Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/coDMDfK2wkSBx9Lz_-bJBUatIW8.roa
File: coDMDfK2wkSBx9Lz_-bJBUatIW8.roa (raw, json)
Hash identifier: rpwp0w+PbFlC+mJq0ssK1nYey5/hWxQhqpbT5ajO+vw=
Subject key identifier: 72:80:CC:0D:F2:B6:C2:44:81:C7:D2:F3:FF:E6:C9:05:46:AD:21:6F
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D19
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/coDMDfK2wkSBx9Lz_-bJBUatIW8.roa
Signing time: Mon 10 Feb 2025 14:04:34 +0000
ROA not before: Mon 10 Feb 2025 14:04:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 61.65.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3353 (0xd19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7280CC0DF2B6C24481C7D2F3FFE6C90546AD216F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:69:e4:b1:7a:3a:2d:8e:c1:0e:e2:d4:48:f5:
c0:aa:0b:9b:49:a5:26:83:18:98:c2:56:a1:21:72:
17:66:eb:73:ca:43:a6:fd:ff:5a:03:64:68:c2:49:
30:56:2b:6e:1a:f2:6d:f5:77:d2:6e:7e:16:c7:b7:
fe:59:15:67:62:64:2b:e5:8e:9a:e5:fd:58:64:d3:
58:01:fc:2b:58:c2:32:2e:00:40:27:d8:a6:5a:84:
fc:1d:75:c1:3e:0b:22:12:c9:69:d8:31:29:67:08:
b2:d6:12:a4:5e:68:a8:57:5d:c4:6e:3c:6b:e0:cb:
3c:a3:65:4a:e6:7b:b6:60:b0:ab:00:5a:58:ab:09:
f3:e0:14:46:8a:fc:55:cc:86:89:95:d7:8b:9b:fa:
8b:b8:4c:0b:a3:d6:51:f4:86:11:2c:02:58:b9:78:
4a:d0:3a:38:2c:68:42:6a:76:7a:7e:64:95:43:28:
4a:41:f6:23:bb:cb:f6:41:2c:06:e7:c7:67:a2:e2:
6d:22:05:91:09:7a:16:32:87:f4:94:55:c9:86:f7:
0d:c4:70:d0:de:e3:cb:9f:4e:bc:60:f9:15:33:64:
72:a9:c1:8f:35:8d:15:f6:10:09:29:bd:90:70:ca:
8d:45:74:30:1b:2f:43:6d:3d:11:81:bc:c1:5a:e0:
83:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:80:CC:0D:F2:B6:C2:44:81:C7:D2:F3:FF:E6:C9:05:46:AD:21:6F
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/coDMDfK2wkSBx9Lz_-bJBUatIW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.240.0/20
Signature Algorithm: sha256WithRSAEncryption
54:79:09:77:18:12:3f:eb:c0:e5:f7:64:32:d0:80:1f:e9:a4:
cf:90:c4:ee:c3:37:b1:67:1d:9c:54:86:f6:35:a7:8d:aa:9c:
cc:90:9e:73:7e:42:3a:f2:31:2e:92:6e:83:b2:ce:ab:e5:1e:
cc:b6:3f:8c:18:bf:65:a5:a6:3b:82:d1:35:ba:56:2b:92:67:
c4:61:23:4f:4f:f6:de:c5:ea:87:f3:c1:a0:ac:fc:e5:f6:c0:
a7:45:bd:f8:39:82:14:05:24:e9:9e:a0:92:c5:62:92:4f:ec:
d0:0a:de:ea:56:f6:6e:95:89:77:55:43:bf:9d:28:c7:aa:9d:
d0:b3:ea:f8:37:40:08:23:73:9d:ea:06:36:77:14:09:78:50:
94:a5:eb:75:5a:65:90:34:51:0a:c4:32:7e:d9:c8:b8:9b:ea:
56:af:6e:ee:52:5d:ce:b4:b6:a4:26:f3:1e:be:48:b6:8c:8b:
92:70:c9:2a:96:ee:1d:fe:04:f2:2d:24:0b:bc:a4:03:65:86:
77:be:b4:35:8b:ec:81:5f:e8:6b:d5:ca:ea:8f:6b:19:59:b9:
08:4b:22:cb:b7:24:a3:48:75:1e:c0:4d:1d:de:08:4c:56:ef:
1b:84:7a:df:27:ea:4d:0a:e2:3c:74:10:ac:82:cc:11:c9:7b:
5f:c4:76:a2
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yNTAyMTAx
NDA0MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyODBDQzBERjJCNkMy
NDQ4MUM3RDJGM0ZGRTZDOTA1NDZBRDIxNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDgaeSxejotjsEO4tRI9cCqC5tJpSaDGJjCVqEhchdm63PKQ6b9
/1oDZGjCSTBWK24a8m31d9JufhbHt/5ZFWdiZCvljprl/Vhk01gB/CtYwjIuAEAn
2KZahPwddcE+CyISyWnYMSlnCLLWEqReaKhXXcRuPGvgyzyjZUrme7ZgsKsAWlir
CfPgFEaK/FXMhomV14ub+ou4TAuj1lH0hhEsAli5eErQOjgsaEJqdnp+ZJVDKEpB
9iO7y/ZBLAbnx2ei4m0iBZEJehYyh/SUVcmG9w3EcNDe48ufTrxg+RUzZHKpwY81
jRX2EAkpvZBwyo1FdDAbL0NtPRGBvMFa4IOvAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUcoDMDfK2wkSBx9Lz/+bJBUatIW8wHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9jb0RNRGZLMndrU0J4
OUx6Xy1iSkJVYXRJVzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQEPUHwMA0GCSqGSIb3DQEBCwUAA4IBAQBUeQl3GBI/68Dl92Qy0IAf6aTPkMTu
wzexZx2cVIb2NaeNqpzMkJ5zfkI68jEukm6Dss6r5R7Mtj+MGL9lpaY7gtE1ulYr
kmfEYSNPT/bexeqH88GgrPzl9sCnRb34OYIUBSTpnqCSxWKST+zQCt7qVvZulYl3
VUO/nSjHqp3Qs+r4N0AII3Od6gY2dxQJeFCUpet1WmWQNFEKxDJ+2ci4m+pWr27u
Ul3OtLakJvMevki2jIuScMkqlu4d/gTyLSQLvKQDZYZ3vrQ1i+yBX+hr1crqj2sZ
WbkISyLLtySjSHUewE0d3ghMVu8bhHrfJ+pNCuI8dBCsgswRyXtfxHai
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:35 2025 by rpki-client