Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/SeAPZECpipcnzL0jUMFWl0rWz7o.roa
File: SeAPZECpipcnzL0jUMFWl0rWz7o.roa (raw, json)
Hash identifier: +iYRWAfQjlcA13apSB9BcpYB8YO9k4tcei0k6B08M2o=
Subject key identifier: 49:E0:0F:64:40:A9:8A:97:27:CC:BD:23:50:C1:56:97:4A:D6:CF:BA
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 122D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SeAPZECpipcnzL0jUMFWl0rWz7o.roa
Signing time: Mon 10 Feb 2025 14:28:08 +0000
ROA not before: Mon 10 Feb 2025 14:28:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24155
IP address blocks: 210.63.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4653 (0x122d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=49E00F6440A98A9727CCBD2350C156974AD6CFBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:8a:49:92:7e:c0:c9:06:70:05:b7:ea:6b:f5:
89:fd:d8:f4:ac:e4:87:38:ba:40:31:b5:ef:d2:b9:
3d:a6:e2:b2:7d:45:32:f4:6a:84:1b:7b:a1:aa:67:
d2:d9:6f:45:7c:f6:16:56:0c:69:42:41:9e:23:15:
cf:af:49:da:cd:c2:08:20:76:76:46:62:b3:79:f9:
8d:1f:55:69:17:48:f1:91:9b:9e:3e:1f:b4:65:89:
9f:93:c4:c0:df:be:df:eb:94:0d:77:70:ea:d2:a0:
7a:6d:2d:4d:d1:72:ee:bf:c3:05:5b:88:34:9f:a5:
25:d3:84:72:9a:32:84:ad:72:58:8c:20:9c:33:27:
e5:3b:b2:54:0b:a7:65:a9:ed:8c:b8:83:e2:d8:09:
79:de:ab:2f:01:c2:a8:8b:b9:49:7b:48:0c:51:a5:
ec:55:3d:04:d6:68:a4:8a:16:34:4c:9a:eb:f7:17:
fa:d8:f5:0d:5a:74:10:4d:63:d7:04:c7:a2:84:8f:
63:3e:4e:30:e0:9a:65:d5:8c:08:cb:20:8f:bd:b3:
91:80:c1:5c:4c:e0:fa:32:67:41:05:7c:0a:d0:d8:
07:a3:3d:65:d2:7a:61:89:4e:f4:86:e5:0d:d5:75:
c2:5e:a5:55:52:e5:88:20:14:c9:07:34:48:19:35:
d0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:E0:0F:64:40:A9:8A:97:27:CC:BD:23:50:C1:56:97:4A:D6:CF:BA
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SeAPZECpipcnzL0jUMFWl0rWz7o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/21
Signature Algorithm: sha256WithRSAEncryption
ca:67:a5:c3:af:07:c2:ae:9e:ca:2f:cf:1b:a8:9a:96:d5:01:
ef:97:2e:1e:51:7a:a0:9b:f2:56:03:f2:98:f0:e8:a9:a7:e5:
62:bf:dd:3f:74:0c:6f:48:50:7a:58:cc:79:6d:7e:d7:99:a1:
b0:22:25:5c:d3:37:92:c1:88:d2:11:b5:7f:6d:68:bd:b3:bf:
d0:9d:89:28:41:43:59:fa:19:16:60:1d:7a:6d:89:79:7e:d8:
5b:89:0e:ae:57:ef:e6:27:a4:eb:f4:09:96:97:8f:e4:31:37:
84:96:4d:a6:85:ad:c3:d6:e3:5d:bb:77:fe:85:ed:60:14:5b:
cd:0f:14:eb:7b:1c:8d:d8:8a:8e:5a:3c:dc:f2:c8:27:84:f6:
f3:ef:e6:4e:08:e1:d3:6e:c7:c9:13:e5:0c:df:66:9f:cb:8a:
7d:79:ec:0a:fa:58:1e:31:75:4c:2b:e0:2e:d3:2b:08:44:56:
fa:06:80:e8:08:63:81:a0:fa:5e:53:58:63:77:58:65:a9:ec:
37:5f:31:ba:7d:ed:b2:c5:d2:c0:2a:3e:5d:76:31:0d:de:35:
fb:5d:18:b9:0e:d7:4c:36:5a:c5:cd:1c:76:0e:4d:3a:e3:3c:
8c:ca:45:cc:aa:48:b2:4b:19:82:46:8b:5a:0e:60:56:48:3d:
6d:bc:6b:3b
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI4MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5RTAwRjY0NDBBOThB
OTcyN0NDQkQyMzUwQzE1Njk3NEFENkNGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDxikmSfsDJBnAFt+pr9Yn92PSs5Ic4ukAxte/SuT2m4rJ9RTL0
aoQbe6GqZ9LZb0V89hZWDGlCQZ4jFc+vSdrNwgggdnZGYrN5+Y0fVWkXSPGRm54+
H7RliZ+TxMDfvt/rlA13cOrSoHptLU3Rcu6/wwVbiDSfpSXThHKaMoStcliMIJwz
J+U7slQLp2Wp7Yy4g+LYCXneqy8BwqiLuUl7SAxRpexVPQTWaKSKFjRMmuv3F/rY
9Q1adBBNY9cEx6KEj2M+TjDgmmXVjAjLII+9s5GAwVxM4PoyZ0EFfArQ2AejPWXS
emGJTvSG5Q3VdcJepVVS5YggFMkHNEgZNdDhAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUSeAPZECpipcnzL0jUMFWl0rWz7owHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1NlQVBaRUNwaXBjbnpMMGpVTUZXbDBy
V3o3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSP+AwDQYJ
KoZIhvcNAQELBQADggEBAMpnpcOvB8KunsovzxuompbVAe+XLh5ReqCb8lYD8pjw
6Kmn5WK/3T90DG9IUHpYzHltfteZobAiJVzTN5LBiNIRtX9taL2zv9CdiShBQ1n6
GRZgHXptiXl+2FuJDq5X7+YnpOv0CZaXj+QxN4SWTaaFrcPW4127d/6F7WAUW80P
FOt7HI3Yio5aPNzyyCeE9vPv5k4I4dNux8kT5QzfZp/Lin157Ar6WB4xdUwr4C7T
KwhEVvoGgOgIY4Gg+l5TWGN3WGWp7DdfMbp97bLF0sAqPl12MQ3eNftdGLkO10w2
WsXNHHYOTTrjPIzKRcyqSLJLGYJGi1oOYFZIPW28azs=
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:35:12 2025 by rpki-client