Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wHwUvicYrnkj6w2nEeH9LBrh9Uw.roa
File: wHwUvicYrnkj6w2nEeH9LBrh9Uw.roa (raw, json)
Hash identifier: SD2LfIT9CZp5r8OEY400KhdwTGZnKuJwjAh7XPqbWZ8=
Subject key identifier: C0:7C:14:BE:27:18:AE:79:23:EB:0D:A7:11:E1:FD:2C:1A:E1:F5:4C
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1216
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wHwUvicYrnkj6w2nEeH9LBrh9Uw.roa
Signing time: Mon 10 Feb 2025 14:28:03 +0000
ROA not before: Mon 10 Feb 2025 14:28:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 2404:0:1000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4630 (0x1216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C07C14BE2718AE7923EB0DA711E1FD2C1AE1F54C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1c:e8:a4:69:b9:41:2d:75:7c:69:38:0c:63:
89:8f:95:6a:23:21:10:d3:e1:d2:4e:e0:c3:70:95:
e1:1e:a1:fe:fa:4e:f9:fa:7c:4e:c5:78:41:30:05:
11:27:e1:88:b5:40:05:9e:ea:b4:cb:35:7c:6b:d6:
d6:1b:c3:62:c9:12:30:6a:12:18:2d:fd:67:e3:eb:
76:22:dd:f6:b9:d2:b4:78:22:30:90:8d:d1:90:a1:
de:0a:63:e1:33:a6:ec:15:77:7a:77:b5:a1:15:b6:
cb:a0:c0:ed:bd:dd:21:30:ea:a3:bb:10:54:56:63:
39:ca:42:3b:25:fe:7c:f1:db:33:cc:dc:97:ba:c5:
ed:25:09:5f:7c:5d:08:69:30:0a:74:2c:90:b8:a6:
b1:53:27:ed:2b:b4:12:61:c7:cb:78:34:1b:da:a7:
f5:f3:9c:97:bd:8e:13:a4:0f:21:b6:a0:44:60:99:
45:be:47:e5:6a:4c:c5:84:9f:23:cf:01:0d:2f:9c:
af:30:e3:d6:7f:bf:eb:3d:d7:1c:71:54:56:52:4e:
39:b4:cb:ed:ec:71:e4:99:e7:73:8f:04:21:5e:7e:
13:cf:d7:7b:2a:c2:25:4e:9d:14:52:93:40:54:3e:
62:d0:a4:fd:21:77:14:5a:17:33:40:c5:9b:d2:96:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:7C:14:BE:27:18:AE:79:23:EB:0D:A7:11:E1:FD:2C:1A:E1:F5:4C
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wHwUvicYrnkj6w2nEeH9LBrh9Uw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
59:34:1b:e1:54:b7:c6:98:1e:01:9b:84:32:95:7a:de:57:a5:
92:0b:35:cf:69:a5:f4:c2:a3:c9:11:cd:b4:a7:27:51:86:f3:
c7:27:14:3a:7b:79:23:c6:ca:f2:0a:af:d1:e9:c5:6f:fd:10:
89:37:db:91:82:a2:12:c9:ee:2d:80:d7:38:0f:be:17:54:69:
ec:db:fd:b9:96:29:fb:9e:52:5b:94:a5:fc:02:18:3a:13:61:
fd:04:e7:22:68:80:c4:c0:5d:c0:e0:73:90:e7:36:7d:c5:f4:
8e:6d:1e:76:66:68:cc:15:8d:17:45:35:06:d6:36:88:0e:3e:
c8:d6:1c:26:9c:9c:0e:dc:c5:21:e8:3c:b9:c4:b0:14:99:a3:
19:b8:1b:79:93:0d:51:b0:ce:56:5a:c6:6c:07:d0:0d:5e:00:
47:a9:4d:fe:30:07:33:c9:2e:a8:c9:19:30:f6:3e:03:41:35:
1b:a3:8c:92:d9:61:ba:e6:1b:69:84:a2:24:66:0b:3a:cc:d1:
59:ba:e5:b3:39:83:3b:2d:c9:7f:a6:6f:92:f2:c2:0d:f6:34:
ba:83:cd:49:a0:f4:3e:e2:ff:8c:b8:cb:37:bf:fd:3a:de:16:
38:ca:b1:c5:20:c1:2c:6d:76:7e:5e:95:01:e9:8c:3e:f6:35:
3d:1a:a3:3d
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI4MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwN0MxNEJFMjcxOEFF
NzkyM0VCMERBNzExRTFGRDJDMUFFMUY1NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEHOikablBLXV8aTgMY4mPlWojIRDT4dJO4MNwleEeof76Tvn6
fE7FeEEwBREn4Yi1QAWe6rTLNXxr1tYbw2LJEjBqEhgt/Wfj63Yi3fa50rR4IjCQ
jdGQod4KY+EzpuwVd3p3taEVtsugwO293SEw6qO7EFRWYznKQjsl/nzx2zPM3Je6
xe0lCV98XQhpMAp0LJC4prFTJ+0rtBJhx8t4NBvap/XznJe9jhOkDyG2oERgmUW+
R+VqTMWEnyPPAQ0vnK8w49Z/v+s91xxxVFZSTjm0y+3sceSZ53OPBCFefhPP13sq
wiVOnRRSk0BUPmLQpP0hdxRaFzNAxZvSlon/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUwHwUvicYrnkj6w2nEeH9LBrh9UwwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3dId1V2aWNZcm5rajZ3Mm5FZUg5TEJy
aDlVdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAEDAN
BgkqhkiG9w0BAQsFAAOCAQEAWTQb4VS3xpgeAZuEMpV63lelkgs1z2ml9MKjyRHN
tKcnUYbzxycUOnt5I8bK8gqv0enFb/0QiTfbkYKiEsnuLYDXOA++F1Rp7Nv9uZYp
+55SW5Sl/AIYOhNh/QTnImiAxMBdwOBzkOc2fcX0jm0edmZozBWNF0U1BtY2iA4+
yNYcJpycDtzFIeg8ucSwFJmjGbgbeZMNUbDOVlrGbAfQDV4AR6lN/jAHM8kuqMkZ
MPY+A0E1G6OMktlhuuYbaYSiJGYLOszRWbrlszmDOy3Jf6ZvkvLCDfY0uoPNSaD0
PuL/jLjLN7/9Ot4WOMqxxSDBLG12fl6VAemMPvY1PRqjPQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:56:42 2025 by rpki-client