Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/xRQmviVX2zDMfqnTgVz01rtUh8o.roa
File: xRQmviVX2zDMfqnTgVz01rtUh8o.roa (raw, json)
Hash identifier: 6CLiUayOdOBmbcnh2VVbIAczsqEdMCVug1QnPD/zAM4=
Subject key identifier: C5:14:26:BE:25:57:DB:30:CC:7E:A9:D3:81:5C:F4:D6:BB:54:87:CA
Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial: 0CB8
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xRQmviVX2zDMfqnTgVz01rtUh8o.roa
Signing time: Mon 26 Aug 2024 05:28:04 +0000
ROA not before: Mon 26 Aug 2024 05:28:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 49.213.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3256 (0xcb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Validity
Not Before: Aug 26 05:28:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C51426BE2557DB30CC7EA9D3815CF4D6BB5487CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:93:b7:fb:8d:23:af:97:c2:37:8b:43:7f:
f1:18:6d:a7:a7:30:df:67:d7:83:ba:88:ea:c4:0c:
a1:f9:e7:27:00:14:65:b6:15:72:a3:0d:75:70:37:
75:93:9a:d1:d1:f5:ec:e0:0f:a1:2e:47:85:f3:cb:
1b:ca:ca:88:ad:bc:84:df:fb:76:a0:5d:b4:47:98:
e0:79:75:6c:73:6e:6f:2f:dd:41:b7:e9:5f:74:c0:
5f:78:16:2e:54:b7:94:28:68:b1:c2:00:8a:4c:0f:
7e:e1:d1:df:85:fb:02:a6:b9:40:13:34:9a:84:e8:
04:4e:54:b9:e4:ea:8c:67:1a:14:45:42:6b:ac:bb:
f2:c6:1a:da:2c:8a:d5:23:08:36:87:d1:39:ad:e1:
28:6c:d0:d1:29:23:f2:eb:41:20:c0:6e:d2:04:3f:
ca:d5:7e:49:9f:72:2b:73:cc:9f:b1:e5:a5:d5:92:
fa:a4:76:ee:cb:45:c7:ce:64:90:e2:0d:a3:e4:38:
7f:e8:f4:42:98:fa:4c:61:53:b5:02:a5:9b:12:a8:
08:94:2c:97:8d:05:98:36:e3:97:2b:40:34:8c:ec:
84:08:e5:45:c0:5d:c9:27:2f:94:2c:4f:08:50:0d:
9a:a8:31:f6:1d:36:02:43:f5:91:34:72:d4:66:5c:
59:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:14:26:BE:25:57:DB:30:CC:7E:A9:D3:81:5C:F4:D6:BB:54:87:CA
X509v3 Authority Key Identifier:
keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xRQmviVX2zDMfqnTgVz01rtUh8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.213.167.0/24
Signature Algorithm: sha256WithRSAEncryption
21:97:4f:38:da:45:b9:f1:70:ed:48:03:3e:f6:df:62:27:d3:
0f:b6:eb:ad:df:ad:ce:ec:5a:8f:f6:c1:e6:b4:e9:99:18:62:
ff:30:94:b5:ba:b1:3a:a7:69:33:b4:23:40:9a:71:2c:c8:a0:
f6:ae:ba:21:c1:5b:ce:6f:6c:bf:67:8a:e2:60:9f:a5:81:71:
8f:bc:f8:32:8d:f8:59:57:a6:20:23:78:8f:2f:27:aa:f3:d9:
0c:38:f7:24:0a:0d:94:be:98:b5:8c:26:3c:31:88:ef:db:12:
cc:00:c3:98:7f:42:4f:c2:da:b8:b8:94:c6:6f:9d:70:67:11:
99:0d:1c:b0:f8:67:79:3b:9f:11:3b:6c:82:0b:88:89:90:47:
d8:57:f6:73:57:d4:ec:db:da:49:97:33:e0:ec:ad:c7:9d:0e:
c9:a1:ff:b0:67:5a:fa:41:a8:52:82:81:d0:ba:1b:d6:11:db:
d4:67:92:d2:0a:a6:2d:78:43:22:f3:17:d2:e9:8d:e7:ff:52:
56:ad:7d:04:a9:34:af:3a:81:f1:1f:58:0f:4e:df:5c:69:d9:
cd:9d:bf:80:5d:0c:fd:c9:95:d3:e6:ed:27:cd:4a:ce:96:2b:
e9:08:9b:75:10:b4:5e:62:5e:e7:dc:e1:bf:2d:6c:0c:6c:ee:
e4:bd:08:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:59:39 2025 by rpki-client