Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yWRD4GSSZETT-G-fqD7d1xDKJVk.roa
File: yWRD4GSSZETT-G-fqD7d1xDKJVk.roa (raw, json)
Hash identifier: 8RvTucxQmk79lwu3QcEBpuWn+BCCz1sqnrwVl/lNASM=
Subject key identifier: C9:64:43:E0:64:92:64:44:D3:F8:6F:9F:A8:3E:DD:D7:10:CA:25:59
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1280
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yWRD4GSSZETT-G-fqD7d1xDKJVk.roa
Signing time: Mon 10 Feb 2025 14:28:29 +0000
ROA not before: Mon 10 Feb 2025 14:28:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 218.34.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4736 (0x1280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Feb 10 14:28:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C96443E064926444D3F86F9FA83EDDD710CA2559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a3:85:34:60:c0:ec:28:52:d3:f2:d1:3e:85:
40:9c:15:29:ee:64:31:c8:ce:6b:1f:61:55:00:8e:
b5:2f:db:c1:04:6d:78:a8:22:fd:09:48:79:a5:c3:
71:13:8b:3c:9f:0d:dc:73:9e:97:37:96:5c:6b:42:
c1:51:70:08:2d:a7:39:5e:aa:02:d5:97:7b:21:6a:
c6:cd:cd:cf:85:f5:52:85:40:ff:95:a5:4f:15:62:
18:2b:b9:a3:fe:67:84:a6:6f:23:d9:af:91:b5:3c:
89:e7:7b:6f:90:0a:62:b5:3b:2f:22:bb:b4:05:bb:
f8:08:fa:05:84:e7:e6:ee:40:34:01:e5:8d:d7:ef:
c9:e9:ca:f2:3a:bb:f0:3a:8f:60:a2:3a:0c:54:d2:
3e:a9:86:52:ec:79:64:0f:34:4b:54:00:db:21:80:
80:f0:f8:0c:44:b1:ec:9c:cd:2b:44:0d:d3:55:a8:
8c:a4:0b:ae:a3:9a:d2:4b:64:16:8e:37:ee:a7:f4:
6d:20:06:f4:94:8a:ca:30:d7:da:a2:5c:90:71:f1:
48:72:24:e7:bb:a8:27:6f:bb:dd:24:19:f0:33:e7:
c5:bd:be:85:41:e1:49:4f:cf:46:18:43:25:19:e5:
f0:38:93:0d:46:12:98:c9:3a:09:d2:23:d3:43:c9:
15:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:64:43:E0:64:92:64:44:D3:F8:6F:9F:A8:3E:DD:D7:10:CA:25:59
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yWRD4GSSZETT-G-fqD7d1xDKJVk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.128.0/21
Signature Algorithm: sha256WithRSAEncryption
4a:93:dc:0f:f8:84:59:a8:4b:27:8a:c6:66:1d:5d:b8:1a:dd:
56:85:e9:cf:cd:5c:c3:51:04:ca:49:d6:15:b9:8c:8d:f4:14:
79:7e:78:6c:ee:b8:33:60:c3:90:00:49:26:06:6c:b9:4d:ff:
f3:9b:15:59:90:9b:96:09:4e:bb:40:e3:b7:b9:58:31:db:39:
f7:36:74:2c:35:65:42:2a:a7:a0:c7:67:bf:5f:d7:26:16:f2:
7a:9e:64:ec:d6:b6:1e:d5:f4:9b:c1:00:09:7c:7a:16:93:49:
d1:dd:5a:f7:3d:d1:b1:5f:84:03:ac:b1:af:4a:ea:a4:a1:02:
93:a2:54:7b:a4:a2:50:00:d4:a9:4b:ec:ff:fd:21:f7:93:aa:
1e:da:23:86:40:97:56:9f:44:51:13:ee:61:3e:dc:f9:b0:65:
a1:08:2e:35:12:83:30:38:cc:1a:85:ba:21:e5:de:ae:f4:ef:
a7:06:01:0b:5e:20:44:0b:8c:66:53:cd:63:f6:02:81:0f:01:
50:c2:d8:c4:32:ec:c0:0a:ba:a1:51:ee:f3:00:80:2d:2b:a6:
67:14:5d:e2:12:1a:e4:e6:9e:c6:aa:0a:56:6e:7c:5f:a1:84:
75:7e:9d:da:05:45:48:d8:d1:1c:46:01:f6:41:88:7d:95:bb:
b0:8a:22:2d
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICEoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTAyMTAx
NDI4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5NjQ0M0UwNjQ5MjY0
NDREM0Y4NkY5RkE4M0VEREQ3MTBDQTI1NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzo4U0YMDsKFLT8tE+hUCcFSnuZDHIzmsfYVUAjrUv28EEbXio
Iv0JSHmlw3ETizyfDdxznpc3llxrQsFRcAgtpzleqgLVl3shasbNzc+F9VKFQP+V
pU8VYhgruaP+Z4SmbyPZr5G1PInne2+QCmK1Oy8iu7QFu/gI+gWE5+buQDQB5Y3X
78npyvI6u/A6j2CiOgxU0j6phlLseWQPNEtUANshgIDw+AxEseyczStEDdNVqIyk
C66jmtJLZBaON+6n9G0gBvSUisow19qiXJBx8UhyJOe7qCdvu90kGfAz58W9voVB
4UlPz0YYQyUZ5fA4kw1GEpjJOgnSI9NDyRXhAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUyWRD4GSSZETT+G+fqD7d1xDKJVkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3lXUkQ0R1NTWkVUVC1HLWZxRDdkMXhE
S0pWay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPaIoAwDQYJ
KoZIhvcNAQELBQADggEBAEqT3A/4hFmoSyeKxmYdXbga3VaF6c/NXMNRBMpJ1hW5
jI30FHl+eGzuuDNgw5AASSYGbLlN//ObFVmQm5YJTrtA47e5WDHbOfc2dCw1ZUIq
p6DHZ79f1yYW8nqeZOzWth7V9JvBAAl8ehaTSdHdWvc90bFfhAOssa9K6qShApOi
VHukolAA1KlL7P/9IfeTqh7aI4ZAl1afRFET7mE+3PmwZaEILjUSgzA4zBqFuiHl
3q7076cGAQteIEQLjGZTzWP2AoEPAVDC2MQy7MAKuqFR7vMAgC0rpmcUXeISGuTm
nsaqClZufF+hhHV+ndoFRUjY0RxGAfZBiH2Vu7CKIi0=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:24 2025 by rpki-client