Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/nkQ_0LmG9Mh9S88Ur7MJmhxrnU4.roa
File: nkQ_0LmG9Mh9S88Ur7MJmhxrnU4.roa (raw, json)
Hash identifier: U3NccPiAgXXZ5Ubp9zuNMRpPJFb4r48NhfKEevNzG3o=
Subject key identifier: 9E:44:3F:D0:B9:86:F4:C8:7D:4B:CF:14:AF:B3:09:9A:1C:6B:9D:4E
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0D4B
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/nkQ_0LmG9Mh9S88Ur7MJmhxrnU4.roa
Signing time: Mon 10 Feb 2025 14:05:24 +0000
ROA not before: Mon 10 Feb 2025 14:05:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 27.100.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3403 (0xd4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Feb 10 14:05:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9E443FD0B986F4C87D4BCF14AFB3099A1C6B9D4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ad:0b:c3:3d:f9:2e:05:80:c3:a5:8d:f8:bf:
f9:60:44:21:73:d4:4f:5f:08:3e:e1:7c:68:50:5c:
80:d6:e8:fb:07:37:e8:b0:85:f2:df:f7:65:d4:0c:
dc:60:4f:a0:64:ac:06:26:ef:f3:fe:cc:44:ee:8b:
df:97:af:ed:a2:7f:4e:c5:18:25:d9:dc:6d:0b:60:
71:cc:74:38:66:04:c3:a3:a8:a2:2d:08:71:5e:a9:
7c:3c:1b:25:2c:4a:aa:8b:00:1a:30:d0:72:74:38:
25:63:86:8a:0b:33:65:1e:f9:da:bd:c5:94:61:9a:
6b:16:e5:94:94:ad:76:1e:42:2b:1b:8a:c7:68:a3:
f0:41:a9:9d:8d:19:5c:37:61:0c:2e:94:52:16:17:
d8:1d:3f:4f:2f:77:19:7b:aa:f9:f1:4f:c5:9e:1e:
cd:5d:ad:ca:60:73:2c:c9:f1:b4:35:0b:e8:1d:28:
d6:99:0e:4d:98:b6:10:69:22:26:ed:0c:86:49:31:
f5:48:1a:9c:d1:4a:92:67:c7:4a:3d:52:27:1d:a8:
be:3f:ed:6e:78:55:7d:52:e5:1d:63:24:13:83:ce:
00:36:40:23:9e:03:34:1e:86:e8:54:22:e5:54:83:
fe:d0:f5:b5:23:9b:07:a6:f0:5e:ec:c1:27:2d:fe:
e2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:44:3F:D0:B9:86:F4:C8:7D:4B:CF:14:AF:B3:09:9A:1C:6B:9D:4E
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/nkQ_0LmG9Mh9S88Ur7MJmhxrnU4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.100.64.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:04:be:82:b4:35:68:e1:e2:e6:2b:2e:c6:76:8f:5c:35:d7:
14:99:00:34:3d:49:0f:bd:8c:e5:b5:58:3e:54:89:f4:f3:ec:
da:c4:36:16:dd:2f:fa:b7:d9:f6:d1:bd:e6:d2:8a:6f:7e:30:
1f:1c:98:16:05:b9:a8:83:fd:8c:ad:e3:8b:94:31:1d:44:91:
00:db:ea:22:ca:30:3c:1a:a5:c7:0f:8c:c4:bd:fc:7a:ab:80:
de:30:56:ab:5f:53:f7:6f:49:14:ad:23:6d:4b:32:57:ef:6f:
e6:46:4f:65:b3:a5:13:15:37:23:53:fc:16:81:38:9f:a6:1c:
55:54:c0:5b:b7:01:91:70:59:ca:21:65:38:af:34:0c:45:60:
b3:9a:2f:57:34:13:bd:1d:79:0b:97:9f:00:7c:da:5a:ff:e8:
bc:ee:2d:c6:ac:77:f3:78:32:40:29:b8:d4:8d:32:85:32:4b:
8c:9f:bf:6c:27:31:1f:d0:88:d7:a0:b4:b1:d2:8d:dc:b4:fe:
d3:a7:50:99:b1:42:d5:dd:63:fb:2f:4e:6d:27:03:96:e6:88:
c6:f8:4d:3a:29:6d:98:73:89:39:69:92:79:ad:9c:31:e9:d6:
7a:b8:e5:3b:85:c2:99:0f:ee:94:3a:7a:7b:2d:74:b3:ee:c8:
ae:bd:1d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:24:45 2025 by rpki-client