Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FeYM9jwsUN9tCTXQszc7n3ifeZs.roa
File: FeYM9jwsUN9tCTXQszc7n3ifeZs.roa (raw, json)
Hash identifier: oA1hxVtTeJrHU6b5RpjxZk9ihgPs2IOXC2+YmewQxmQ=
Subject key identifier: 15:E6:0C:F6:3C:2C:50:DF:6D:09:35:D0:B3:37:3B:9F:78:9F:79:9B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1353
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FeYM9jwsUN9tCTXQszc7n3ifeZs.roa
Signing time: Mon 10 Feb 2025 14:03:37 +0000
ROA not before: Mon 10 Feb 2025 14:03:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131644
IP address blocks: 182.173.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4947 (0x1353)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 10 14:03:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=15E60CF63C2C50DF6D0935D0B3373B9F789F799B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:05:5c:e9:61:5e:d8:cf:b7:d7:96:94:c2:ec:
51:3d:4d:2b:7a:78:cd:6a:11:1c:7a:77:b8:61:85:
db:60:29:90:38:4c:73:bf:bc:93:57:24:a4:8b:ac:
bd:a7:b0:1d:38:a2:45:2d:29:f1:f7:c0:42:db:88:
8f:20:b1:56:67:a5:52:09:4d:af:d2:eb:d7:a2:db:
11:d7:2a:96:61:3b:36:8a:6e:0d:9d:a5:48:d0:f4:
e1:7d:f1:92:c6:56:0d:a2:7d:77:b2:70:aa:d5:2e:
0f:d2:be:46:4f:7d:99:34:64:86:92:7e:80:88:bc:
b8:1a:89:aa:a2:d3:09:03:78:f8:6b:e7:d3:a6:5e:
c9:f4:c9:cb:24:64:9c:2b:54:20:fa:cb:2e:76:42:
85:9f:59:91:32:4e:e6:38:4a:cb:8f:4b:c9:2a:77:
27:8a:6c:f7:70:c7:b3:e2:14:71:35:02:5f:38:01:
ae:cb:a1:87:d5:28:23:4c:ee:a3:56:a1:05:90:ee:
cb:5f:aa:23:94:b2:fd:7f:9f:a8:dc:a1:9c:d5:7d:
1b:9a:ca:db:c3:2e:ab:59:62:15:92:e4:7e:e5:3c:
4f:c8:3a:d4:7d:ec:60:1e:a5:88:a4:ef:f9:1e:9f:
ea:5a:f4:4f:e4:67:c6:03:fa:8d:48:54:1e:5f:79:
f4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E6:0C:F6:3C:2C:50:DF:6D:09:35:D0:B3:37:3B:9F:78:9F:79:9B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/FeYM9jwsUN9tCTXQszc7n3ifeZs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.173.4.0/22
Signature Algorithm: sha256WithRSAEncryption
90:6d:7d:99:b0:2f:2b:73:18:4b:02:32:55:38:c4:22:54:00:
04:99:5d:da:25:be:c6:86:b6:70:dc:8a:77:a2:d3:b9:e8:63:
5a:66:30:2f:8d:14:3d:dc:5d:d7:68:80:54:b4:cf:42:0c:bb:
28:7f:3b:cd:7e:fc:ff:f2:e8:ed:9b:a3:de:fc:99:65:d9:85:
bd:96:09:3c:70:51:8c:3f:4a:2b:5f:be:c5:0b:8d:91:53:40:
d2:77:84:0d:7c:a7:49:e6:64:7c:c9:bf:ac:ab:e7:0e:16:48:
61:db:d9:f9:3e:ae:f2:c3:c7:f0:18:4b:0f:b1:dc:32:ac:18:
4e:26:37:b9:cc:ae:5a:b2:d3:2f:f9:ee:df:8c:1f:6d:ce:f0:
be:1a:58:98:b7:75:65:87:f1:e7:b5:23:25:3a:45:ac:e9:91:
b9:f2:a1:d6:4c:e7:39:cc:52:f1:d9:f6:e1:f0:28:65:43:3f:
70:a2:f6:62:f1:a0:30:c4:0c:53:17:f7:c0:bd:55:c6:a1:1c:
49:fe:a1:0a:33:ca:95:1e:15:15:1b:06:94:9a:a0:68:b0:58:
ca:6a:df:57:a7:92:b5:8f:b6:f5:dd:07:88:cd:4b:56:d5:09:
6f:5d:13:c1:6b:ad:fd:07:8d:c9:a0:a7:89:05:7b:f5:f1:6f:
0c:cf:d5:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:27:35 2025 by rpki-client