Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/70RYYblxlPFKBStFyE3agsYsPys.roa
File: 70RYYblxlPFKBStFyE3agsYsPys.roa (raw, json)
Hash identifier: xiuD+aTHnZ3KQCEztkyiblJFtMn4pQyfEdwzVYPyhN4=
Subject key identifier: EF:44:58:61:B9:71:94:F1:4A:05:2B:45:C8:4D:DA:82:C6:2C:3F:2B
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0C5F
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/70RYYblxlPFKBStFyE3agsYsPys.roa
Signing time: Mon 10 Feb 2025 13:55:47 +0000
ROA not before: Mon 10 Feb 2025 13:55:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 133955
IP address blocks: 223.165.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3167 (0xc5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 10 13:55:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EF445861B97194F14A052B45C84DDA82C62C3F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2b:cd:e8:35:02:d5:dc:cd:7c:ec:04:ee:bf:
74:4c:d5:a4:89:c0:cb:b0:1e:5c:cf:95:71:5e:d3:
73:18:0e:c7:ca:74:e5:0b:38:26:39:bd:df:6b:41:
72:b8:0f:87:17:1b:b3:21:10:43:2f:1b:42:be:86:
fd:8c:56:0c:1c:e3:b4:6d:f8:97:dc:dc:62:13:06:
07:10:8d:d5:b5:0b:7e:2c:60:09:51:fa:f0:c0:a6:
dc:34:71:9d:38:f1:93:0e:0d:14:1f:13:e8:95:3d:
b0:5d:37:a4:31:1e:ec:9e:17:89:58:84:e5:e7:e1:
d2:f1:9b:c2:92:e8:05:63:63:c7:4c:d9:6e:a4:91:
f1:13:46:98:83:da:f7:0f:87:d7:b4:d9:e3:2f:58:
b5:66:9a:e2:d0:7d:70:22:44:70:a0:ec:9a:e5:e5:
c6:64:6b:eb:d0:a5:36:9b:72:68:cb:c8:26:dd:f9:
38:84:a9:4f:8a:a8:13:89:5b:32:7a:d5:fa:c2:b0:
a4:99:26:ed:5d:10:48:db:12:13:00:de:58:b5:50:
53:9e:77:95:e8:ac:62:a2:cb:9f:80:be:f7:d1:2c:
10:c5:d5:55:30:d1:56:c5:7a:ae:2a:dc:4f:80:1b:
25:c1:68:a1:a3:0e:f4:ae:55:3d:25:e5:fe:23:c7:
0a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:44:58:61:B9:71:94:F1:4A:05:2B:45:C8:4D:DA:82:C6:2C:3F:2B
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/70RYYblxlPFKBStFyE3agsYsPys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.15.0/24
Signature Algorithm: sha256WithRSAEncryption
69:02:a1:1e:23:0d:ef:dd:4e:69:1e:11:0c:bd:ab:03:5a:53:
ae:e3:b2:e0:bf:a5:19:15:45:fe:f2:05:a4:d4:4c:a7:8a:69:
7c:14:0b:09:0a:67:0a:df:69:a6:fa:65:e9:5d:15:69:77:45:
2f:06:d8:cd:07:82:e3:8c:3e:54:ed:f0:39:38:d9:74:45:46:
69:51:d2:3a:41:42:a7:1d:3a:37:46:0a:1e:51:bf:3d:47:dc:
a7:6a:bc:47:19:62:47:90:d1:b9:57:db:d6:30:bf:5b:69:9f:
ee:7f:c6:d7:4f:8d:07:c1:d8:1e:ee:8e:b1:98:7a:51:39:3d:
c9:fd:99:9e:46:73:5a:52:d3:91:1e:6a:05:b2:e2:b3:81:90:
18:fc:98:53:7f:47:7a:50:55:29:22:57:fc:75:ad:59:1e:8f:
c7:13:e4:7b:1d:a5:20:51:fc:fb:3e:a9:d6:b3:2a:bc:8d:89:
a2:6f:24:fa:12:2a:48:3c:d6:19:0f:fe:26:ac:b6:9b:f3:06:
f2:08:8a:13:fc:35:fb:25:e7:ac:4b:fc:e7:cb:d7:2c:3d:10:
96:e6:4d:ae:b2:e2:20:29:5d:b5:7a:ec:ad:0c:1a:d7:d6:02:
8c:a0:e6:f9:10:12:2d:8c:24:c4:1d:13:02:35:de:27:69:44:
23:28:23:60
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:19:47 2025 by rpki-client