Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/heWcI-wqW8K0jKtNpGrdsef5c30.roa
File: heWcI-wqW8K0jKtNpGrdsef5c30.roa (raw, json)
Hash identifier: cFAnKWT6MU2HmDTx+pA4FZPtEzNE5i+7zd38v/mTBUI=
Subject key identifier: 85:E5:9C:23:EC:2A:5B:C2:B4:8C:AB:4D:A4:6A:DD:B1:E7:F9:73:7D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1186
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/heWcI-wqW8K0jKtNpGrdsef5c30.roa
Signing time: Mon 10 Feb 2025 14:27:27 +0000
ROA not before: Mon 10 Feb 2025 14:27:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9311
IP address blocks: 210.200.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4486 (0x1186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:27:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=85E59C23EC2A5BC2B48CAB4DA46ADDB1E7F9737D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:34:2d:ec:56:78:73:2e:24:2e:6a:48:3b:b6:
bd:49:8f:83:6b:cd:76:9b:a3:5f:b1:78:01:2d:27:
fd:1c:38:ff:bf:c3:aa:ba:f3:7c:4f:61:29:26:7c:
d8:01:0c:5b:79:f2:a5:a9:a8:59:82:12:ce:71:fa:
56:67:0b:1a:aa:0e:15:ca:99:7c:01:35:b1:ce:ae:
a4:a8:d0:e9:a0:ec:f1:e5:cb:59:7f:35:9f:8d:0b:
c0:fd:42:53:ee:12:bf:9c:f8:c3:aa:57:43:2b:b6:
b6:b2:36:63:d4:62:ce:a9:6a:0a:83:6e:29:6e:a8:
dc:48:05:f8:b8:57:e4:00:cc:6a:4a:4d:d2:fc:5e:
1d:7e:3f:8d:b3:73:7b:45:eb:ef:9e:ff:b3:04:a1:
86:27:f6:3a:2c:63:e0:1d:e0:ef:a8:75:65:f0:48:
c4:7d:5c:72:5a:d2:74:f2:83:5e:fc:04:f9:e5:c1:
af:ab:95:91:75:d4:77:98:82:ea:12:96:4f:aa:be:
8e:aa:82:9d:bd:bf:0e:f3:e1:ed:ec:8b:9a:23:39:
f1:03:5b:fb:f0:74:66:97:3a:b8:0c:89:8e:ea:2b:
69:15:10:43:e6:00:a1:1f:de:94:7e:0c:03:b8:fc:
97:09:54:a7:51:1d:a8:bf:6c:ad:a5:e5:dd:f0:c4:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E5:9C:23:EC:2A:5B:C2:B4:8C:AB:4D:A4:6A:DD:B1:E7:F9:73:7D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/heWcI-wqW8K0jKtNpGrdsef5c30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
97:04:55:55:ef:0b:05:e4:66:c8:50:05:53:7d:d0:36:75:16:
ee:c1:5a:c7:71:3b:ee:cf:76:84:a2:b4:36:4d:85:c3:2d:a3:
95:78:0d:65:91:d4:99:20:41:28:d5:6f:1f:01:f1:90:0e:cf:
a9:59:c3:66:04:d2:ba:df:71:f5:03:da:42:66:d3:ec:8f:97:
d0:13:a1:85:fc:3d:e8:f6:6b:21:de:ca:89:3e:f4:1f:e0:44:
df:cf:b0:43:f6:ab:57:61:e4:28:22:7c:53:0f:c4:1b:04:b2:
ec:09:9f:a7:33:d9:97:68:e3:48:7d:67:f9:a1:06:8e:b3:45:
53:81:3e:26:e3:a4:27:e7:a6:9f:1e:b7:44:67:df:8b:35:49:
4e:53:32:ef:bf:db:f5:e2:59:44:54:4b:42:be:d0:d9:af:61:
98:df:18:8a:ff:ae:7b:2d:f5:2d:89:18:5d:13:58:2e:b7:93:
9e:e4:95:31:ef:b7:c5:6d:b3:fb:18:6f:3e:f8:12:85:6f:4e:
af:1e:76:7c:03:1c:25:9c:68:7d:e6:c5:e9:0d:cd:7d:14:ba:
e7:7a:53:14:d7:eb:44:bf:83:a2:66:59:f2:43:ef:85:57:be:
d5:83:45:f1:1e:32:47:46:15:c6:29:7e:ee:37:13:42:d4:45:
32:ae:27:d0
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1RTU5QzIzRUMyQTVC
QzJCNDhDQUI0REE0NkFEREIxRTdGOTczN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGNC3sVnhzLiQuakg7tr1Jj4NrzXabo1+xeAEtJ/0cOP+/w6q6
83xPYSkmfNgBDFt58qWpqFmCEs5x+lZnCxqqDhXKmXwBNbHOrqSo0Omg7PHly1l/
NZ+NC8D9QlPuEr+c+MOqV0MrtrayNmPUYs6pagqDbiluqNxIBfi4V+QAzGpKTdL8
Xh1+P42zc3tF6++e/7MEoYYn9josY+Ad4O+odWXwSMR9XHJa0nTyg178BPnlwa+r
lZF11HeYguoSlk+qvo6qgp29vw7z4e3si5ojOfEDW/vwdGaXOrgMiY7qK2kVEEPm
AKEf3pR+DAO4/JcJVKdRHai/bK2l5d3wxLCTAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUheWcI+wqW8K0jKtNpGrdsef5c30wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2hlV2NJLXdxVzhLMGpLdE5wR3Jkc2Vm
NWMzMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyMAwDQYJ
KoZIhvcNAQELBQADggEBAJcEVVXvCwXkZshQBVN90DZ1Fu7BWsdxO+7PdoSitDZN
hcMto5V4DWWR1JkgQSjVbx8B8ZAOz6lZw2YE0rrfcfUD2kJm0+yPl9AToYX8Pej2
ayHeyok+9B/gRN/PsEP2q1dh5CgifFMPxBsEsuwJn6cz2Zdo40h9Z/mhBo6zRVOB
PibjpCfnpp8et0Rn34s1SU5TMu+/2/XiWURUS0K+0NmvYZjfGIr/rnst9S2JGF0T
WC63k57klTHvt8Vts/sYbz74EoVvTq8ednwDHCWcaH3mxekNzX0Uuud6UxTX60S/
g6JmWfJD74VXvtWDRfEeMkdGFcYpfu43E0LURTKuJ9A=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:56:34 2025 by rpki-client