Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/ltkWCsBN_EZVnGMHhjZRGBvm4pI.roa
File: ltkWCsBN_EZVnGMHhjZRGBvm4pI.roa (raw, json)
Hash identifier: KSOhhe6ksF4MJ1B+eq8KtqVIL0aRl51qOIr7yuHT/wM=
Subject key identifier: 96:D9:16:0A:C0:4D:FC:46:55:9C:63:07:86:36:51:18:1B:E6:E2:92
Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991
Certificate serial: 0136
Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/ltkWCsBN_EZVnGMHhjZRGBvm4pI.roa
Signing time: Mon 10 Feb 2025 13:45:06 +0000
ROA not before: Mon 10 Feb 2025 13:45:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 215672
IP address blocks: 210.79.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 310 (0x136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991
Validity
Not Before: Feb 10 13:45:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=96D9160AC04DFC46559C6307863651181BE6E292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ae:e4:c4:68:b4:2a:d8:81:fc:04:53:a2:7f:
49:6b:f5:5f:09:a6:e3:32:5b:33:02:c5:b7:49:7f:
cc:a4:1d:f4:38:7f:19:bf:6f:e4:05:4b:a4:5c:e7:
c4:96:de:1f:ca:09:a3:06:26:5a:bb:d6:1c:dc:06:
6b:7c:cc:0b:0d:5b:18:ed:cc:e5:8d:be:f4:88:d3:
a1:bb:61:72:33:f2:01:d0:2d:08:70:d4:13:a9:d3:
e6:78:d4:27:2b:6c:94:05:5e:41:d7:2e:30:95:3b:
20:fb:55:6a:6d:78:79:c0:eb:ea:f7:a1:50:01:7e:
ee:3e:df:07:43:78:83:e1:ea:22:7e:e9:d0:1b:ee:
08:0e:f0:3b:45:00:72:5e:05:95:02:24:93:48:0c:
24:fe:d0:7a:82:1f:f6:59:e3:51:fb:97:5a:d1:3e:
a7:b2:74:f1:c7:78:c6:7d:34:2b:21:0f:83:ee:43:
2b:ba:1f:0c:20:9b:90:07:2b:f1:1f:e5:a0:1b:53:
a2:5d:89:a8:75:67:ce:56:89:70:76:9a:fc:b5:79:
db:bb:56:4c:bc:56:0d:1b:e2:a3:28:a0:b3:6b:7d:
26:c3:c2:3b:17:ee:1d:ab:7f:d8:e4:30:62:47:ae:
b3:71:98:40:ee:56:36:5a:7d:0f:f8:ee:5c:94:ae:
ca:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D9:16:0A:C0:4D:FC:46:55:9C:63:07:86:36:51:18:1B:E6:E2:92
X509v3 Authority Key Identifier:
keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/ltkWCsBN_EZVnGMHhjZRGBvm4pI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.150.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:1d:8d:08:72:35:ee:35:d0:2c:97:83:b1:fd:05:01:01:e0:
54:6d:ac:ce:e3:3e:b2:b3:ae:03:fa:68:49:66:ae:38:1d:44:
e5:2d:40:0a:da:d2:22:c7:1b:b8:99:a1:5d:b5:e6:a8:f3:fb:
ad:07:df:17:61:a6:36:e1:63:a8:24:da:1e:52:42:9d:9c:d2:
fd:65:bc:ef:30:c2:7b:91:4f:ba:86:f1:e1:28:fa:83:43:41:
71:05:d5:22:c0:2f:e9:ef:a4:4a:7b:2a:35:76:da:2e:ec:f3:
fe:31:3c:7b:33:c9:79:bd:b7:1a:7d:c1:6b:44:a1:ae:53:31:
69:f9:78:79:36:11:d9:ed:81:84:5f:45:01:9a:c4:43:46:8a:
d8:e8:07:8a:03:71:bc:bc:c6:c4:f7:e6:cb:43:ae:3d:7e:21:
55:40:05:f6:78:8c:fc:84:44:1b:62:3c:3e:eb:ca:f6:94:d0:
5a:76:96:ec:e1:f6:cc:f4:e0:e4:2a:4d:bd:29:dd:ae:ea:37:
b6:30:03:fa:a3:47:67:a3:78:40:e5:88:ee:57:a2:ad:7a:2b:
d7:1b:a1:0b:4e:81:25:f8:0a:d6:fb:0f:aa:a1:3f:5a:31:e7:
fb:3f:6f:86:52:fd:8f:34:81:c3:bd:09:5c:4c:fc:c2:87:f2:
df:6d:4f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:41:23 2025 by rpki-client