Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/12PygWyPQHQ0FcNI2eblgDipTHs.roa
File: 12PygWyPQHQ0FcNI2eblgDipTHs.roa (raw, json)
Hash identifier: J82YyKHGw1frsEQT04nstImoPGZ4087GVXQSie7h1YQ=
Subject key identifier: D7:63:F2:81:6C:8F:40:74:34:15:C3:48:D9:E6:E5:80:38:A9:4C:7B
Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Certificate serial: 0133
Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/12PygWyPQHQ0FcNI2eblgDipTHs.roa
Signing time: Mon 10 Feb 2025 13:44:56 +0000
ROA not before: Mon 10 Feb 2025 13:44:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150760
IP address blocks: 180.94.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307 (0x133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Validity
Not Before: Feb 10 13:44:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D763F2816C8F40743415C348D9E6E58038A94C7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:24:37:3f:6c:53:4e:07:55:c8:dd:11:f2:0c:
86:32:11:43:9b:54:94:fc:fd:de:9f:bc:27:20:2c:
57:d2:5b:1e:81:df:48:26:27:5e:17:6f:ea:a7:ca:
67:30:07:b5:9e:c3:c2:5f:35:b8:14:af:67:c3:3f:
77:22:4c:ed:f0:38:97:46:26:24:4d:77:62:59:6c:
6b:d8:49:28:4a:c9:cc:5b:0b:66:76:3a:bf:9e:36:
65:8c:7b:19:ed:6a:ed:ab:da:54:4e:d5:0a:80:84:
76:fd:9c:e4:05:38:a2:1b:3c:00:c1:33:73:8d:9b:
b7:43:2b:57:aa:ad:22:09:cf:5a:cf:54:cf:6e:30:
b8:5a:1f:d3:94:bf:cd:1b:40:38:de:b6:23:98:61:
39:a6:08:0d:ed:ab:dc:01:9f:fd:5f:62:5e:a0:56:
b5:7e:be:b4:a2:88:fe:76:5d:47:11:41:e9:6e:ed:
ad:ac:78:87:11:e3:65:dd:fa:6e:39:db:91:ea:53:
e5:c7:57:08:03:67:25:96:43:51:3c:5c:2b:39:ba:
ee:2f:5c:23:9c:29:6c:ee:a5:76:a7:6d:c9:d4:11:
c9:ea:74:46:f3:9c:74:b4:4b:9f:ab:d2:e5:b6:ec:
78:5a:a1:58:9a:4d:9d:60:9d:ce:36:ef:8d:4b:f2:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:63:F2:81:6C:8F:40:74:34:15:C3:48:D9:E6:E5:80:38:A9:4C:7B
X509v3 Authority Key Identifier:
keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/12PygWyPQHQ0FcNI2eblgDipTHs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.94.31.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ea:42:21:b9:0e:60:46:6c:a6:97:f9:ab:dc:3d:b2:7f:41:
49:f6:a0:e0:4e:b3:c1:35:00:e6:d7:1c:46:35:1f:ef:73:c1:
f1:b2:ff:53:3d:e7:a5:d3:9e:36:cb:c6:c7:1f:30:18:ca:3d:
26:8e:9f:20:07:f3:74:c0:81:df:41:54:6e:12:f6:e2:c0:61:
09:72:2e:0a:23:e5:5d:30:aa:2f:47:05:e2:40:65:a7:bc:1a:
ef:88:10:86:b7:cd:aa:9d:19:fe:e2:de:7a:48:e0:e9:ef:69:
e2:57:8a:12:bc:7f:69:6a:79:b9:c9:02:71:b7:6d:e9:4b:b4:
b3:73:dd:b3:be:b0:9d:89:d8:80:59:54:6e:0d:0b:cf:76:a8:
78:2e:03:ec:3a:85:58:b1:e1:a3:8e:34:99:2a:59:f5:8f:67:
4c:ab:84:a2:0a:09:87:18:de:75:a1:86:06:79:58:0f:ce:1c:
1c:bd:5b:34:61:7f:96:8d:43:37:3f:20:1a:63:c9:92:68:52:
c3:dc:4b:9d:93:ae:cc:93:0d:d6:4f:bd:1b:99:7e:d8:a7:cc:
e7:4c:f6:90:0e:13:f5:7c:4e:8d:3e:59:ec:1b:39:be:dd:fe:
a9:95:76:a4:f6:1d:85:fe:76:e2:14:21:e6:24:a6:c4:b1:47:
02:22:6c:da
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzJD
NDM2QkU5MkFFMEFEQ0IzMTRFQkMxQUNFMzE5RkY3N0JEQTNGQzAeFw0yNTAyMTAx
MzQ0NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3NjNGMjgxNkM4RjQw
NzQzNDE1QzM0OEQ5RTZFNTgwMzhBOTRDN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDeJDc/bFNOB1XI3RHyDIYyEUObVJT8/d6fvCcgLFfSWx6B30gm
J14Xb+qnymcwB7Wew8JfNbgUr2fDP3ciTO3wOJdGJiRNd2JZbGvYSShKycxbC2Z2
Or+eNmWMexntau2r2lRO1QqAhHb9nOQFOKIbPADBM3ONm7dDK1eqrSIJz1rPVM9u
MLhaH9OUv80bQDjetiOYYTmmCA3tq9wBn/1fYl6gVrV+vrSiiP52XUcRQelu7a2s
eIcR42Xd+m4525HqU+XHVwgDZyWWQ1E8XCs5uu4vXCOcKWzupXanbcnUEcnqdEbz
nHS0S5+r0uW27HhaoViaTZ1gnc42741L8sqvAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQU12PygWyPQHQ0FcNI2eblgDipTHswHwYDVR0jBBgwFoAUcsQ2vpKuCtyzFOvB
rOMZ/3e9o/wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2Nz
UTJ2cEt1Q3R5ekZPdkJyT01aXzNlOW9fdy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
Y3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaLzEyUHlnV3lQUUhRMEZjTkkyZWJsZ0Rp
cFRIcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0Xh8wDQYJ
KoZIhvcNAQELBQADggEBAJLqQiG5DmBGbKaX+avcPbJ/QUn2oOBOs8E1AObXHEY1
H+9zwfGy/1M956XTnjbLxscfMBjKPSaOnyAH83TAgd9BVG4S9uLAYQlyLgoj5V0w
qi9HBeJAZae8Gu+IEIa3zaqdGf7i3npI4OnvaeJXihK8f2lqebnJAnG3belLtLNz
3bO+sJ2J2IBZVG4NC892qHguA+w6hVix4aOONJkqWfWPZ0yrhKIKCYcY3nWhhgZ5
WA/OHBy9WzRhf5aNQzc/IBpjyZJoUsPcS52TrsyTDdZPvRuZftinzOdM9pAOE/V8
To0+WewbOb7d/qmVdqT2HYX+duIUIeYkpsSxRwIibNo=
-----END CERTIFICATE-----
Generated at Thu Apr 17 18:35:00 2025 by rpki-client