Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/b8f-d8RqPgqOu82eLf3R8il1-o4.roa
File: b8f-d8RqPgqOu82eLf3R8il1-o4.roa (raw, json)
Hash identifier: ThDJcoSwKXdqVWKOxnJmEAaoDfCZdfbTWtthet1BVII=
Subject key identifier: 6F:C7:FE:77:C4:6A:3E:0A:8E:BB:CD:9E:2D:FD:D1:F2:29:75:FA:8E
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0D4F
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/b8f-d8RqPgqOu82eLf3R8il1-o4.roa
Signing time: Mon 10 Feb 2025 14:05:25 +0000
ROA not before: Mon 10 Feb 2025 14:05:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 211.73.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3407 (0xd4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 10 14:05:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6FC7FE77C46A3E0A8EBBCD9E2DFDD1F22975FA8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:90:b2:dc:9e:a9:b3:b0:9c:68:92:e4:9a:7b:
b9:ca:5a:52:42:66:61:29:03:2b:c5:0a:0b:d8:48:
5c:a7:98:dd:7e:7f:89:05:73:91:75:f1:05:b9:b3:
f6:ad:c1:c4:41:04:f3:cf:65:14:7e:09:61:62:66:
d8:8d:82:df:3d:05:0c:ee:f6:cb:a4:1f:b9:47:05:
7d:3c:9a:08:4f:ab:d9:26:98:ea:4f:be:6d:66:c2:
11:c4:28:a2:51:14:d2:0e:31:19:02:d5:cb:7d:a0:
db:24:65:b8:62:80:0b:85:57:df:69:a6:77:de:8c:
3c:19:3b:a1:56:3e:1e:bc:7b:da:0e:06:93:e2:13:
d1:30:86:45:6d:bd:73:0b:97:79:7a:a2:ef:88:6d:
60:64:a6:8d:de:56:57:cd:00:49:3e:1c:e5:50:ef:
71:30:8b:99:5b:40:07:e2:c5:4b:42:11:21:b0:90:
21:af:d5:80:d3:99:1f:c4:f4:de:d7:58:0b:0b:6a:
95:6f:66:b0:06:79:5c:12:a2:ce:fd:80:7b:f8:ba:
f6:47:1d:cc:a1:e7:de:c3:00:8b:0f:6b:d4:18:56:
38:ac:01:8e:c2:3e:7f:12:9a:da:ea:e1:01:3b:f6:
a8:19:48:cb:75:4c:34:ba:3a:0e:28:91:7e:3e:29:
e7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C7:FE:77:C4:6A:3E:0A:8E:BB:CD:9E:2D:FD:D1:F2:29:75:FA:8E
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/b8f-d8RqPgqOu82eLf3R8il1-o4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.160.0/19
Signature Algorithm: sha256WithRSAEncryption
17:ca:75:55:48:8e:8c:42:ad:da:3c:5e:d6:00:e5:c6:92:ac:
40:22:72:de:3e:e4:e9:48:75:18:86:36:4a:2b:b4:1b:aa:dd:
10:e9:98:3b:75:84:35:99:43:ce:ac:3a:0a:88:91:0c:bd:b3:
d8:f4:63:6a:ee:c3:3e:30:37:22:95:33:ea:59:42:da:81:1f:
83:17:00:67:7e:96:2f:ad:f4:cd:ff:03:54:e3:cb:9f:fd:dc:
f5:40:dd:e4:b1:27:d2:9c:5b:ef:f9:d0:da:ec:86:2c:f0:d2:
2f:2f:ef:35:7b:77:32:4b:2b:ad:69:46:92:87:2b:a0:83:de:
95:3b:c7:7a:b3:1f:e7:f7:28:37:1b:f2:78:63:0e:a1:06:60:
fe:9f:71:ab:24:89:5c:32:b1:98:01:e9:8d:c9:3f:75:58:7a:
51:7e:35:92:2d:9d:ed:f2:ad:19:f2:cb:4d:6a:3c:ab:89:59:
2f:6a:fa:d7:33:44:e4:6b:a4:b9:eb:90:12:ba:41:68:f6:30:
47:0c:a1:c9:8b:17:67:d7:67:ab:0f:e5:7d:11:2b:0e:1c:92:
f2:bd:d2:63:55:98:b6:74:14:d2:ee:a1:50:e5:77:8a:11:0a:
d1:bd:bb:e3:9f:b7:8d:35:e7:a7:2d:24:04:2f:a1:1b:a0:e7:
bf:10:e6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:15:59 2025 by rpki-client