:52:b9:3d:c9:9a:e3:e6:90:04:2d:7d:32:01:6e:
cb:6c:ea:a4:d9:f6:e4:12:d4:3e:4a:74:bf:73:ab:
57:61:3c:eb:60:3a:82:b9:fb:f6:2e:f2:08:22:6c:
5e:5e:2b:87:96:e3:f0:41:dc:66:23:36:b2:2e:93:
52:49:bf:d0:17:bb:fa:7a:2a:72:84:f5:77:54:23:
8d:eb:b4:50:7d:e8:9c:17:a0:45:0f:e3:45:2e:46:
60:f5:6d:9d:36:32:f1:03:01:06:91:a3:88:28:71:
07:c4:78:a7:ca:9a:9f:e0:f8:db:58:44:d5:e7:fe:
6a:f9:1f:98:d2:cf:bb:80:a1:ef:9a:f5:bf:82:35:
19:aa:06:82:67:34:42:89:33:c1:09:34:fb:9f:e6:
ac:f7:3a:04:b7:18:1d:91:a2:30:7c:83:62:55:9b:
bc:11:6d:10:a0:f4:3d:3f:a3:a1:2e:8b:67:c2:3c:
40:6a:db:6b:ca:22:66:be:94:07:96:88:11:50:b2:
fd:bd:b8:0d:77:6b:4c:26:6a:ad:2f:04:2d:02:fe:
4f:1e:b1:ae:87:5b:97:52:89:c8:dd:1d:b6:03:da:
88:88:ca:cb:85:74:48:72:27:77:3d:b6:df:1a:a3:
ea:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A5:A2:55:45:87:DA:1B:91:74:3D:12:25:47:98:C9:AF:F2:95:10
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/-aWiVUWH2huRdD0SJUeYya_ylRA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.99.0.0/18
Signature Algorithm: sha256WithRSAEncryption
84:2a:c5:f7:28:a9:ba:64:1c:23:fe:f0:a1:ff:0b:ac:8c:60:
25:b7:4a:d1:6e:f5:eb:a9:7b:da:52:50:2e:17:f3:bc:f0:aa:
79:4d:f7:41:e7:60:80:b8:02:7e:1f:08:40:3e:6e:88:6c:5a:
60:76:ef:de:97:db:0d:c9:8f:b2:b5:47:81:5c:f0:df:08:58:
7d:c4:3e:e0:1c:2e:6a:b2:59:a1:48:a6:da:46:78:78:dc:76:
81:46:53:02:3c:1d:73:38:44:16:1a:4a:e4:fe:d6:6e:58:5f:
f1:d3:4e:86:03:c9:90:fb:3d:e9:00:05:f2:c3:3f:65:9f:83:
ac:83:52:6f:ab:b2:24:df:fb:b3:f6:f6:02:25:2b:20:01:50:
c0:c4:f1:08:d4:80:96:a9:bd:a3:32:5e:36:49:9f:c7:09:98:
0c:a2:52:4b:c9:38:42:ea:4e:da:dc:e5:7d:13:51:cf:98:f6:
75:dd:8f:cb:66:f8:ea:e7:db:a3:00:2b:d9:21:50:6a:12:3a:
02:a0:18:95:b2:19:6a:fe:9d:d6:7f:6a:97:be:23:6d:11:71:
19:3b:5b:92:55:72:f6:6c:7a:de:e6:dc:32:bb:6d:80:c6:b2:
4d:af:83:63:6e:7c:1b:73:78:a7:2f:6b:96:e4:97:35:2d:cd:
4c:fc:83:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:14:11 2025 by rpki-client