Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/XWAfqo4UZkH74Rrchdcn3epYi5Q.roa
File: XWAfqo4UZkH74Rrchdcn3epYi5Q.roa (raw, json)
Hash identifier: TtxIExa5ijLUPuvNTg9qx+tFcpVGM4ofyVdvEBKm9b4=
Subject key identifier: 5D:60:1F:AA:8E:14:66:41:FB:E1:1A:DC:85:D7:27:DD:EA:58:8B:94
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1251
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XWAfqo4UZkH74Rrchdcn3epYi5Q.roa
Signing time: Mon 10 Feb 2025 14:28:17 +0000
ROA not before: Mon 10 Feb 2025 14:28:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131591
IP address blocks: 103.231.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4689 (0x1251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5D601FAA8E146641FBE11ADC85D727DDEA588B94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:84:b0:aa:68:86:87:bf:a7:59:b1:57:98:5d:
09:5c:d8:5f:2b:fe:19:1b:6d:bb:64:f0:e2:13:f6:
ee:d6:d3:4a:84:3e:6c:cb:85:a3:39:7e:f1:30:b6:
01:d6:e0:5c:a3:78:44:93:b6:23:e2:ca:18:ae:7e:
f8:25:92:1c:42:9d:4d:5b:1e:50:72:ad:2e:3f:a1:
ae:d0:b7:2d:3c:0b:72:c3:b2:90:71:5b:ea:a5:b9:
39:f9:66:5d:da:e6:36:1f:06:84:81:1c:ca:be:51:
ae:c2:fd:e1:7c:f4:53:25:78:8c:ee:af:50:06:a8:
05:39:45:87:56:87:bd:9b:30:6e:56:8f:ed:16:80:
8c:4a:88:0b:24:ef:9e:a9:df:37:fc:ca:dc:09:4a:
26:3d:39:1e:74:54:62:dd:e0:fb:df:9c:4e:59:70:
ce:eb:9e:6b:b2:30:15:fa:36:c2:42:c5:d0:b4:62:
01:de:44:a9:70:83:b3:69:66:b5:4b:e5:86:d6:45:
17:23:6e:b1:24:4d:4a:18:0c:0c:d2:db:18:7f:35:
34:37:ca:75:c4:e4:3c:2f:db:49:ce:51:34:ec:b9:
a1:aa:e3:d6:c1:e4:8c:a6:bc:f8:11:e9:7f:f0:df:
f6:52:6c:ea:3b:b5:10:59:75:61:8d:e0:4c:fa:c1:
8e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:60:1F:AA:8E:14:66:41:FB:E1:1A:DC:85:D7:27:DD:EA:58:8B:94
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XWAfqo4UZkH74Rrchdcn3epYi5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.231.49.0/24
Signature Algorithm: sha256WithRSAEncryption
57:fa:a4:5f:3c:66:e4:db:eb:fd:5d:cc:77:2a:ce:cc:84:2a:
6a:58:dc:65:c0:85:3f:c4:47:2c:89:72:a0:f5:43:e1:03:c8:
04:61:4d:79:d6:60:82:bb:5f:4d:11:7a:67:0f:40:05:48:8f:
e7:63:e2:cd:30:63:aa:cb:ea:5f:2c:c7:70:87:75:39:d4:0d:
49:b7:21:b2:5c:2b:68:c7:d4:87:4a:c4:2c:f1:a7:4a:c9:1d:
6a:73:ea:6d:3d:ee:9f:7e:b1:11:d4:b5:8b:0c:21:38:04:1f:
16:c1:80:c9:13:d7:8a:e5:38:18:b7:6b:0d:24:01:a3:cf:48:
73:63:12:e5:64:e4:67:e1:ba:ae:9c:d6:57:ee:0b:cc:c7:27:
20:ff:58:b3:81:14:f8:3d:0b:c8:b3:59:3b:54:da:99:9e:37:
7e:bc:24:65:83:f6:46:c4:61:46:87:6a:8e:86:95:09:cd:e3:
26:37:1a:ef:e5:72:12:38:2e:59:3a:26:cd:bd:0a:49:58:3e:
94:f2:98:27:5f:38:d1:e3:44:bf:f7:6e:01:a5:d1:cb:17:92:
e7:88:68:d4:15:5f:a0:44:3f:30:8f:e7:c8:31:60:07:b2:0d:
0c:a2:cf:1f:cd:b7:5b:3f:c4:0f:e7:75:9a:65:03:b9:fb:e8:
2f:7a:db:df
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICElEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI4MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVENjAxRkFBOEUxNDY2
NDFGQkUxMUFEQzg1RDcyN0RERUE1ODhCOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLhLCqaIaHv6dZsVeYXQlc2F8r/hkbbbtk8OIT9u7W00qEPmzL
haM5fvEwtgHW4FyjeESTtiPiyhiufvglkhxCnU1bHlByrS4/oa7Qty08C3LDspBx
W+qluTn5Zl3a5jYfBoSBHMq+Ua7C/eF89FMleIzur1AGqAU5RYdWh72bMG5Wj+0W
gIxKiAsk756p3zf8ytwJSiY9OR50VGLd4PvfnE5ZcM7rnmuyMBX6NsJCxdC0YgHe
RKlwg7NpZrVL5YbWRRcjbrEkTUoYDAzS2xh/NTQ3ynXE5Dwv20nOUTTsuaGq49bB
5IymvPgR6X/w3/ZSbOo7tRBZdWGN4Ez6wY6fAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUXWAfqo4UZkH74Rrchdcn3epYi5QwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1hXQWZxbzRVWmtINzRScmNoZGNuM2Vw
WWk1US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn5zEwDQYJ
KoZIhvcNAQELBQADggEBAFf6pF88ZuTb6/1dzHcqzsyEKmpY3GXAhT/ERyyJcqD1
Q+EDyARhTXnWYIK7X00RemcPQAVIj+dj4s0wY6rL6l8sx3CHdTnUDUm3IbJcK2jH
1IdKxCzxp0rJHWpz6m097p9+sRHUtYsMITgEHxbBgMkT14rlOBi3aw0kAaPPSHNj
EuVk5Gfhuq6c1lfuC8zHJyD/WLOBFPg9C8izWTtU2pmeN368JGWD9kbEYUaHao6G
lQnN4yY3Gu/lchI4Llk6Js29CklYPpTymCdfONHjRL/3bgGl0csXkueIaNQVX6BE
PzCP58gxYAeyDQyizx/Nt1s/xA/ndZplA7n76C96298=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:56:34 2025 by rpki-client