Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/RJmuS3HjHSSQ68_SuJylKL35Jx8.roa
File: RJmuS3HjHSSQ68_SuJylKL35Jx8.roa (raw, json)
Hash identifier: L8y8lEGN6dhkQV9O/u+wt4mkB+SHQTcLy9L23Gjvss8=
Subject key identifier: 44:99:AE:4B:71:E3:1D:24:90:EB:CF:D2:B8:9C:A5:28:BD:F9:27:1F
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0C5E
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/RJmuS3HjHSSQ68_SuJylKL35Jx8.roa
Signing time: Mon 10 Feb 2025 13:55:47 +0000
ROA not before: Mon 10 Feb 2025 13:55:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 133955
IP address blocks: 223.165.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3166 (0xc5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Feb 10 13:55:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4499AE4B71E31D2490EBCFD2B89CA528BDF9271F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e7:c2:4a:a8:5a:0b:e2:8c:96:3f:dc:f1:e1:
f2:dc:c5:ec:e7:97:5b:e0:3f:47:dd:c3:dd:d3:7b:
b7:95:98:6c:cf:3b:54:91:d2:64:96:ff:92:0d:a9:
11:86:08:ae:30:91:a0:58:3a:0b:69:bf:6e:b1:2a:
81:e9:c0:29:3e:00:79:41:2e:5b:70:52:92:7b:b8:
28:d8:4a:70:a7:3a:7a:8e:d3:e2:af:32:ca:b4:4a:
04:40:9c:4d:e1:60:56:0a:4c:95:12:e2:c9:e5:61:
9e:28:2d:2c:45:f9:85:be:44:63:91:e4:15:0a:f3:
9a:6e:12:35:97:2a:32:52:7e:3c:da:0f:c5:39:d8:
38:24:11:ce:fd:9b:bf:bf:06:e5:40:45:d3:62:83:
fb:5e:73:82:e5:4b:7d:22:b4:bb:67:11:61:d3:3b:
33:0c:0d:ff:4b:e9:3a:7a:d2:76:54:4c:5d:1e:8b:
5d:4a:50:2d:6c:bf:93:45:7f:36:1f:71:ed:a5:33:
9a:a3:91:df:34:f9:f0:38:f4:58:84:a4:5c:eb:e2:
a4:33:65:e6:d0:98:70:2d:5a:3b:e9:1c:80:f7:86:
6f:e0:1b:f1:37:02:2f:3d:80:ab:39:83:4c:a8:ac:
82:cd:6e:44:15:8c:9d:9f:91:76:97:d7:8d:03:7c:
05:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:99:AE:4B:71:E3:1D:24:90:EB:CF:D2:B8:9C:A5:28:BD:F9:27:1F
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/RJmuS3HjHSSQ68_SuJylKL35Jx8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.12.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:bd:13:e5:e5:92:9a:fe:9f:78:c8:e5:4c:31:44:c2:76:ee:
e4:32:39:a5:04:ca:e1:bf:9e:a5:e4:9d:3f:19:b8:2c:54:34:
22:6b:73:14:74:a8:53:d9:6d:a4:2a:75:a9:5d:5e:0e:96:9d:
b7:35:14:12:a4:f6:ad:c1:2b:1e:db:d4:1b:e2:4b:80:1d:4a:
be:54:ae:a9:3e:e9:cf:1a:6e:79:ca:c0:23:c4:76:ba:b7:1c:
6b:12:52:c2:66:c8:7b:d9:2b:37:a0:6c:af:46:fc:9b:5c:0d:
da:d9:2c:9c:0e:e0:74:29:a6:41:77:6e:39:05:f2:01:50:8c:
1a:c4:90:16:99:21:ba:6a:94:84:b0:1c:98:15:38:81:ac:c4:
d0:11:ce:05:8c:51:50:98:5e:bf:24:a6:d9:88:7a:0a:4f:42:
49:e7:3a:17:d1:15:8b:68:b2:21:0f:2b:0d:5e:06:19:27:be:
f6:fb:49:d7:05:01:3c:32:a9:5c:44:d1:fa:ef:62:e1:85:47:
0e:6f:a4:f2:bd:92:d6:ed:26:49:cc:e8:df:e3:60:cd:52:0d:
18:c6:d9:33:69:58:e9:de:bc:d2:10:9a:ce:c0:90:a9:fb:41:
93:bf:d0:81:26:81:dc:f4:b8:19:c0:38:8d:72:5a:67:bb:af:
c7:61:60:dc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:25:26 2025 by rpki-client