Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rxkDFMc36J4fze8DlHIMLyTpWdk.roa
File: rxkDFMc36J4fze8DlHIMLyTpWdk.roa (raw, json)
Hash identifier: DM5bTRALdnZKVye42BSK0X8HBdH4wKJmS64JM86xQsM=
Subject key identifier: AF:19:03:14:C7:37:E8:9E:1F:CD:EF:03:94:72:0C:2F:24:E9:59:D9
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0D8A
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rxkDFMc36J4fze8DlHIMLyTpWdk.roa
Signing time: Mon 10 Feb 2025 13:50:06 +0000
ROA not before: Mon 10 Feb 2025 13:50:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9244
IP address blocks: 61.56.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3466 (0xd8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 10 13:50:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AF190314C737E89E1FCDEF0394720C2F24E959D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:63:62:dd:5e:11:80:f0:4c:a4:b6:67:cf:
3a:22:bf:c3:77:9b:83:bb:18:db:f1:1a:a3:72:3e:
bc:18:c9:e2:f0:f7:0a:22:95:e8:e2:85:1b:ad:3e:
ca:e7:ac:33:9b:15:5d:dd:be:b7:77:da:47:50:c5:
d2:f5:70:6b:50:b1:2b:1e:4c:9b:e2:af:d0:8c:8f:
09:92:34:a2:1a:e6:99:7c:32:68:27:17:b8:9e:2b:
57:fc:bb:63:f8:d6:b7:2e:50:c3:06:9b:94:72:99:
95:41:57:69:e8:da:13:d4:75:db:45:d6:50:71:6b:
cd:d8:0b:21:21:6b:b2:45:b2:79:59:c1:43:5a:e7:
b3:56:c8:b4:b1:1a:78:9c:86:d5:78:1f:a5:61:12:
23:6b:5c:7b:bb:5d:01:15:58:36:5f:4a:55:5d:6f:
84:b8:9f:10:54:a2:16:72:d8:bf:ec:0a:07:dd:5c:
09:0c:a6:ad:30:6f:a5:58:e6:08:89:ea:bc:34:a0:
89:8a:04:ec:e9:5d:dd:c7:3e:ab:dc:2e:e6:e7:a4:
eb:ee:3d:d9:1d:07:e1:7a:86:24:d3:d5:f5:6f:ff:
c6:3d:5e:63:dd:37:94:21:ed:4f:62:e1:d5:36:b3:
a1:bf:4a:2a:9f:a0:4e:c8:14:ab:35:cf:67:79:0b:
10:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:19:03:14:C7:37:E8:9E:1F:CD:EF:03:94:72:0C:2F:24:E9:59:D9
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rxkDFMc36J4fze8DlHIMLyTpWdk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.65.0/24
Signature Algorithm: sha256WithRSAEncryption
75:c5:90:06:b5:0d:7d:9a:c0:00:2a:40:cc:6a:48:67:04:f0:
d0:5f:b6:8c:7b:b5:2f:2e:7c:c2:84:a5:44:f3:e1:55:a6:63:
f4:11:cc:66:34:83:ec:02:63:b5:ad:68:df:37:68:6d:58:83:
43:de:06:0c:c8:e8:0c:74:a3:5b:d6:b4:09:72:ea:d1:fe:86:
94:2f:4f:56:7d:ed:f7:4a:c4:ab:71:27:8d:24:52:8d:3d:43:
93:4c:a5:19:d5:5b:1d:e6:c4:32:56:1c:1c:03:c9:ab:f4:d6:
bc:a1:40:45:bc:14:b4:ae:70:d3:3b:bf:7e:59:2e:6f:4d:e1:
88:7b:38:6b:8b:72:67:3b:67:44:17:89:1a:a8:31:35:4c:a0:
2a:b6:69:c3:2e:d7:71:fe:1b:1f:27:a6:24:bc:42:d6:42:68:
5b:f5:98:2c:4a:bd:53:dc:5f:10:b0:cc:93:78:c2:b5:26:5a:
f6:d2:10:7b:6c:47:46:a7:26:42:3c:59:d2:e0:59:57:84:56:
ef:63:1a:61:fe:2a:31:ea:a2:0f:37:d1:cd:8e:7b:1c:fa:3c:
59:a8:c8:e4:84:d1:3c:36:8e:60:64:9e:de:f0:af:ea:9e:eb:
7c:84:8d:65:27:19:13:12:af:3a:3f:20:0c:a5:47:f5:74:ba:
7b:6f:7b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 15:10:06 2025 by rpki-client