Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/hpJsHFEua4sHzX4ZYAMvI_8qv08.roa
File: hpJsHFEua4sHzX4ZYAMvI_8qv08.roa (raw, json)
Hash identifier: XQHQoEROV4RXCAx8mOigJlxFvM/Jds1fyaWLifEg9Ak=
Subject key identifier: 86:92:6C:1C:51:2E:6B:8B:07:CD:7E:19:60:03:2F:23:FF:2A:BF:4F
Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Certificate serial: 0182
Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/hpJsHFEua4sHzX4ZYAMvI_8qv08.roa
Signing time: Mon 24 Feb 2025 03:16:19 +0000
ROA not before: Mon 24 Feb 2025 03:16:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63927
IP address blocks: 180.94.30.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386 (0x182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC
Validity
Not Before: Feb 24 03:16:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=86926C1C512E6B8B07CD7E1960032F23FF2ABF4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9d:a1:e1:7a:8a:2d:c0:0f:a9:8d:6d:bc:66:
9d:c9:2b:ce:0e:3a:e3:b4:c6:b7:66:53:8d:74:56:
2e:75:42:3f:c2:92:30:cc:ea:62:cf:77:95:18:ed:
34:7b:64:e3:ec:30:d5:e9:0a:7b:94:bb:92:fe:bc:
c0:22:b3:2e:91:58:23:36:8e:cc:67:45:b4:b5:c1:
44:ad:1c:61:84:34:40:aa:72:af:86:0f:16:ef:a9:
bd:4d:a8:b2:5e:52:7a:42:17:43:23:c3:62:73:7b:
7e:a6:bd:43:b2:73:d6:07:86:70:db:80:a6:c5:91:
b2:38:43:c6:f5:58:c3:03:8d:3c:87:05:66:68:43:
72:bf:5d:48:fb:43:35:a0:71:e4:5e:a0:09:a8:2c:
8c:5d:20:87:4c:28:b0:ab:e5:27:21:96:56:c9:43:
41:1b:58:8d:1f:c9:d0:52:ad:bb:b7:70:5a:f7:c9:
12:7c:cb:d1:42:f3:8f:fb:14:57:c5:1d:ea:3e:eb:
c3:fa:1b:4c:c8:42:5b:5b:f0:a1:f9:f2:61:bd:75:
72:a5:dc:0e:59:48:e7:a3:bc:99:12:a5:62:ae:b5:
4b:fc:f5:0a:90:af:1d:cd:da:20:69:d0:bb:76:e5:
fc:1e:4e:93:8d:2e:63:25:49:92:76:94:ea:35:66:
be:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:92:6C:1C:51:2E:6B:8B:07:CD:7E:19:60:03:2F:23:FF:2A:BF:4F
X509v3 Authority Key Identifier:
keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/hpJsHFEua4sHzX4ZYAMvI_8qv08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.94.30.0/23
Signature Algorithm: sha256WithRSAEncryption
54:45:05:8e:a2:5f:c0:67:e8:4b:5c:36:db:7f:06:ef:c3:6e:
94:28:d3:3c:6c:24:13:02:56:15:49:30:0e:b9:5b:ba:55:18:
94:ca:3e:1e:d0:ee:91:b3:b7:43:49:5e:47:d1:2e:69:38:72:
a2:6f:82:24:c9:e1:75:85:62:55:af:a3:c7:0d:e8:c3:43:8f:
78:f9:34:9d:29:fb:ce:93:c5:48:fb:94:83:33:89:05:ad:19:
a7:03:c0:7b:6a:95:5d:7b:31:0d:b8:34:ce:af:6d:0c:ee:7c:
f5:58:98:17:4c:4a:94:39:ed:2e:a8:a2:e1:21:b9:71:3e:fa:
ac:3f:52:57:77:07:96:7b:52:88:a0:2c:c0:0f:ec:78:99:2a:
3c:9b:7a:f9:93:39:a7:e0:b0:3f:cf:2b:87:48:85:c7:84:98:
b6:9d:7b:55:4a:ba:d9:4c:9c:d9:34:c4:4c:bd:13:88:36:ea:
13:0c:00:fc:a2:48:37:bf:9f:34:92:9e:6b:ee:e1:91:39:c8:
64:9e:2a:ab:f2:04:9d:73:55:3e:58:27:27:d0:cc:f1:6e:03:
5f:4a:f2:ad:e7:df:24:2c:17:5d:f7:09:7c:ac:09:b1:6a:74:
15:10:6f:07:3b:f6:c2:79:96:84:42:e9:09:34:1b:c6:df:9d:
8d:97:02:4e
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzJD
NDM2QkU5MkFFMEFEQ0IzMTRFQkMxQUNFMzE5RkY3N0JEQTNGQzAeFw0yNTAyMjQw
MzE2MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2OTI2QzFDNTEyRTZC
OEIwN0NEN0UxOTYwMDMyRjIzRkYyQUJGNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGnaHheootwA+pjW28Zp3JK84OOuO0xrdmU410Vi51Qj/CkjDM
6mLPd5UY7TR7ZOPsMNXpCnuUu5L+vMAisy6RWCM2jsxnRbS1wUStHGGENECqcq+G
Dxbvqb1NqLJeUnpCF0Mjw2Jze36mvUOyc9YHhnDbgKbFkbI4Q8b1WMMDjTyHBWZo
Q3K/XUj7QzWgceReoAmoLIxdIIdMKLCr5SchllbJQ0EbWI0fydBSrbu3cFr3yRJ8
y9FC84/7FFfFHeo+68P6G0zIQltb8KH58mG9dXKl3A5ZSOejvJkSpWKutUv89QqQ
rx3N2iBp0Lt25fweTpONLmMlSZJ2lOo1Zr4ZAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUhpJsHFEua4sHzX4ZYAMvI/8qv08wHwYDVR0jBBgwFoAUcsQ2vpKuCtyzFOvB
rOMZ/3e9o/wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2Nz
UTJ2cEt1Q3R5ekZPdkJyT01aXzNlOW9fdy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
Y3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2hwSnNIRkV1YTRzSHpYNFpZQU12SV84
cXYwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0Xh4wDQYJ
KoZIhvcNAQELBQADggEBAFRFBY6iX8Bn6EtcNtt/Bu/DbpQo0zxsJBMCVhVJMA65
W7pVGJTKPh7Q7pGzt0NJXkfRLmk4cqJvgiTJ4XWFYlWvo8cN6MNDj3j5NJ0p+86T
xUj7lIMziQWtGacDwHtqlV17MQ24NM6vbQzufPVYmBdMSpQ57S6oouEhuXE++qw/
Uld3B5Z7UoigLMAP7HiZKjybevmTOafgsD/PK4dIhceEmLade1VKutlMnNk0xEy9
E4g26hMMAPyiSDe/nzSSnmvu4ZE5yGSeKqvyBJ1zVT5YJyfQzPFuA19K8q3n3yQs
F133CXysCbFqdBUQbwc79sJ5loRC6Qk0G8bfnY2XAk4=
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:16:29 2025 by rpki-client