Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yLYLiE-Y6-5FzeNJm-hXke6CdJ4.roa
File: yLYLiE-Y6-5FzeNJm-hXke6CdJ4.roa (raw, json)
Hash identifier: dV6ued2+tcVHLvdQkMcClUoSjJy0E/S6bZw/nSsAjQY=
Subject key identifier: C8:B6:0B:88:4F:98:EB:EE:45:CD:E3:49:9B:E8:57:91:EE:82:74:9E
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1356
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yLYLiE-Y6-5FzeNJm-hXke6CdJ4.roa
Signing time: Mon 10 Feb 2025 14:03:38 +0000
ROA not before: Mon 10 Feb 2025 14:03:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4950 (0x1356)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Feb 10 14:03:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C8B60B884F98EBEE45CDE3499BE85791EE82749E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:16:86:ec:06:bd:51:ad:19:20:28:e5:17:d6:
1c:28:4a:12:fe:e4:a3:22:96:09:ea:84:06:83:d5:
c4:fb:6e:a7:48:27:2d:ac:8d:e6:34:ba:9f:dc:fd:
af:29:b9:07:49:62:e2:0c:c2:f2:6b:71:e7:bc:3a:
52:34:b1:ee:53:a0:d4:43:0a:bc:ce:e9:98:d3:26:
91:ec:c7:29:07:aa:6d:bc:59:99:f4:a6:a7:38:9f:
96:b5:8d:37:d9:bf:ce:7e:f8:cc:88:6d:18:bb:b3:
00:7c:c5:00:1f:f7:70:2f:69:f9:92:94:c9:15:e2:
2d:e0:d1:ec:a8:48:3a:bd:b5:ce:d4:03:50:d7:37:
fa:de:bc:dd:82:fb:16:e4:f2:67:5b:de:61:f0:69:
2d:33:2a:23:66:bf:83:1b:1d:63:10:af:48:46:cc:
0c:65:72:64:12:4f:7c:35:45:90:65:21:6a:52:aa:
e7:72:f8:41:d0:19:14:91:92:fb:51:ae:50:f7:e3:
39:0b:a1:f3:85:9d:70:ff:50:d8:66:66:62:81:db:
f4:2c:ce:73:62:10:db:09:c3:db:1a:b4:30:8d:0b:
bc:7d:16:a3:e2:6e:66:c2:57:2f:7a:6c:ca:33:a5:
c4:4d:99:e2:03:39:b0:cc:1d:e9:7a:62:7f:b5:a0:
d9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B6:0B:88:4F:98:EB:EE:45:CD:E3:49:9B:E8:57:91:EE:82:74:9E
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/yLYLiE-Y6-5FzeNJm-hXke6CdJ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2d:ce:ba:b2:37:39:fb:1b:93:49:c1:e8:e1:e1:47:8a:33:
aa:c8:cf:d2:7b:49:f9:a6:e0:27:17:07:d4:d4:70:4a:ab:2b:
86:8d:f1:01:c8:4d:61:61:15:fa:d7:3d:1b:37:c7:df:0e:49:
9f:4d:05:17:ce:dd:6f:3c:bb:bc:fe:07:89:4f:54:94:9e:71:
75:d5:7d:88:32:80:8d:2a:57:b0:64:4a:85:ce:08:7d:b3:69:
9e:2e:1f:ba:da:bc:ec:df:4c:d4:03:21:64:34:59:3f:3d:c9:
46:0b:c0:40:f0:9b:b1:1d:77:19:d5:f2:99:c7:c9:83:49:b5:
67:95:5f:27:aa:57:d9:9f:70:8b:a3:ac:20:b5:9e:92:95:36:
de:24:bc:96:06:e1:34:d7:65:6e:90:74:ca:11:44:63:25:98:
01:5e:d0:74:99:39:78:3b:60:4a:b3:3e:96:b0:cc:df:8f:a9:
e1:ca:b2:d5:ec:bc:00:15:34:2e:ea:02:11:8b:de:f9:d5:b4:
9c:12:a8:94:ae:6e:09:3a:20:3e:2f:8e:42:5a:2b:97:41:0e:
9c:4c:f8:82:7d:50:17:73:e2:95:03:91:aa:09:18:c6:fa:12:
cf:07:27:fa:67:c0:e9:e3:5e:0d:d4:37:78:54:ee:37:b3:22:
30:33:2d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:29:40 2025 by rpki-client