Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/uaoAP8GFS9vrztVYPD0RLd-Q2zg.roa
File: uaoAP8GFS9vrztVYPD0RLd-Q2zg.roa (raw, json)
Hash identifier: DKCGwxz/c6WsYeoQfsP2f8Lq+TUEFC60eaNVZ7LKWiw=
Subject key identifier: B9:AA:00:3F:C1:85:4B:DB:EB:CE:D5:58:3C:3D:11:2D:DF:90:DB:38
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 06FD
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/uaoAP8GFS9vrztVYPD0RLd-Q2zg.roa
Signing time: Mon 10 Feb 2025 14:22:50 +0000
ROA not before: Mon 10 Feb 2025 14:22:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 2401:95c0:1000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1789 (0x6fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 10 14:22:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B9AA003FC1854BDBEBCED5583C3D112DDF90DB38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:b1:32:48:95:e8:d1:0b:34:54:1a:92:f8:
ab:a0:67:9d:88:c4:dd:11:8c:be:33:4b:f4:ea:1d:
37:5b:79:9e:fa:db:3d:8b:6b:af:df:34:af:1f:15:
2b:6f:3a:26:cd:af:23:55:12:e8:e2:23:6b:75:40:
ff:3e:94:73:6a:3c:e2:7f:2f:c2:f7:b3:22:4a:a4:
60:75:02:aa:e9:0c:e3:79:1f:21:21:f8:1b:56:a0:
31:a5:2d:0a:71:70:18:ea:e8:4e:3d:92:5e:da:22:
65:f1:3f:23:d3:9f:bc:a6:65:13:81:5c:a7:d0:fe:
65:dd:ac:43:50:21:3a:26:2d:01:cf:9c:ab:4f:48:
e0:79:6a:d7:e8:c5:70:46:ab:4a:b0:9b:6f:cb:5f:
3e:4b:4b:b4:f2:57:31:50:f1:38:81:cc:7a:cf:60:
45:99:cd:e6:0c:b4:cc:9a:6f:17:3e:57:02:81:be:
da:33:24:1d:05:4b:09:28:d5:61:da:02:84:4a:6c:
66:7f:89:86:09:53:b1:04:18:12:b3:b3:e8:b1:ac:
fd:8f:f2:03:8d:c6:1c:6e:49:44:55:e5:17:8e:91:
fc:e6:a3:ff:10:9b:f1:53:b1:f0:99:f7:a9:41:b4:
28:76:4a:d4:e9:de:dc:71:15:dc:51:20:42:31:be:
19:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AA:00:3F:C1:85:4B:DB:EB:CE:D5:58:3C:3D:11:2D:DF:90:DB:38
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/uaoAP8GFS9vrztVYPD0RLd-Q2zg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0:1000::/36
Signature Algorithm: sha256WithRSAEncryption
24:d7:7a:82:a1:f5:7a:ad:4e:13:5d:e6:12:c1:b5:69:68:8a:
41:ba:c4:ad:fa:ba:98:8e:87:30:8b:7a:7e:c7:87:52:4d:08:
6b:66:92:bb:01:5d:f6:39:49:72:de:61:65:ea:37:ca:92:05:
db:0d:15:5f:95:f6:ff:17:14:a8:f1:94:cb:64:d8:c6:ca:8f:
ef:30:8c:d2:df:cc:7e:cd:0b:0b:58:19:48:9b:d7:9c:a5:ed:
0d:e4:da:e0:d5:a3:05:e8:61:38:19:c7:5d:75:05:ea:c3:96:
db:2b:ca:b9:18:19:9d:b3:a7:6d:34:eb:e8:9f:be:c9:1f:14:
3c:d9:d2:a4:d8:1c:00:4e:7e:80:65:a5:37:bc:ab:ee:15:93:
4b:00:90:62:36:ce:e4:78:b4:73:95:51:81:63:72:46:7a:de:
00:59:ee:71:f3:08:ff:2f:7c:de:a8:43:16:26:8f:9a:f5:9f:
cb:96:1a:5c:b0:16:2d:89:6d:c1:a2:57:d1:c5:bb:ca:f7:da:
f6:b0:05:18:51:4d:4a:45:02:0c:a8:38:e9:83:d8:d9:a5:88:
f8:e1:31:bf:03:9f:8a:3f:ed:1c:9b:4d:80:7d:30:72:8e:0c:
ce:29:97:6d:5f:39:ec:42:1f:3a:a2:62:89:7e:39:24:a8:75:
9b:a9:8a:ec
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNTAyMTAx
NDIyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5QUEwMDNGQzE4NTRC
REJFQkNFRDU1ODNDM0QxMTJEREY5MERCMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwULEySJXo0Qs0VBqS+KugZ52IxN0RjL4zS/TqHTdbeZ762z2L
a6/fNK8fFStvOibNryNVEujiI2t1QP8+lHNqPOJ/L8L3syJKpGB1AqrpDON5HyEh
+BtWoDGlLQpxcBjq6E49kl7aImXxPyPTn7ymZROBXKfQ/mXdrENQITomLQHPnKtP
SOB5atfoxXBGq0qwm2/LXz5LS7TyVzFQ8TiBzHrPYEWZzeYMtMyabxc+VwKBvtoz
JB0FSwko1WHaAoRKbGZ/iYYJU7EEGBKzs+ixrP2P8gONxhxuSURV5ReOkfzmo/8Q
m/FTsfCZ96lBtCh2StTp3txxFdxRIEIxvhkBAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUuaoAP8GFS9vrztVYPD0RLd+Q2zgwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL3Vhb0FQOEdGUzl2cnp0VllQ
RDBSTGQtUTJ6Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk
AZXAEDANBgkqhkiG9w0BAQsFAAOCAQEAJNd6gqH1eq1OE13mEsG1aWiKQbrErfq6
mI6HMIt6fseHUk0Ia2aSuwFd9jlJct5hZeo3ypIF2w0VX5X2/xcUqPGUy2TYxsqP
7zCM0t/Mfs0LC1gZSJvXnKXtDeTa4NWjBehhOBnHXXUF6sOW2yvKuRgZnbOnbTTr
6J++yR8UPNnSpNgcAE5+gGWlN7yr7hWTSwCQYjbO5Hi0c5VRgWNyRnreAFnucfMI
/y983qhDFiaPmvWfy5YaXLAWLYltwaJX0cW7yvfa9rAFGFFNSkUCDKg46YPY2aWI
+OExvwOfij/tHJtNgH0wco4MzimXbV857EIfOqJiiX45JKh1m6mK7A==
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:13:12 2025 by rpki-client