Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aj4XghIhVoXopfPsPhZdr3HiIY8.roa
File: aj4XghIhVoXopfPsPhZdr3HiIY8.roa (raw, json)
Hash identifier: ozI0nY5XaZzjPtnmrjNPiTQCzRWKobg2ZR5Z36JxYcQ=
Subject key identifier: 6A:3E:17:82:12:21:56:85:E8:A5:F3:EC:3E:16:5D:AF:71:E2:21:8F
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 11F3
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aj4XghIhVoXopfPsPhZdr3HiIY8.roa
Signing time: Mon 10 Feb 2025 14:27:54 +0000
ROA not before: Mon 10 Feb 2025 14:27:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1131591
IP address blocks: 103.231.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4595 (0x11f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6A3E178212215685E8A5F3EC3E165DAF71E2218F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:f8:a7:77:e9:64:df:fb:bf:d2:e2:e8:28:2e:
12:d2:c4:0a:7d:53:fd:d4:de:57:79:84:01:c9:c1:
13:cb:a7:e6:76:b8:06:37:39:5f:81:b1:49:46:47:
f8:b9:23:73:ef:2c:9a:6f:f3:ec:4b:d2:29:a7:c1:
0f:44:47:3a:3f:2a:db:10:e4:80:bb:c6:23:8d:2f:
6a:ac:62:8f:20:77:f6:6d:3b:4e:38:7e:39:28:24:
09:7f:8b:11:6c:c1:15:56:54:73:8e:fc:ca:68:2d:
4e:cf:00:19:91:32:b4:b8:ac:f4:c8:23:2f:fc:5d:
1c:6f:3c:33:06:b0:63:fd:e7:29:24:5f:97:d5:4c:
d9:7e:7f:d9:15:77:0e:18:e0:36:0f:91:fe:d0:06:
1d:a6:93:9a:91:40:e2:fc:64:89:8d:25:a9:48:02:
25:78:2e:98:c8:1b:50:6e:5c:60:37:0a:51:75:f7:
f0:10:d7:9a:94:bc:61:96:11:ea:3c:cb:af:95:2f:
86:cf:51:55:46:3d:0c:ea:98:2a:25:f6:92:aa:70:
01:8e:20:95:77:93:44:9f:ae:21:75:57:df:1a:bb:
11:5e:ed:29:ce:8a:69:f1:13:22:50:98:c3:09:15:
9e:70:e3:26:3b:70:c0:54:51:dd:da:5d:23:24:e3:
36:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:3E:17:82:12:21:56:85:E8:A5:F3:EC:3E:16:5D:AF:71:E2:21:8F
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aj4XghIhVoXopfPsPhZdr3HiIY8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.231.51.0/24
Signature Algorithm: sha256WithRSAEncryption
38:29:6f:dc:03:0c:77:85:0a:e7:84:3e:49:9d:5a:17:e5:29:
ac:a3:28:ef:82:81:8d:ce:e3:f3:34:98:b0:83:6b:27:1a:65:
14:e9:fa:ac:e2:1a:f5:87:ca:2f:4d:ee:b8:66:7e:23:8f:09:
81:8a:2f:13:06:29:ff:39:4c:2e:3e:28:34:a8:93:0c:8a:0f:
f8:10:18:99:da:fc:14:d9:0b:70:8c:ed:34:11:c6:c2:89:63:
2c:80:d2:e3:2e:8e:76:3e:16:22:30:f6:7f:2a:e2:a3:07:50:
5b:38:b4:30:e4:8e:f8:2d:6d:9b:0b:c2:8d:49:69:e1:74:ca:
03:76:d1:e4:a5:94:73:99:a4:35:0b:bd:e0:8a:83:87:91:43:
ec:19:8c:7d:29:03:e0:1a:e8:45:0a:1e:03:35:4f:26:b6:7b:
7a:11:13:33:c6:93:f4:1e:19:4b:ab:52:0d:fa:6c:3f:81:cc:
ac:77:ad:e5:13:37:ba:7a:49:3e:0c:00:4f:c2:0b:eb:26:5a:
58:d2:a2:25:20:0c:b1:ee:b2:d8:51:86:ff:67:44:a2:5e:5d:
09:88:13:43:5e:4e:e7:e5:41:2d:b7:c4:39:b1:4c:d5:cc:bf:
df:77:12:30:d2:3b:1a:ee:a4:1a:96:1a:2d:fa:05:c7:ce:23:
ba:a9:39:09
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI3NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBM0UxNzgyMTIyMTU2
ODVFOEE1RjNFQzNFMTY1REFGNzFFMjIxOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDp+Kd36WTf+7/S4ugoLhLSxAp9U/3U3ld5hAHJwRPLp+Z2uAY3
OV+BsUlGR/i5I3PvLJpv8+xL0imnwQ9ERzo/KtsQ5IC7xiONL2qsYo8gd/ZtO044
fjkoJAl/ixFswRVWVHOO/MpoLU7PABmRMrS4rPTIIy/8XRxvPDMGsGP95ykkX5fV
TNl+f9kVdw4Y4DYPkf7QBh2mk5qRQOL8ZImNJalIAiV4LpjIG1BuXGA3ClF19/AQ
15qUvGGWEeo8y6+VL4bPUVVGPQzqmCol9pKqcAGOIJV3k0SfriF1V98auxFe7SnO
imnxEyJQmMMJFZ5w4yY7cMBUUd3aXSMk4zbxAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUaj4XghIhVoXopfPsPhZdr3HiIY8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FqNFhnaEloVm9Yb3BmUHNQaFpkcjNI
aUlZOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn5zMwDQYJ
KoZIhvcNAQELBQADggEBADgpb9wDDHeFCueEPkmdWhflKayjKO+CgY3O4/M0mLCD
aycaZRTp+qziGvWHyi9N7rhmfiOPCYGKLxMGKf85TC4+KDSokwyKD/gQGJna/BTZ
C3CM7TQRxsKJYyyA0uMujnY+FiIw9n8q4qMHUFs4tDDkjvgtbZsLwo1JaeF0ygN2
0eSllHOZpDULveCKg4eRQ+wZjH0pA+Aa6EUKHgM1Tya2e3oREzPGk/QeGUurUg36
bD+BzKx3reUTN7p6ST4MAE/CC+smWljSoiUgDLHusthRhv9nRKJeXQmIE0NeTufl
QS23xDmxTNXMv993EjDSOxrupBqWGi36BcfOI7qpOQk=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:20 2025 by rpki-client