Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/N3aRqhJOaJ0aGi9afRdwQogjK20.roa
File: N3aRqhJOaJ0aGi9afRdwQogjK20.roa (raw, json)
Hash identifier: Ri6EalGxzPB0bEZ37HN0pp3MV5DjNRf2KwMJbGwRRKA=
Subject key identifier: 37:76:91:AA:12:4E:68:9D:1A:1A:2F:5A:7D:17:70:42:88:23:2B:6D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1171
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/N3aRqhJOaJ0aGi9afRdwQogjK20.roa
Signing time: Mon 10 Feb 2025 14:27:21 +0000
ROA not before: Mon 10 Feb 2025 14:27:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 210.63.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4465 (0x1171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=377691AA124E689D1A1A2F5A7D17704288232B6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f3:8f:b6:2e:2d:1e:e4:80:bf:97:7a:fa:cb:
27:7b:cd:dc:2d:4d:2e:b6:24:7a:10:ee:80:0c:df:
77:52:e8:51:8d:5d:50:69:9c:1b:3a:b3:1d:1a:8c:
08:95:90:34:89:15:74:88:0f:fa:42:54:10:2f:89:
40:96:28:25:9c:80:78:bf:61:47:2f:d1:e2:0c:45:
88:13:fa:29:10:f2:0f:f1:44:3c:77:14:f2:64:dc:
bb:51:c7:87:80:7c:bc:cf:e7:46:7e:a5:99:96:a1:
e2:a3:5a:52:ff:bb:56:c0:3b:ce:d1:a3:6d:af:38:
6f:9c:a8:19:6f:11:93:27:aa:f7:e4:f3:38:84:c6:
f1:d8:5a:10:6e:db:17:db:76:54:9d:f2:f6:bd:54:
b9:a3:34:54:dc:f4:cb:9a:65:ba:41:b4:50:d5:08:
f0:6e:9d:f2:14:e4:ad:60:11:cc:10:29:d1:31:c1:
fd:90:3c:06:9f:74:a3:e5:ec:c9:ee:9e:3f:be:30:
3b:11:26:2c:4d:25:83:dc:37:88:11:99:7d:d7:fe:
e3:35:1e:76:5d:1b:65:da:66:7c:27:02:15:46:64:
11:a0:41:f6:54:81:59:59:f1:f0:1d:11:29:a3:1f:
25:1a:b4:41:61:28:03:f8:e9:09:27:95:d7:10:a2:
47:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:76:91:AA:12:4E:68:9D:1A:1A:2F:5A:7D:17:70:42:88:23:2B:6D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/N3aRqhJOaJ0aGi9afRdwQogjK20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.216.0/22
Signature Algorithm: sha256WithRSAEncryption
76:17:7c:b1:01:f4:16:19:5a:c4:f1:6a:a7:b8:03:b6:56:fa:
4e:7b:bf:1a:93:2a:75:07:a5:0b:bd:dd:fa:ae:f1:a6:d2:e4:
7e:1c:63:91:17:33:32:81:7f:f6:0d:de:d8:ad:ff:f8:14:55:
c4:71:73:23:f9:1c:01:a2:6e:b9:9f:8e:12:3d:7f:97:92:1d:
ca:0e:73:ea:9b:93:31:bc:73:ab:80:7f:95:ab:cb:9b:61:8f:
de:8b:74:f9:32:f5:a5:d6:07:f3:b8:a5:f2:a4:59:b9:8b:b5:
42:e1:88:c3:40:fb:33:00:9b:99:07:44:1c:cd:8d:e8:d6:44:
c5:2c:4b:e1:fe:1a:fc:3f:7c:cb:f8:3c:01:f5:ef:9a:a2:41:
0b:9f:d9:4b:cb:c4:64:50:a4:af:8e:79:66:e7:b3:5e:94:ad:
40:39:c2:1b:68:b1:bc:5c:a3:6e:48:26:a2:a3:cb:10:ab:28:
34:8a:af:64:c0:52:a7:e8:93:fd:ca:26:c0:84:de:cb:18:0b:
c9:91:86:83:44:15:fb:f8:db:60:d0:c0:1a:51:02:90:1a:03:
a1:94:cd:3f:63:fd:18:9a:56:ef:df:7f:b8:1f:35:bc:eb:ce:
7d:5a:ae:99:6f:9d:57:65:d5:1f:9f:0d:ee:7e:f4:3b:40:ae:
be:fd:04:29
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI3MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NzY5MUFBMTI0RTY4
OUQxQTFBMkY1QTdEMTc3MDQyODgyMzJCNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCy84+2Li0e5IC/l3r6yyd7zdwtTS62JHoQ7oAM33dS6FGNXVBp
nBs6sx0ajAiVkDSJFXSID/pCVBAviUCWKCWcgHi/YUcv0eIMRYgT+ikQ8g/xRDx3
FPJk3LtRx4eAfLzP50Z+pZmWoeKjWlL/u1bAO87Ro22vOG+cqBlvEZMnqvfk8ziE
xvHYWhBu2xfbdlSd8va9VLmjNFTc9MuaZbpBtFDVCPBunfIU5K1gEcwQKdExwf2Q
PAafdKPl7Mnunj++MDsRJixNJYPcN4gRmX3X/uM1HnZdG2XaZnwnAhVGZBGgQfZU
gVlZ8fAdESmjHyUatEFhKAP46QknldcQokdxAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUN3aRqhJOaJ0aGi9afRdwQogjK20wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL04zYVJxaEpPYUowYUdpOWFmUmR3UW9n
aksyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALSP9gwDQYJ
KoZIhvcNAQELBQADggEBAHYXfLEB9BYZWsTxaqe4A7ZW+k57vxqTKnUHpQu93fqu
8abS5H4cY5EXMzKBf/YN3tit//gUVcRxcyP5HAGibrmfjhI9f5eSHcoOc+qbkzG8
c6uAf5Wry5thj96LdPky9aXWB/O4pfKkWbmLtULhiMNA+zMAm5kHRBzNjejWRMUs
S+H+Gvw/fMv4PAH175qiQQuf2UvLxGRQpK+OeWbns16UrUA5whtosbxco25IJqKj
yxCrKDSKr2TAUqfok/3KJsCE3ssYC8mRhoNEFfv422DQwBpRApAaA6GUzT9j/Ria
Vu/ff7gfNbzrzn1arplvnVdl1R+fDe5+9DtArr79BCk=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:26 2025 by rpki-client