Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/XSCVpygEH6Q8g_D8kHpYsrsdgSU.roa
File: XSCVpygEH6Q8g_D8kHpYsrsdgSU.roa (raw, json)
Hash identifier: iYbWlX4s0+qseqwSMpCNkDTnwan6OIQw2dLbxTDdHR8=
Subject key identifier: 5D:20:95:A7:28:04:1F:A4:3C:83:F0:FC:90:7A:58:B2:BB:1D:81:25
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1204
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XSCVpygEH6Q8g_D8kHpYsrsdgSU.roa
Signing time: Mon 10 Feb 2025 14:27:57 +0000
ROA not before: Mon 10 Feb 2025 14:27:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4612 (0x1204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5D2095A728041FA43C83F0FC907A58B2BB1D8125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b0:39:86:f5:28:be:ce:a5:e2:7e:21:48:42:
f6:bc:79:41:48:97:43:a0:5e:d5:7f:35:95:bf:29:
e5:9d:d5:83:3b:46:f9:10:b7:b1:65:ec:ab:dd:41:
4b:c5:4f:94:5d:42:48:c8:1e:1d:72:d5:d9:00:1b:
d2:a4:39:61:aa:58:fb:eb:2f:39:45:87:84:db:9c:
38:fa:a9:43:1f:43:22:97:c1:98:a2:eb:2b:c5:48:
c0:cd:26:09:7c:31:36:ce:ae:4d:83:7e:89:b5:53:
37:77:8f:67:05:98:f7:68:a8:52:4f:17:87:3a:d4:
5a:85:26:e2:f6:c4:a6:07:30:3d:47:54:0d:5d:fc:
21:a3:06:0c:e5:72:e3:e2:75:af:a3:74:5b:08:1d:
3f:70:63:ff:22:0b:77:62:bf:4e:fb:be:ec:8d:ad:
6f:b7:fa:9f:78:be:02:14:94:45:63:71:8a:8d:16:
cc:c3:f5:89:5b:9f:ff:98:9b:c8:50:f4:15:fc:93:
6c:55:d2:7b:2d:05:6e:b3:d5:cb:2a:d4:08:f7:bb:
b0:92:e2:93:8c:7b:9e:7d:49:b0:10:ac:38:22:22:
44:c8:1a:0e:34:79:97:1e:06:c4:9e:ba:b8:61:99:
f5:87:ee:aa:d2:c3:75:54:a9:16:42:60:4a:b7:8c:
c6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:20:95:A7:28:04:1F:A4:3C:83:F0:FC:90:7A:58:B2:BB:1D:81:25
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XSCVpygEH6Q8g_D8kHpYsrsdgSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:b2:ee:da:bf:ea:34:04:2a:c7:15:e2:af:0e:f7:5d:3b:ce:
58:28:31:ae:c9:4e:6e:ad:c4:7e:96:c5:cc:79:4f:8d:b7:d8:
59:4f:64:8f:0c:82:34:e2:f9:c0:33:2d:cc:20:5e:4b:4a:03:
66:0e:77:a2:cd:1a:a2:e1:bc:e6:ed:b5:88:52:f3:57:e4:54:
b0:c4:e1:8f:98:34:d4:9e:e3:e7:7b:cf:59:62:b9:0f:6b:71:
bb:25:49:7c:e9:b8:12:ba:72:c3:c0:29:c6:b6:e3:53:21:46:
c0:f6:9b:3d:cf:26:d5:d5:d8:f7:96:5a:0e:dd:f5:73:8e:43:
f9:92:d1:b7:f3:96:d2:9a:2b:68:5d:9e:04:4a:b8:b3:94:63:
d8:61:5d:d8:f9:94:0a:c8:8b:f3:7e:cf:11:14:d1:03:4e:24:
b6:67:5c:58:76:d5:b7:cb:fc:74:af:08:8e:da:8b:cd:97:9b:
26:cc:77:73:c8:e6:89:60:05:c7:06:b1:dc:a7:eb:f2:f4:f6:
04:5c:b1:40:14:08:1e:e3:25:70:c4:23:31:50:fc:c2:de:f4:
55:05:c1:ba:0a:64:6a:53:c3:92:69:b9:7c:08:50:0c:f9:c6:
3d:87:5c:73:d5:ec:67:19:88:05:23:a1:d1:18:0d:ef:4b:2e:
e2:5a:a1:af
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgICEgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVEMjA5NUE3MjgwNDFG
QTQzQzgzRjBGQzkwN0E1OEIyQkIxRDgxMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAsDmG9Si+zqXifiFIQva8eUFIl0OgXtV/NZW/KeWd1YM7RvkQ
t7Fl7KvdQUvFT5RdQkjIHh1y1dkAG9KkOWGqWPvrLzlFh4TbnDj6qUMfQyKXwZii
6yvFSMDNJgl8MTbOrk2Dfom1Uzd3j2cFmPdoqFJPF4c61FqFJuL2xKYHMD1HVA1d
/CGjBgzlcuPida+jdFsIHT9wY/8iC3div077vuyNrW+3+p94vgIUlEVjcYqNFszD
9Ylbn/+Ym8hQ9BX8k2xV0nstBW6z1csq1Aj3u7CS4pOMe559SbAQrDgiIkTIGg40
eZceBsSeurhhmfWH7qrSw3VUqRZCYEq3jMY1AgMBAAGjggHnMIIB4zAdBgNVHQ4E
FgQUXSCVpygEH6Q8g/D8kHpYsrsdgSUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1hTQ1ZweWdFSDZROGdfRDhrSHBZc3Jz
ZGdTVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDauDANBgkq
hkiG9w0BAQsFAAOCAQEApbLu2r/qNAQqxxXirw73XTvOWCgxrslObq3EfpbFzHlP
jbfYWU9kjwyCNOL5wDMtzCBeS0oDZg53os0aouG85u21iFLzV+RUsMThj5g01J7j
53vPWWK5D2txuyVJfOm4Erpyw8ApxrbjUyFGwPabPc8m1dXY95ZaDt31c45D+ZLR
t/OW0poraF2eBEq4s5Rj2GFd2PmUCsiL837PERTRA04ktmdcWHbVt8v8dK8IjtqL
zZebJsx3c8jmiWAFxwax3Kfr8vT2BFyxQBQIHuMlcMQjMVD8wt70VQXBugpkalPD
kmm5fAhQDPnGPYdcc9XsZxmIBSOh0RgN70su4lqhrw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:54:14 2025 by rpki-client