Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/0rM7OY3j-GBFi24zYwVPf3LJ5Aw.roa
File: 0rM7OY3j-GBFi24zYwVPf3LJ5Aw.roa (raw, json)
Hash identifier: 1o65R//ho60juBwiQsT0rsLbxKVVD6UfF8Zc1kH0L+w=
Subject key identifier: D2:B3:3B:39:8D:E3:F8:60:45:8B:6E:33:63:05:4F:7F:72:C9:E4:0C
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 06FF
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/0rM7OY3j-GBFi24zYwVPf3LJ5Aw.roa
Signing time: Mon 10 Feb 2025 14:22:50 +0000
ROA not before: Mon 10 Feb 2025 14:22:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1791 (0x6ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 10 14:22:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D2B33B398DE3F860458B6E3363054F7F72C9E40C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1b:32:77:5e:05:50:a6:02:4a:2c:24:43:88:
cf:15:31:27:9f:df:c3:0a:e1:0c:80:c5:5d:f5:e2:
6b:6e:bf:d1:73:63:4c:6d:a1:16:7b:80:bc:df:5c:
b4:99:86:de:57:72:d0:0c:af:e6:b3:2e:12:8c:ec:
17:a8:c0:34:c2:48:84:7a:85:9f:6e:88:d5:74:b0:
f9:cc:63:00:3c:03:ac:49:23:12:61:52:ea:ee:fb:
6f:bb:11:85:95:b2:e6:0d:8b:55:ac:57:7d:0a:74:
37:57:5d:46:b4:2b:7b:2a:6e:28:8f:51:98:9e:d0:
d5:0c:b7:8b:0f:7e:2d:49:70:6c:a8:a6:0c:b3:f3:
28:e6:0f:ea:39:85:92:a6:2c:d5:e5:96:30:b0:ec:
c9:13:55:15:62:35:7a:47:37:0e:cd:b7:ce:43:7c:
6c:5c:62:d5:e5:1c:a2:2d:21:5a:a8:fd:9d:cd:9d:
6b:79:e4:01:0e:7b:89:db:84:95:80:f4:36:8e:a0:
ed:ec:00:ed:52:f5:5e:f1:28:64:62:8b:22:63:9e:
34:a6:46:22:01:8b:94:6f:a5:c3:44:53:51:cb:a0:
f2:ec:5e:53:59:92:88:76:ac:c8:77:e8:aa:ae:af:
d5:27:1a:1c:58:57:d7:d9:e5:32:54:53:07:6c:13:
79:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B3:3B:39:8D:E3:F8:60:45:8B:6E:33:63:05:4F:7F:72:C9:E4:0C
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/0rM7OY3j-GBFi24zYwVPf3LJ5Aw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
d2:bd:1e:01:e4:a0:c1:ff:72:6d:b1:76:1c:bc:ab:e2:a2:9b:
07:e0:a9:33:31:04:8d:c2:3b:f1:c2:45:c5:bc:29:f1:85:b8:
22:61:de:56:3e:2b:d5:a1:eb:d7:92:e3:95:ff:f7:4b:ca:0e:
0d:e5:6d:9a:e4:01:15:aa:97:76:e3:9b:79:91:e0:54:0d:d8:
db:3e:da:08:ff:45:dd:c9:c1:be:2f:ee:22:09:98:2f:e6:2b:
ec:aa:9e:70:8a:29:c4:74:48:3b:97:cd:46:8f:40:e5:65:f5:
64:2b:80:16:50:a1:2b:dd:05:3b:e1:c8:6f:bb:02:b4:97:db:
ff:f2:95:85:8f:af:60:ac:53:2e:4e:45:0c:61:72:6b:eb:57:
a0:86:d5:b8:d5:75:95:bd:2a:e3:6f:7b:36:ec:55:c6:a5:fc:
45:82:8c:2e:2f:6b:b5:2b:3e:46:c7:d9:93:5f:af:a7:46:c9:
df:d2:91:c7:fc:b3:f9:fc:83:30:02:48:7f:dc:fc:99:57:80:
c1:74:ee:c5:4e:33:74:eb:a2:9c:9e:88:8e:f5:a8:db:30:6a:
69:53:fd:43:d0:c7:3e:a1:08:d2:f3:58:0d:32:6a:4f:8b:29:
a6:a0:9d:8d:f5:12:2e:89:9b:3f:39:33:80:a1:85:20:2c:aa:
f4:60:e1:0f
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTAyMTAx
NDIyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyQjMzQjM5OERFM0Y4
NjA0NThCNkUzMzYzMDU0RjdGNzJDOUU0MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNGzJ3XgVQpgJKLCRDiM8VMSef38MK4QyAxV314mtuv9FzY0xt
oRZ7gLzfXLSZht5XctAMr+azLhKM7BeowDTCSIR6hZ9uiNV0sPnMYwA8A6xJIxJh
Uuru+2+7EYWVsuYNi1WsV30KdDdXXUa0K3sqbiiPUZie0NUMt4sPfi1JcGyopgyz
8yjmD+o5hZKmLNXlljCw7MkTVRViNXpHNw7Nt85DfGxcYtXlHKItIVqo/Z3NnWt5
5AEOe4nbhJWA9DaOoO3sAO1S9V7xKGRiiyJjnjSmRiIBi5RvpcNEU1HLoPLsXlNZ
koh2rMh36Kqur9UnGhxYV9fZ5TJUUwdsE3mxAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU0rM7OY3j+GBFi24zYwVPf3LJ5AwwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOLzByTTdPWTNqLUdCRmkyNHpZ
d1ZQZjNMSjVBdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk
AZXAMA0GCSqGSIb3DQEBCwUAA4IBAQDSvR4B5KDB/3JtsXYcvKviopsH4KkzMQSN
wjvxwkXFvCnxhbgiYd5WPivVoevXkuOV//dLyg4N5W2a5AEVqpd245t5keBUDdjb
PtoI/0XdycG+L+4iCZgv5ivsqp5wiinEdEg7l81Gj0DlZfVkK4AWUKEr3QU74chv
uwK0l9v/8pWFj69grFMuTkUMYXJr61eghtW41XWVvSrjb3s27FXGpfxFgowuL2u1
Kz5Gx9mTX6+nRsnf0pHH/LP5/IMwAkh/3PyZV4DBdO7FTjN066KcnoiO9ajbMGpp
U/1D0Mc+oQjS81gNMmpPiymmoJ2N9RIuiZs/OTOAoYUgLKr0YOEP
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:29:42 2025 by rpki-client