Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/E5roc_zBMVRne-RzjSKJZ_01gTc.roa
File: E5roc_zBMVRne-RzjSKJZ_01gTc.roa (raw, json)
Hash identifier: z22rrDNjxeZYd1rA1NWheZ23TaHyCvt8o4e/iK5Rj3Y=
Subject key identifier: 13:9A:E8:73:FC:C1:31:54:67:7B:E4:73:8D:22:89:67:FD:35:81:37
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11A6
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/E5roc_zBMVRne-RzjSKJZ_01gTc.roa
Signing time: Mon 10 Feb 2025 14:27:35 +0000
ROA not before: Mon 10 Feb 2025 14:27:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 219.91.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4518 (0x11a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=139AE873FCC13154677BE4738D228967FD358137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d1:da:3c:87:a7:dc:e3:4e:33:10:f2:98:4d:
0a:02:1d:7c:a3:b3:fb:0e:af:8e:43:b9:17:2b:c3:
2b:b6:87:fc:59:26:7a:07:ed:11:4b:b2:4d:f4:ab:
7f:f4:20:80:10:c2:4c:4e:c9:07:1c:08:9e:cf:e9:
ef:03:64:0d:7f:d8:80:6b:bf:89:5e:51:67:99:ba:
66:ce:fc:13:07:01:02:ca:2f:9b:88:b7:9a:82:12:
27:0d:59:1c:e2:17:76:98:0e:18:65:e3:ba:5c:8b:
e6:6b:1c:65:64:66:2d:e0:aa:38:a3:2c:2f:75:bf:
a0:6a:41:e2:1b:f8:68:cf:d3:69:df:df:7a:dc:86:
0e:4a:54:94:b1:c1:a0:e7:83:bb:2e:10:68:8c:ba:
6b:0a:68:82:74:9a:28:a6:36:d9:b7:4b:a7:1e:47:
3a:00:44:02:9f:cb:08:7c:10:b2:46:07:6f:a1:d2:
b4:d4:e7:5e:71:3f:7f:53:ab:d9:72:50:bc:f1:37:
b7:53:d4:0f:38:25:fd:74:68:06:61:d9:83:a7:9c:
e4:f4:cb:0f:42:90:de:8a:a6:2c:75:36:60:6e:b7:
db:99:7a:5a:b4:cc:19:d6:9f:81:32:4a:93:a3:c0:
e6:28:aa:f5:20:0a:fb:5e:de:9f:e8:34:51:34:45:
fc:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9A:E8:73:FC:C1:31:54:67:7B:E4:73:8D:22:89:67:FD:35:81:37
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/E5roc_zBMVRne-RzjSKJZ_01gTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9b:45:c9:87:78:30:39:45:16:83:6f:b4:ec:05:3e:e2:d7:06:
47:89:48:04:8e:be:94:fa:ee:6d:9c:59:9a:56:ad:aa:9a:1d:
0c:e3:62:de:0c:86:cc:e5:9b:aa:3d:7a:e6:83:fe:f3:ab:4b:
a3:f8:0b:78:2a:a4:b4:40:6a:9c:00:2c:2f:87:8c:f9:ed:9e:
f8:14:d3:b7:6e:80:f1:90:8b:0a:23:34:af:f1:d8:c7:29:9e:
09:ce:b4:41:53:db:a2:5f:37:2e:a3:f6:18:e3:4c:93:e5:21:
4b:63:24:82:d5:02:e0:f0:61:53:00:9f:15:45:10:fc:4d:10:
db:38:f2:e5:d3:64:14:e5:94:7c:f9:bc:6b:3e:1c:55:0e:bf:
c7:64:a6:d1:27:36:91:0c:55:dd:64:ea:27:82:65:45:05:e5:
6f:a9:b1:b2:06:3f:17:ba:f8:24:67:f6:f1:dd:fb:d5:dd:50:
6b:e3:e7:cb:98:6e:f2:22:e2:d8:f9:58:56:9f:46:be:e2:15:
81:5b:62:6b:c9:1e:f4:88:da:70:e9:6c:ac:81:4e:a5:a6:40:
c4:54:7d:5f:ff:ae:21:48:7c:fb:7b:a9:8f:13:dc:d9:79:75:
c4:b2:ea:be:74:54:d1:d1:64:8a:2a:3b:43:bb:df:33:50:e6:
88:b1:fd:a8
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI3MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEzOUFFODczRkNDMTMx
NTQ2NzdCRTQ3MzhEMjI4OTY3RkQzNTgxMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCh0do8h6fc404zEPKYTQoCHXyjs/sOr45DuRcrwyu2h/xZJnoH
7RFLsk30q3/0IIAQwkxOyQccCJ7P6e8DZA1/2IBrv4leUWeZumbO/BMHAQLKL5uI
t5qCEicNWRziF3aYDhhl47pci+ZrHGVkZi3gqjijLC91v6BqQeIb+GjP02nf33rc
hg5KVJSxwaDng7suEGiMumsKaIJ0miimNtm3S6ceRzoARAKfywh8ELJGB2+h0rTU
515xP39Tq9lyULzxN7dT1A84Jf10aAZh2YOnnOT0yw9CkN6Kpix1NmBut9uZelq0
zBnWn4EySpOjwOYoqvUgCvte3p/oNFE0RfyHAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUE5roc/zBMVRne+RzjSKJZ/01gTcwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0U1cm9jX3pCTVZSbmUtUnpqU0tKWl8w
MWdUYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfbWwAwDQYJ
KoZIhvcNAQELBQADggEBAJtFyYd4MDlFFoNvtOwFPuLXBkeJSASOvpT67m2cWZpW
raqaHQzjYt4Mhszlm6o9euaD/vOrS6P4C3gqpLRAapwALC+HjPntnvgU07dugPGQ
iwojNK/x2McpngnOtEFT26JfNy6j9hjjTJPlIUtjJILVAuDwYVMAnxVFEPxNENs4
8uXTZBTllHz5vGs+HFUOv8dkptEnNpEMVd1k6ieCZUUF5W+psbIGPxe6+CRn9vHd
+9XdUGvj58uYbvIi4tj5WFafRr7iFYFbYmvJHvSI2nDpbKyBTqWmQMRUfV//riFI
fPt7qY8T3Nl5dcSy6r50VNHRZIoqO0O73zNQ5oix/ag=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:17 2025 by rpki-client