Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/jTh7Dugg5rjGx8SsWDPRpagGqrs.roa
File: jTh7Dugg5rjGx8SsWDPRpagGqrs.roa (raw, json)
Hash identifier: 9b9QQteCmMukWw623OBuCSjl+s90iCaaegx0gpjUf6g=
Subject key identifier: 8D:38:7B:0E:E8:20:E6:B8:C6:C7:C4:AC:58:33:D1:A5:A8:06:AA:BB
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1287
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/jTh7Dugg5rjGx8SsWDPRpagGqrs.roa
Signing time: Mon 10 Feb 2025 14:28:30 +0000
ROA not before: Mon 10 Feb 2025 14:28:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 60.244.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4743 (0x1287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8D387B0EE820E6B8C6C7C4AC5833D1A5A806AABB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:63:44:75:0c:2f:07:04:d5:8c:e3:c3:93:1f:
37:a5:82:72:17:8a:59:71:ac:b5:e3:71:0f:a4:06:
6a:02:09:a4:1b:97:44:0d:25:9c:74:12:f4:56:e8:
be:e8:15:d7:79:d7:67:68:76:ae:db:cb:d9:61:0e:
d0:06:aa:ec:33:0d:d7:88:13:c0:ac:94:d8:81:de:
93:c2:c5:14:16:c8:e6:8e:32:8a:b0:90:8e:33:ca:
68:58:ff:f5:54:53:12:99:e7:85:01:e4:e7:19:60:
b3:8f:d4:da:3e:e6:6b:8e:a6:66:a0:1f:c6:fb:8a:
2c:d3:41:8a:20:a7:43:5f:55:59:df:e4:6f:c9:2b:
98:d6:7a:ee:4d:9c:05:f7:ad:02:54:f4:d8:06:3d:
3a:1d:c3:48:42:38:27:e8:c0:5f:89:c0:87:cb:ab:
bb:b4:ad:39:8d:f5:35:26:72:bd:bf:48:a0:10:48:
18:6c:63:1f:f4:2b:59:e5:75:ba:c2:48:0f:91:ae:
10:30:57:30:e9:30:31:1a:29:3a:c8:fa:d8:ff:a2:
37:8c:68:ac:23:61:ef:12:8f:55:23:6a:8b:e8:8b:
03:d2:c8:cb:dc:fe:82:63:28:6c:a0:2d:13:88:c2:
b2:dd:32:15:97:73:d6:ee:ef:85:c6:43:fb:b8:14:
4d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:38:7B:0E:E8:20:E6:B8:C6:C7:C4:AC:58:33:D1:A5:A8:06:AA:BB
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/jTh7Dugg5rjGx8SsWDPRpagGqrs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.176.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:74:2d:fb:5e:0e:e4:f0:85:89:c1:ff:3f:18:40:3f:a5:95:
11:3e:89:46:32:db:f7:0f:8d:4b:cf:9c:2b:e9:3f:75:6e:21:
fd:ac:19:ee:10:39:90:61:44:ea:2b:d6:ee:75:92:ae:ac:c1:
14:79:44:a7:e4:1d:30:24:c3:1e:b3:8b:a8:f6:8f:3f:b1:f3:
b7:c2:a7:b4:c2:b9:5c:c4:a2:6b:28:69:db:e7:eb:d3:ca:93:
39:b3:40:2c:62:7b:77:dc:c9:41:d5:41:65:f2:16:a3:08:56:
57:10:2a:89:47:ac:43:d4:df:e0:e8:0c:00:00:b6:1a:01:50:
41:91:39:f1:07:21:bc:7f:8e:0c:3e:4c:21:ce:12:a3:fe:2c:
25:8d:c3:f9:a0:9e:7f:fa:b9:52:c6:a9:d6:c3:a3:94:63:51:
4b:a5:5b:ad:ed:8f:d1:9b:6b:49:92:54:c5:27:2f:71:a4:a5:
46:5a:fd:30:bd:f5:84:10:34:8a:33:7c:75:3b:88:79:ef:26:
3d:6d:4a:b4:28:9a:66:d6:54:35:c0:c3:db:36:10:f2:94:1e:
13:43:ac:80:d5:a7:4f:65:d3:69:90:3f:41:24:b9:e8:a9:e9:
f0:89:da:70:03:16:6b:54:47:e8:bd:70:da:20:e1:9b:ba:6d:
67:85:05:22
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEMzg3QjBFRTgyMEU2
QjhDNkM3QzRBQzU4MzNEMUE1QTgwNkFBQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCmY0R1DC8HBNWM48OTHzelgnIXillxrLXjcQ+kBmoCCaQbl0QN
JZx0EvRW6L7oFdd512dodq7by9lhDtAGquwzDdeIE8CslNiB3pPCxRQWyOaOMoqw
kI4zymhY//VUUxKZ54UB5OcZYLOP1No+5muOpmagH8b7iizTQYogp0NfVVnf5G/J
K5jWeu5NnAX3rQJU9NgGPTodw0hCOCfowF+JwIfLq7u0rTmN9TUmcr2/SKAQSBhs
Yx/0K1nldbrCSA+RrhAwVzDpMDEaKTrI+tj/ojeMaKwjYe8Sj1UjaovoiwPSyMvc
/oJjKGygLROIwrLdMhWXc9bu74XGQ/u4FE0HAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUjTh7Dugg5rjGx8SsWDPRpagGqrswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2pUaDdEdWdnNXJqR3g4U3NXRFBScGFn
R3Fycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI89LAwDQYJ
KoZIhvcNAQELBQADggEBALB0LfteDuTwhYnB/z8YQD+llRE+iUYy2/cPjUvPnCvp
P3VuIf2sGe4QOZBhROor1u51kq6swRR5RKfkHTAkwx6zi6j2jz+x87fCp7TCuVzE
omsoadvn69PKkzmzQCxie3fcyUHVQWXyFqMIVlcQKolHrEPU3+DoDAAAthoBUEGR
OfEHIbx/jgw+TCHOEqP+LCWNw/mgnn/6uVLGqdbDo5RjUUulW63tj9Gba0mSVMUn
L3GkpUZa/TC99YQQNIozfHU7iHnvJj1tSrQommbWVDXAw9s2EPKUHhNDrIDVp09l
02mQP0Ekueip6fCJ2nADFmtUR+i9cNog4Zu6bWeFBSI=
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:35:09 2025 by rpki-client