Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/RgCqwIwGOyNrO4m1Rd4nNx2m67w.roa
File: RgCqwIwGOyNrO4m1Rd4nNx2m67w.roa (raw, json)
Hash identifier: Jc4b1xOS/Qux+t7cimWZ+n7FzKcFzFrLKdJh2HCACEI=
Subject key identifier: 46:00:AA:C0:8C:06:3B:23:6B:3B:89:B5:45:DE:27:37:1D:A6:EB:BC
Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Certificate serial: 018E
Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/RgCqwIwGOyNrO4m1Rd4nNx2m67w.roa
Signing time: Mon 10 Feb 2025 13:44:14 +0000
ROA not before: Mon 10 Feb 2025 13:44:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 2914
IP address blocks: 202.160.72.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398 (0x18e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A
Validity
Not Before: Feb 10 13:44:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4600AAC08C063B236B3B89B545DE27371DA6EBBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4b:9a:8c:f6:55:18:c0:a0:17:97:4a:18:09:
61:68:9d:ab:33:a0:2b:99:4b:87:c3:a7:08:a8:cf:
4a:33:59:4d:a6:63:89:27:81:bc:29:8d:73:f1:cb:
be:5b:d9:f5:e2:93:d0:03:71:f1:1c:2b:ac:96:e9:
20:df:3d:0d:ae:cb:e6:71:90:54:be:73:14:72:4e:
51:d4:96:38:35:29:5f:02:0b:29:2d:68:13:16:b6:
63:6f:48:d4:7e:34:33:53:97:6e:df:06:21:5a:20:
0f:44:78:0e:51:e5:46:7b:38:e1:0e:dd:dd:8d:b3:
5a:a7:bd:eb:70:f2:77:bc:79:f7:d8:64:f9:9b:6b:
ba:cd:d1:71:59:c5:57:36:75:fd:4f:c2:5e:80:43:
28:fc:5c:36:e3:78:ca:e0:b5:41:01:89:8a:a3:df:
72:b9:a6:a7:11:ad:68:8c:67:ff:17:ae:e9:c9:f5:
7e:c5:76:bf:6f:23:b8:d5:1f:07:d9:79:e1:af:f3:
01:fc:f6:be:d5:f9:0b:56:e6:e8:b5:90:2c:0f:33:
f9:85:16:89:d4:e2:dc:17:cf:62:f7:3f:7d:0f:6e:
28:ac:75:9e:8b:2a:65:d4:35:ec:d7:5e:d2:ff:5f:
8c:15:87:73:5e:37:7b:a1:20:c4:c7:f5:54:3e:e7:
cd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:00:AA:C0:8C:06:3B:23:6B:3B:89:B5:45:DE:27:37:1D:A6:EB:BC
X509v3 Authority Key Identifier:
keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/RgCqwIwGOyNrO4m1Rd4nNx2m67w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
48:2c:57:10:ec:62:3b:19:06:08:c6:ef:84:66:f3:ad:bf:90:
b3:a0:0c:4d:36:34:e7:86:6c:7c:d2:fb:52:61:90:70:91:1f:
b1:a2:df:a6:74:aa:d2:f7:d5:fd:33:da:5e:5c:f8:be:91:c6:
bc:51:4f:dd:38:54:b5:b1:ce:33:39:bf:17:27:d3:6a:c0:db:
2f:4a:23:d3:48:6e:65:19:03:d7:3c:0c:18:9f:c9:5e:9c:5f:
37:86:4c:b5:4f:07:e2:c5:1a:00:e7:68:26:4f:18:9e:20:dd:
8f:0c:ca:fe:0a:8c:bd:1d:eb:b8:ff:8a:52:1a:b5:b0:a1:36:
e6:1c:36:66:ab:25:62:b0:b4:73:bc:eb:be:10:a8:4d:41:55:
b2:1f:26:79:8b:9e:25:f5:a6:84:e7:e1:d5:a5:0d:f4:76:d1:
37:9c:9c:0f:f4:bc:cd:e0:60:ae:aa:20:ef:65:fa:ff:e0:a2:
53:81:ab:c3:94:f6:e3:53:c8:a5:ff:06:4d:9b:2d:0c:9b:f8:
b7:94:20:29:59:df:aa:33:eb:39:6b:86:8f:df:db:2c:bb:8c:
47:89:8f:24:09:2c:bd:0a:ea:e3:08:b7:45:b5:5c:85:a5:ac:
48:52:a7:13:c6:77:d5:ac:bb:3f:6d:4a:5d:18:8f:d6:b2:a4:
f4:d6:a3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:45:24 2025 by rpki-client